Skip to main content

Privacy policy

Last updated: May 2023

Protecting your personal information is extremely important us to Legal & General. It’s especially important for a large financial company like ours, as our customers trust us to look after a huge amount of sensitive information on everything from their business affairs to their medical history.

The way we collect, use, store and share your information is equally important. Our customers expect us to manage their information privately and securely. If we don’t, they’ll lose their trust in us.

This policy tells you how we collect and process your personal information. Please take a few minutes to read it and show it to anyone else connected to your product or whose data you have shared with us (including but not limited to joint policyholders, grantees, trustees, and beneficiaries). This policy may be subject to future change.

Unfortunately, sending information via e-mail is not completely secure; anything you send is done so at your own risk. Once received, we will secure your information in accordance with our security procedures and controls.

What does this policy cover?

This privacy policy relates to retail customers and/or any individual consumers of our goods and/or services, including users of our application-based technology and those individuals who request financial advice, obtain quotes, utilise our services, purchase our products, enter into agreements with us, individuals that we cover under employer sponsored schemes and/or individuals that we may otherwise interact with us in the course of our business.

For some individuals who do not have a direct relationship with us, the Pension Risk Transfer privacy policy may apply. We also have a separate privacy policy for professional business clients, which can be found on our website.

What is personal information?

When we talk about personal information we mean information about an individual that can identify them, like their name, address, e-mail address, telephone number and financial details. It can relate to customers (including prospective customers), their appointed representatives (e.g. powers of attorney), employees, shareholders, business contacts and suppliers. Any reference to "information" or "data" in this policy is a reference to personal information about a living individual.

What information do we hold?

We may collect and process the following personal information about you:

Type of data

Description

Examples of how we use it

Contact

  • Who you are
  • Where you live (including previous addresses)
  • How to contact you
  • Third party contacts (e.g. family members or friends)
  • Servicing your product
  • Pension tracing
  • Marketing
  • Analysis and profiling
  • Enhancing our product and service offering
  • Provision of financial advice
  • Product underwriting and pricing
  • Maintaining accuracy and consistency of your information for all your products across the Legal & General Group

Personal Details

  • Age
  • Gender
  • Family details
  • Visual images & personal appearance
  • Financial Details
  • Lifestyle and social circumstances
  • Health details
  • Employment Details
  • Pension tracing
  • Marketing
  • Analysis & profiling
  • Provision of financial advice
  • Product underwriting and pricing
  • Affordability checks (mortgages only)
  • Sourcing care providers

Vulnerability Details

  • Capability/ capacity
  • Financial circumstances
  • Life events
  • Health details
  • Ensuring accessibility
  • Servicing your products
  • Making sure our products and services meet our customers’ needs

Transactional

  • Bank and/or card details
  • How you use your products
  • Changes you make to your products or account
  • Servicing your products
  • Provision of financial advice
  • Making sure our products and services are fit for purpose

Contractual

  • Your claims history
  • Your creditworthiness
  • Making sure the product is right for you
  • Provision of financial advice
  • Product underwriting and pricing
  • Affordability checks (mortgages only)

Consent and preferences

  • Ways you want us to market to you
  • Information obtained from third parties acting on your behalf
  • Marketing
  • Prevention of direct marketing to those who have opted out
  • Pension tracing

Technical

  • Details on the devices and technology you use
  • Making sure our products and services are fit for purpose

Open data and public records

  • Electoral register
  • Land register
  • Other information about you that is openly available on the internet (including social media platforms)
  • Provision of financial advice
  • Product and service administration including processing claims

Documentary data and national identifiers

  • Details about you that are stored in documents like:
    • passport
    • driver's licence
    • birth certificate
    • National Insurance number
  • Identification and verification
  • Prevention of financial crime

Location data

  • Your device’s current location
  • Use of location services such as the location services of your operating system or browser, sensor data from your device (e.g. Bluetooth data, beacon data, Wi-Fi access points, GPS data and cell tower data.
  • In limited circumstances some products and/or services will require location data for the purpose of access control functionality, however you can change location setting on your device at any time. We will never share your location with others, except with your express consent or as permitted under this Privacy Policy.

