Please note that the type of information we collect may include, but is not limited to;

1.1 Personal Identification Details: such as your name, contact information, date of birth, National ID,
1.2 Financial Information: such as credit or debit card numbers and bank account details.
1.3 Driving and insurance details: Driving licence information, previous insurance policy details, previous accident and claim history, details of any motoring convictions.
1.4 Audio, video, and other electronic data: audio, electronic, visual, or similar information such as CCTV footage, photographs, and call recordings.
1.5 Sensitive information and data relating to criminal records and offences, such as health information and some background checking information (i.e., alleged criminal offences and records).

The personal data we collect depends on the use of the personal data. We collect the minimum personal data necessary for the stated purposes. The purpose for processing your personal data is detailed below:

1. Offer, administer, and manage the Services provided to you, including assessing, underwriting insurance policies, reinsurance processing,
2. Administer, investigate, and settle claims or complaints in relation to insurance policies and/ or the Services provided;
3. communicate with you and to respond to your requests, inquiries, comments, and concerns.
4. carry out due diligence, identity, data validation, anti-money laundering, “Know Your Customer”, and other business acceptance, vetting, and risk management checks;
5. process payments, including your payments for the insurance premium and any mid-term adjustments;
6. fulfil legal and regulatory obligations, including applicable prudential rules and industry codes of conduct.
7. perform analytics for risk modelling purposes and to analyse trends;
8. research, audit, reporting, and other business operations purposes,

We will use the information we collect about you in connection with the Services, and for any such use, we rely on an appropriate legal ground. Where processing involves sensitive personal information, we also rely on an additional legal justification to use such information

1. Performance of the contract with you to enable us to take steps in offering the services and fulfil our obligations.
2. To meet our legal and regulatory obligations, as Lords Insurance is regulated by certain industry regulators and is required to provide some Services in accordance with relevant regulatory rules, such as financial and prudential regulations, tax rules, obligations to prevent and detect unlawful activities, among others.
3. Consent: You may also provide us with your consent to receive certain Services, marketing, or communications from us (where legally required). In such situations, you are not obliged to provide your consent, and you may choose to subsequently withdraw consent at any stage once provided by sending us an email at dataprivacy@lordsinure.co.bw or contact us during office hours at 3960214. However, where you refuse to provide information that we reasonably require to provide the Services, we may be unable to offer you the Services, and/or we may terminate the Services if not possible to fulfil the Services without the respective information.

Lords Insurance may, from time to time, share your personal information with the following categories of recipients where necessary to offer, administer, and manage the Services provided to you.

1. Within Lords Insurance: we may share your personal information with other entities, divisions, and subsidiaries for the processing purposes outlined in this Statement.
2. Insurance market participants: where necessary to offer, administer, and manage the Services provided to you, such as insurers, underwriters, reinsurers, Associations of Insurance Underwriters, brokers, intermediaries, assessors, claim investigators, loss adjusters, and legal advisors, where necessary to defend legal claims, insurance claims, or claims similar in nature.
3. Internal and external auditors: where necessary for the conduct of company audits or to investigate a complaint or security threat.
4. Law enforcement bodies: where necessary to facilitate the prevention or detection of crime or the apprehension or prosecution of offenders.
5. Public authorities, regulators, and government bodies: where necessary for Lords Insurance to comply with our legal and regulatory obligations.
6. Third-party service providers: where we outsource our processing operations to suppliers that process personal information on our behalf. These processing operations shall remain under our control and will be carried out in accordance with our security standards and strict instructions.

Lords Insurance may transfer your personal information to other countries for further processing for the purposes outlined in this Statement. We endeavour to ensure that such transfers comply with all applicable data privacy laws and provide appropriate protection for the rights and freedoms conferred to individuals under such laws.

This may include transfers to countries that the Information and Data Protection Commission considers providing adequate data privacy safeguards.

Where we transfer personal information to countries that are not subject to an adequacy decision, we shall put in place appropriate safeguards, approved by the Commission, covered through data transfer agreements which contain standard contractual clauses to ensure that personal information receives an appropriate and consistent level of protection across the entities.

For security and safety purposes, we use CCTV surveillance in certain areas of our premises. CCTV cameras may record images of individuals who enter these areas. The footage is used solely for ensuring the safety and security of individuals on our premises, preventing, detecting, and investigating incidents of crime and misconduct, monitoring and protecting company property and assets.

Lords Insurance may send you information about its products and other services and/or products to your contacts shared with us, which may include text messages, emails, and other related platforms. If you do not wish to receive such information, you have the right to opt out of receiving such messages at no cost to you by contacting our offices.

The security of your personal information is important to us, and we have implemented appropriate technical and organizational security measures to protect the confidentiality, integrity, and availability of your personal information from unauthorised access, alteration, disclosure, or destruction, to ensure that such information is processed in accordance with applicable data privacy laws.

We retain appropriate records of your personal information for as long as is reasonably necessary for the purposes outlined in this statement and compliance with our legal and regulatory obligations on how long such data is required to be retained.

Where it is no longer required for the outlined purposes, we undertake to securely dispose of it in a timely and consistent manner or pseudonymise it.

• Access and request a copy of your personal data.
• Request rectification where accuracy is disputed.
• Request the erasure of your personal information where erasure is subject to legal or statutory obligations to which we are subject.
• Object to the processing of your personal data under certain circumstances.
• Right to withdraw consent given for the processing of personal data at any time.
• request that your personal information be provided to you or a third party of your choice in portable form to enable its reuse. That is, in a structured, commonly used, and machine-readable format transmittable to another data controller without hindrance. Provided that the processing is based on consent or contract, carried out by automated means, and where technically feasible, directly transmittable.
• We do not make any decision solely based on automated processing that produces legal or similarly significant effects.

Please note, the above rights are subject to legal and regulatory requirements.

If you have any questions about the content of this Statement or the rights conferred to you under the applicable data privacy laws, or a complaint regarding the processing of your personal data, you may contact our office at:

Data Controller: Kedumetse Baabusi
Email info: datapricvacy@lordsinsure.co.bw
Contact number: +267 3960214/ 77002163
Postal Address: P O Box 403200, Gaborone

Data Protection Officer: Ms Aobakwe Kwape
Email info: aobakwe.kwape@bstiua.co.bw
Contact number: +267 73886606/ 74434273
Postal Address: P O BOX 715, Gaborone

After engaging us, should your complaint not be addressed to your satisfaction, you have the right to lodge a complaint with the Information and Data Protection Commission.

This Statement may be amended from time to time in accordance with changes in our regulatory requirements and data protection practices.