AIG and Individual Privacy
We at AIG Insurance Company of Canada (referred to as “AIG”, “we”, “our”, or “us”) abide by these Privacy Principles and want you, our applicants, policyholders, insureds, claimants, and any other individuals who provide us with personal information (referred to as “Customers” or “you”), to be aware of how and why we handle personal information. We work hard to respect and maintain your privacy. However, the very nature of our business is such that the collection, use and disclosure of personal information are fundamental to the products and services we provide.
For the purposes of these Privacy Principles personal information means information about an identifiable individual. For example: an individual’s name, birth date, address, age, health and financial information is personal information which AIG may collect, use and in certain circumstances, where necessary, disclose, in the course of providing insurance services and carrying on business.
1. Consent and Personal Information
AIG obtains consent for the collection, use, and disclosure of personal information, except where consent is not required by law. AIG does not obtain your consent for the collection, use and disclosure of business contact information. By applying for or purchasing AIG’s products and services, you are providing your consent to our collection, use, and disclosure of your personal information as set out in these Privacy Principles. AIG relies on the broker’s advice where the insurance broker tells AIG that we have a Customer’s consent to collect information.
Consent may be obtained by AIG and its affiliated companies directly or through a broker or agent, an insurance adjuster, claims administrator, investigator, or lawyer when personal information is collected for claims purposes.
An individual may decline to consent, or revoke consent, to the collection and use of personal information for insurance purposes but in that case, insurance products and related services and the assessment of applications, claims or complaints may be limited or terminated.
2. Collecting Personal Information
We may collect information directly from the individual concerned on applications for insurance and through direct interactions with us, including via AIG websites, software applications made available by us for use on or through computers and mobile devices (the “Apps”), our social media pages set forth in the links in the footer on AIG.com and other means (for example, from your application and claim forms, telephone calls, e-mails and other communications with us, as well as from claim investigators, medical professionals, witnesses or other third parties involved in our business dealings with you). We also collect information from various third party sources such as: insurance brokers, adjusters, other insurance intermediaries, third party administrators, government, industry associations, and other entities that have information about you. For instance, we may obtain your driving record, claims history and/or credit history, where permitted by law, to assist us in underwriting your application for insurance. We and our service providers may supplement the personal information we collect with information from other sources, such as publicly available information from social media services, commercially available sources and information from our affiliates or business partners. This information from third parties is subject to the privacy policies under which the information was collected.
3. Using Personal Information
Personal information is typically collected and used by us for insurance purposes such as: assessing risk, processing applications for insurance coverage, establishing rates, administering insurance products, developing and improving insurance products and services and other services, including actuarial and pricing tools and risk engineering, risk management and loss prevention programs for our insurance clients, claim assessment, processing and settlement, and, where applicable, managing claim disputes. AIG also uses personal information to detect and prevent fraud, compile statistics, verify and provide information to insurance industry associations, report to regulatory or industry entities in accordance with laws and prudent insurance industry practices, and conduct market research. This may also include collecting and disclosing personal information about third parties with respect to claims made against AIG Customers.
4. Use of Personal information for Marketing Purposes
AIG may collect and use personal information for marketing purposes, such as identifying and communicating with individuals who are most likely to find AIG products and services of interest. AIG may also disclose personal information to our affiliates to use for marketing purposes to offer you their products and services, which may be of interest to you. You may opt not to have us, or alternatively not to have our affiliates, collect, use or disclose personal information for marketing purposes in which case we and our affiliates will not use or disclose personal information for marketing purposes. Offers of upgraded or additional coverage, special offers and promotional mailings, and offers of additional products and services from our affiliates will not be sent by us or our affiliates. As an AIG customer, if you have not opted out of receiving marketing communications, you may receive marketing emails regarding AIG products and services. Each marketing email will include an unsubscribe mechanism, available for you at any time to remove your consent.
5. Accuracy of Your Personal Information
AIG maintains procedures to ensure that the information we collect and use is accurate, up-to-date, and as complete as possible. However, we rely on individuals to disclose all material information to us and to inform us of any changes required. With proof of your identity, a request to access or correct your personal information in our possession may be made by contacting the Privacy Officer at the address set out below in the section called “Contacting the Privacy Officer”.
6. Safeguarding Your Information
We apply appropriate safeguards to our computer networks and physical files and we restrict access to personal information to those AIG employees, authorized administrators, reinsurers, consultants or insurance representatives who need to know that information in order to underwrite, adjudicate or administer insurance products and services.