If you have turned on persistent background location services on your device, we may obtain your device’s location even while you are not using the services or products on your device. The persistent background location services use various technologies to determine your precise location, such as the location services of your operating system or browser, sensor data from your device (e.g. magnetometer, barometer, gyroscopes, accelerometers, compasses, Bluetooth data, beacon data, Wi-Fi access points, GPS data, and cell tower data). If you have opted-in to sharing your background location with us as part of using our services or products, you can opt- out at any time by going into your device settings and switching off background sharing / location services.

Where do we get our information from?

  • Directly from you - information you provide when you fill in forms or contact us by phone, email etc. We may record phone calls for our mutual protection and to improve our customer service standards.
  • Information we collect about you or receive from other sources.
    • This could be information you provide to us electronically (through our website or an online portal, for example),
    • Information we get from your online browsing activity,
    • Information from a third party (e.g. tracing agencies, credit reference agencies and heir hunters) or from publicly available sources such as social media platforms or the electoral register (e.g. to detect fraudulent claims).
    • We may also receive information if you have been dealing with a financial adviser or broker, or have been introduced to us by another company (e.g. a bank, insurer, pension provider, building society, your employer or their financial adviser).
  • We use cookies and similar technologies to support the functioning of our websites and applications. This includes allowing you to browse between pages effectively, recording and storing your preferences and generally improving your online experience. They can also help to ensure that adverts you see online are more relevant to you. You can find more information about setting your cookie preferences by using the 'Cookie Policy' link at the bottom of our websites e.g. legalandgeneral.com.

How do we use your information?

We use personal information that we hold about you:

  • To carry out our responsibilities resulting from any agreements you’ve entered into with us (e.g. to provide financial advice, underwrite and administer your products, including processing claims, checking for false or inaccurate information against previous Legal & General product applications and mortgage affordability checks) and to provide you with the information, products and services that you’ve asked from us (e.g. quotes, pension tracing and sourcing care).
  • To provide you with marketing information about services and products we offer across the Legal & General group which may be of interest to you. If you have opted in to receive marketing from us, based on your marketing preferences we may deliver this information by post, telephone, e-mail, SMS or personalised online marketing via our own systems such as My Account, social media platforms and/or other third-party websites e.g. YouTube. Please note that if you choose not to receive online marketing, you will not see personalised marketing messages using your personal data, however you may still see generic online advertising about our products and services. We will not sell your data to third parties for them to market to you. We may also send marketing to you using our “legitimate interests”, please see below for further information.
  • To comply with any applicable legal or regulatory requirements (including “know your customer” checks, or to comply with any applicable regulatory reporting or disclosure requirements).
  • For carrying out market research, statistical analysis and customer profiling to help us to improve our processes, products and services and generate new business (e.g. to understand digital behaviours, identify financial attitudes, find new audiences with similar attributes and develop more engaging communications). This may also include sharing your personal information with our third-party platform and media suppliers to prevent you seeing adverts for products you already have with us.
  • To define our actuarial, pricing and underwriting strategies.
  • To maintain the accuracy and consistency of your information for all your products across the Legal & General Group.
  • To run our business in an efficient and proper way. This includes testing our systems, managing our financial position, business capability, planning, communications, corporate governance, and audit.
  • For any other purpose that we’ve agreed with you from time to time.

When you apply for a product or to receive a service from us, the application form you fill out or the resulting contract may contain additional conditions relating to the way we use and process your personal information. These will apply in addition to the uses described in this document.

In some cases, we may use software or systems to make automated decisions (including profiling) based on the personal information we hold or collect from others. These may include:

  • The prevention and detection of fraud and financial crime.
    To perform transaction monitoring, identity verification, money laundering and sanctions checks, and to identify politically exposed individuals. We are required by law to perform these activities which may be achieved using solely automated means to make decisions about you or any individual related to your products or application. We may use these activities to decline the services you have requested or to stop providing existing services to you.
  • Providing quotes, calculating premiums, and underwriting decisions.
    We may assess a number of factors including information about you and your health, lifestyle information such as your postcode, occupation and hazardous pursuits that you perform. These factors will be assessed against our pricing and underwriting criteria which may include statistics regarding life expectancy, illness, injury and demographic risks. For general insurance the factors may include your claims history, where you live, and the value of items you wish to insure. We may use these activities to determine the price of your products and whether we should undertake the risk of insuring you - including how much insurance should be granted to you, how much you should pay for it and whether or not to insure you in the first place.
    For mortgage purposes the factors may include your creditworthiness, assessment of mortgage affordability, property value and checks against records held by credit referencing and fraud prevention agencies.
  • The provision of financial advice and recommendations.
    We may perform computer-based assessments with your personal and financial information in order to produce your financial advice recommendations. These activities are not solely based on automated processing and our qualified financial advisers will always validate the outcome to ensure that the decisions are suitable based on the information that you have provided.
  • Speech Analytics.
    We may use speech analytics on recorded phone calls to help us meet our regulatory obligations e.g. identify vulnerable customers, complaints, staff training needs, process and product development, quality control and audit. These profiling activities are not solely based on automated processing. The results are manually reviewed to decide if we need to take further action.
  • Servicing activities such as
    (i) Personalising the content and design of communications and online services (e.g. My Account) and
    (ii) Determining when to provide tailored communications about your Legal & General products (e.g. as a result of changes in your personal circumstances or lifestyle) and the appropriate channels to use .
    These may be achieved using profiling in order to predict certain characteristics about you (e.g. your economic situation, interests, personal preferences or transactional behaviour). The activities will not have a detrimental effect on you.

Using your information in accordance with data protection laws

Data protection laws require us to meet certain conditions before we’re allowed to use your personal information in the way we describe in this privacy policy. We take these responsibilities extremely seriously. To use your personal information, we’ll rely on the following conditions, depending on the activities we’re carrying out:

  • Providing our contracts and services to you: We’ll process your personal information to carry out our responsibilities resulting from any agreements you’ve entered into with us and to provide you with the information, products and services you’ve asked from us, which may include online services.
  • Complying with applicable laws: We may process your personal information to comply with any legal obligation we’re subject to.
  • Legitimate interests: To use your personal data for any other purpose described in this privacy policy, we’ll rely on a condition known as "legitimate interests". It’s in our legitimate interests to collect your personal data as it provides us with the information that we need to provide our services to you more effectively. We may use your information to:
    • Carry out market research and product development, which can include creating customer demographics and/or profiling.
    • Continue to send marketing information, via post only, to customers who purchased a product before 25th May 2018 and did not opt-out, until such time as they have reviewed their marketing preferences (which can be done at any time).
    • Send marketing information, via post only, to customers who have a relevant and appropriate relationship with Legal & General.
    • Develop and test the effectiveness of marketing activities.
    • Develop, test and manage our brands, products and services.
    • On occasion, we may wish to send a card or small gift to a customer, in recognition of their particular circumstances.
    • Study and also manage how our customers use products and services from us and our business partners, including customer surveys.
    • Manage risk for us and our customers.

This requires us to carry out an assessment of our interests in using your personal data against the interests you have as a citizen and the rights you have under data protection laws.

The outcome of this assessment will determine whether we can use your personal data in the ways described in this privacy policy (except in relation to marketing, where we’ll always rely on your consent). We’ll always act reasonably and give full and proper consideration to your interests in carrying out this assessment.

  • Consent: We may provide you with marketing information about our services or products where you’ve provided your consent for us to do so.
    You may opt out of marketing at any time by e-mailing or telephoning your customer services team, details of which can also be found using the relevant Contact Us section of our website. You can also manage your marketing preferences on our customer self-service systems, My Account.
    Where you have consented, we will contact third parties (e.g. pension providers) to obtain information on your behalf.
  • Special category (sensitive) data:We may process medical and health, racial and ethnic origin, genetic and biometric or sex life and sexual orientation information you have provided, and any other sensitive information obtained from a third party (e.g. your GP or other medical professional). We will only process data that is needed for specific purposes, such as allowing us to underwrite and administer new and existing insurance products, and deal with claims. Our lawful basis for processing will be either substantial public interest in accordance with applicable law, or by obtaining your explicit consent.
    Additionally, to provide some other services (e.g. financial advice) or where we need to share your special category data with third parties, we will seek your explicit consent.
  • Criminal Conviction Data: Where necessary to meet legal obligations, we may process this type of information both for the purposes of allowing us to underwrite and administer your products, deal with claims and also for the prevention of financial crime (see below for further details).

Please be aware that the personal information you provide to us, and which we collect about you, is required for us to be able to provide our services to you and without it we may not be able to do so.

How long do we keep your information for?

We’ll keep your personal information in accordance with our internal retention policies. We’ll determine the length of time we keep it for based on the minimum retention periods required by law or regulation. We’ll only keep your personal information after this period if there’s a legitimate and provable business reason to do so.

For pension products, we may retain your personal information indefinitely using the legitimate interests condition in order to support future enquires from you, your family or financial adviser and our regulators.

For certain research and statistical activities, we may indefinitely retain minimised personal information about you, including medical information, to solely to define our actuarial, underwriting and pricing risk strategies. These activities will not be used to make a decision, or take measures, against you.

Occasionally, it may be impossible to delete data, due to technical limitations. In these cases, we will take steps to put the data beyond use. This means that your data will not be accessed or shared and your rights and freedoms will not be affected.

Who do we share your personal information with?

We’ll only disclose your information to:

  • Other companies within the Legal & General Group, third-party suppliers, media suppliers, contractors and service providers for the purposes listed under “How do we use your information” above.
  • Selected third parties, so that they can contact you with details of the services that they provide, where you have expressly opted-in or consented to the disclosure of your personal data for these purposes.
  • Our regulators, government agencies (e.g. HMRC), law enforcement agencies, credit reference agencies, data verification and tracing agencies, fraud prevention agencies, reinsurers, as well as our professional advisers etc. You can find an up to date list of our reinsurers on our website.

Additionally, we may disclose your personal information to third parties:

  • In the event that we sell or buy any business or assets, in which case we’ll disclose your personal data to the prospective seller or buyer of such business or assets.
  • If we, or substantially all of our assets, are acquired by a third party, in which case personal data held by us about our customers will be one of the transferred assets.
  • If you have been dealing with a financial adviser, we’ll provide information about your products and, where appropriate, with other information about your dealings with us, to enable the adviser to give you informed advice.
  • For employer sponsored schemes, we may share some details of your plan with your employer and any professional advisor(s) they appoint on their or your behalf to service and provide accurate financial advice about the scheme.
  • In order to enforce or apply the terms of any contract with you.
  • If we’re under a duty to disclose or share your personal data in order to comply with any legal obligation or regulatory requirements, or otherwise for the prevention or detection of fraud or crime.
  • To protect you and Legal & General from financial crime, Legal & General may be required to verify the identity of new and sometimes existing customers. This may be achieved by using credit reference agencies to search sources of information relating to you (an identity search). If this fails, Legal & General may need to approach you to obtain documentary evidence of identity. The checks will not affect your credit rating but your credit record may show that a search has been made (sometimes referred to as a soft footprint).
  • If you make a claim, we’ll share your information (where necessary) with other insurance companies to prevent fraudulent claims.
  • Legal & General Surveying Services may use a third party surveyor to carry out the survey or valuation of the property.

Additionally, your information, including special category and criminal conviction data, may be disclosed to our reinsurers and to any other insurance company to whom you apply for products or services.

If you’ve been introduced to us by another company (e.g. bank, insurer, building society, your employer or their financial adviser), we may share your information with them to enable them to:

  • Administer and service your products.
  • Carry out market research, statistical analysis and customer profiling.
  • Where you have consented, send you marketing information by post, telephone, e-mail and SMS about their products and those of carefully selected third parties.
  • Assist you with your application process (aggregator and price comparison websites only).

Credit Reference Agencies (mortgage customers)

In order to process your mortgage application, we will supply your personal information to credit reference agencies (CRAs) and they will give us information about you, such as about your financial history. We do this to assess creditworthiness and product suitability, check your identity, manage your account, trace and recover debts and prevent criminal activity.

Dependent on the type of mortgage, a hard footprint may be left on your credit file, which may affect your credit score when an application has been submitted. This may or may not affect your ability to obtain credit from other providers.

Legal & General will also continue to exchange information about you with CRAs on an ongoing basis, including about your settled accounts and any debts not fully repaid on time. CRAs will share your information with other organisations. Your data will also be linked to the data of your spouse, any joint applicants or other financial associates.

The identities of the CRAs, and the ways in which they use and share personal information, are explained in more detail at:

Fraud prevention

The personal information Legal & General collects from you may be shared with fraud prevention agencies who will use it to prevent fraud and money laundering and to verify your identity.

If false or inaccurate information is provided and fraud is identified details will be passed to fraud prevention agencies. Law enforcement agencies may access and use this information. We may also share information about you with other organisations and public bodies, including the police and we may check and/or file your details with fraud prevention agencies and databases.