7. Disclosure of Personal Information
Personal information is sought and exchanged with both affiliated and unaffiliated insurance companies, reinsurers, insurance and reinsurance brokers and other intermediaries and agents, appointed representatives, distributors, financial institutions and insurance industry organizations at the time of assessing an application for insurance and any renewal, extension, variation or cancellation of any issued policy, as well as in the event of any claim, to the extent necessary for statistical purposes or to assess and rate a specific risk, determine the status of coverage, and investigate, administer and provide updates regarding claims. We also share information to combat fraud; where permitted or required by law; or, at the request of government institutions in accordance with applicable law.
AIG sometimes retains an affiliated company or an independent third party, reinsurer or a technology service provider (“Authorized Administrator”) to perform on our behalf, certain functions in support of the products and services we provide. Such functions could include the underwriting, offering or administering of AIG insurance products and services or any related claims. Accordingly, in certain instances these affiliates or third parties require your personal information to the extent that it is necessary in the performance of those specific reinsurance, underwriting, marketing, consulting, administrative, analytical, rehabilitative, claims, investigation, reporting or related services. AIG obligates these affiliates and third parties to use and take steps to protect personal information in accordance with the requirements of these Privacy Principles.
Some Authorized Administrators may be located outside of Canada, in the United States of America or another foreign jurisdiction outside of Canada. When this occurs, the collection, use and disclosure of personal information will be subject to the laws of the jurisdiction in which it is situate. By communicating personal information to us, applying for and/or acquiring the products and services of AIG, you hereby consent to the authorized administrators located outside of Canada accessing, processing or storing your personal information (as the case may be) and disclosing such personal information as required by the governing laws of that jurisdiction. If you would like to obtain more information about our use of Authorized Administrators or any other service providers located outside of Canada, please contact the Privacy Officer at the address set out below in the section called “Contacting the Privacy Officer”.
AIG may transfer your personal information as an asset in connection with any contemplated or actual sale, merger or other disposal of all or part of our business or assets, or as part of a corporate reorganization or other change in corporate control, including for the purposes of determining whether to proceed with such transaction or fulfilling any records or other reporting requirements to such parties. In such circumstances, we will ensure that any transfer of personal information is subject to applicable law and reasonable data protection security, confidentiality and usage protocols and restrictions.
8. Retention and Access to Your Personal Information
We retain personal information for the purposes described in these Privacy Principles but only for so long as is necessary. Personal information is stored at one of our offices in Canada or at a location of one of our affiliates in the United States or another foreign country, as required and defined under “Disclosure of Personal Information” above. Access to your personal information is limited to our employees, agents, insurance intermediaries, Authorized Administrators and service providers who need access in order to perform their job or provide services. Given the nature of insurance and our on-going exposure to potential claims, where necessary, and when legally required, some of the information we collect for insurance purposes is kept indefinitely.
With proof of your identity, a request to access information in our possession may be made by contacting the Privacy Officer at the address set out below in the section called “Contacting the Privacy Officer”. The right to access information is not absolute. Therefore AIG may decline access to information that we have under our control, subject to any legal restrictions or rights of refusal by AIG. Such instances may be as follows:
We may charge a reasonable fee in advance for copying and sending information you have requested and to which you have a right of access.
9. Contacting the Privacy Officer
Request for further information, personal information access or any concerns about how we handle your information with AIG should be referred to our Privacy Officer, as follows:
AIG Insurance Company of Canada
120 Bremner Blvd.
Canada M5J 0A8
Or at the following e-mail address: AIGCanadaOmbudsman@aig.com
Or you may call us toll free: 1-800-387-4481
10. Internet Privacy Practices
We may collect your information through AIG websites or mobile applications. All personal information collected through our websites and mobile applications are subject to these Privacy Principles.
We may collect other information (“Other Information”) through our websites or mobile applications that does not reveal your specific identity. Other Information includes but is not limited to:
We and our third party service providers may collect Other Information in a variety of ways, including the following:
Please note that we may use and disclose Other Information for any purpose, except where we are required to do otherwise under applicable law. If we are required to treat Other Information as personal information under applicable law, then, in addition to the uses listed in this “Website Privacy Practices” section, we may use and disclose Other Information for all the purposes for which we use and disclose personal information.
11. Third Party Websites
These Privacy Principles do not address, and we are not responsible for, the privacy, information or other practices of any third parties, including any third party operating any website to which our website contains a link. The inclusion of a link on our website does not imply endorsement of the linked site by us or by our group companies.
12. Use of Site by Minors
Our website is not directed to individuals under the age of 18, and we request that these individuals do not provide Personal Information through our website.
13. Changes to these Privacy Principles
AIG Canada reserves the right to modify these Privacy Principles from time to time. If these Privacy Principles change materially, we will take reasonable measures to notify you, including posting a copy of the revised Privacy Principles to our website. Accordingly, we recommend that you review our current Privacy Principles from time to time at Aig.ca.
AIG Insurance Company of Canada – Privacy Principles (September 2018).