If fraud is detected, you could be refused certain services, finance or employment. Further details of how your information will be used by us and these fraud prevention agencies can be found by accessing these links:

Legal & General and other organisations may also access and use this information to prevent fraud and money laundering, for example, when:

  • Checking details on applications for credit and credit related or other facilities.
  • Managing credit and credit related accounts or facilities.
  • Recovering debt.
  • Checking details on proposals and claims for all types of insurance.
  • Checking details of job applicants and employees.
  • Checking sources of income and tax details.

Legal & General and other organisations may access and use the information recorded by fraud prevention agencies. Please contact our Group Financial Crime department if you wish to receive the relevant details of the fraud prevention agencies:

Address: Group Financial Crime, 7th Floor, Brunel House, 2 Fitzalan Road, Cardiff CF24 0EB

Legal & General may also check the details of other parties related to your contract, including verification of identity. This includes beneficiaries, trustees, settlors, third party premium payers, executors or administrators of your estate, parties with power of attorney and any other beneficial owner.

Protecting your data outside the UK

The data that we collect from you may be transferred to, and stored at, a destination outside the UK to third-party suppliers, delegates or agents. We’ll take all reasonably necessary steps to make sure that your data is treated securely and in accordance with this privacy policy, to ensure your personal information is handled with the same protections that we apply ourselves.

We’ll only transfer your data to a recipient outside the UK where we’re permitted to do so by law (for instance, (A) where the transfer is based on standard data protection clauses adopted or approved by the UK’s Information Commissioner’s Office, (B) where the transfer is to a territory that is deemed ‘adequate’ by the UK, or (C) where the recipient is subject to an approved certification mechanism and the personal information is subject to appropriate safeguards, etc).

Your rights

You have rights under data protection law that relate to the way we process your personal data. More information on these rights can be found on the Information Commissioner’s website. If you wish to exercise any of these rights, please get in touch with your customer services team. Alternatively, you can also use the relevant Contact Us section of our website. 

Your rights

The right to be informed about how we process your personal information.
This right is met by the provision of this document

The right to access the personal data that we hold about you. For medical data that we have obtained from a health professional, we may need to seek their opinion before releasing the information to you. This is a legal requirement to ensure that the disclosure of the medical data will not seriously harm you or anyone else.

The right to make us correct any inaccurate personal data we hold about you.

The right to make us erase any personal data we hold about you. This right will only apply where for example:

  • We no longer need to use the personal data to achieve the purpose we collected it for
  • You withdraw your consent if we’re using your personal data based on that consent
  • Where you object to the way we use your data, and there is no overriding legitimate interest.

The right to restrict our processing of the personal data we hold about you. This right will only apply where for example:

  • You dispute the accuracy of the personal data we hold 
  • You would like your data erased, but we require to hold it in order to stop its processing
  • You have the right to require us to erase the personal data but would prefer that our processing is restricted instead
  • Where we no longer need to use the personal data to achieve the purpose we collected it for, but you need the data for legal claims.  

The right to object to our processing of personal data we hold about you (including for the purposes of sending marketing materials to you or using your personal information for profiling purposes).

The right to receive personal data, which you have provided to us, in a structured, commonly used and machine-readable format. You also have the right to make us transfer this personal data to another organisation.

The right to withdraw your consent,
This only applies where we’re relying on your consent in order to use your personal data (for example, to provide you with marketing information about our services or products).

For automated decisions (including profiling), you have right to:

  • Obtain an explanation of the decision and challenge it
  • Request for the decision to be reviewed by a human being.

Contacts and complaints

If you have any questions about this privacy policy or wish to exercise any of your rights, including changing your marketing preferences, please get in touch with your usual Legal & General contact or your customer services team. Alternatively, you can also use the relevant Contact Us section of our website.

If you have any concerns about the way we process your personal data, or are not happy with the way we’ve handled a request by you in relation to your rights, you also have the right to make a complaint to the Information Commissioner's Office. Their address is:

First Contact Team
Information Commissioner's Office
Wycliffe House
Water Lane
Wilmslow
SK9 5AF

Data Protection Officer

Legal & General has appointed a Data Protection Officer to provide independent expert advice and monitor compliance with data protection laws:

Name: Liz Bradley

Email address: Data.Protection@landg.com

Address: 1 Coleman Street, London, EC2R 5AA