TruRisk Privacy Notice

This information has been produced to help you understand everything you need to know about the way TruRisk collects, uses, and shares personal data, what your legal rights are and how to exercise them.

We hope you’ll take some time to read this document; we’ve tried to keep it all as simple as possible and to avoid jargon, and we’ll make our best efforts to keep you informed if there are any changes to the way we process your personal data in the future.

TruRisk takes its responsibility for protecting your data very seriously and we do advise you get to know our practices. If there’s anything here you don’t understand, or if you want to ask any questions, please feel free to contact us.

Who is the Controller?

TruRisk Limited is the Controller.
Registered address: TruRisk Ltd., Leahy O’Riordan, 1-2 Marino Mart, Dublin 3, D03T3P1, Ireland
Registration number: 680484
In this document TruRisk Limited may be referred to as “we”, “us”, “our”, or “TruRisk”.

What kinds of Personal Data does TruRisk Process?

TruRisk collects personal data for various purposes; with that in mind we have created a list of the types of personal data that we may collect, either directly from yourself or from other sources, in order to achieve those purposes.

The kinds of personal data we may collect (and which we will delete on request, see below) include:

  • Name
  • Email Address
  • Telephone number
  • Log in ID
  • Location (GPS coordinates)
  • In-app message content

What are the reasons TruRisk collects Personal Data?

Legal Obligations

TruRisk uses personal data firstly to fulfil any contractual obligations that exist between us and yourself. Where we request personal data be provided to enter into, or meet the terms of any such contract, you will be required to provide the relevant personal data or we will not be able to deliver the goods or services you want. In such cases the lawful basis of us processing the personal data is that it is necessary for the performance of a contract.

We are required by law to process personal data for purposes relating to our legal obligations, these include:

  • To provide for our financial and regulatory commitments.
  • To carry out required business operations and due diligence.
  • To cooperate with relevant authorities
  • To investigate any data or other claims whereby the organisation may have to defend itself.

Legitimate Interests
TruRisk may process Personal Data for any of the following purposes, which are considered to be within our legitimate business interests:

  • To provide goods and services where it has been requested,
  • To send notifications of any changes to the goods and/or services provided that may affect people,
  • To allow the organisation to support and maintain our products in active service,
  • To enhance the security measures in place that protect data we are responsible for automated decision making

TruRisk uses automated decision making to derive a company’s Risk Score. This is carried out using data provided by users of the TruRisk mobile applications and website. If you would like any information about the data we use to ascertain the score please contact us.

Where does TruRisk obtain Personal Data from?

We will collect personal data directly from you in various ways. This could include downloading, or using the app, or if you provide the data directly to a representative of TruRisk.

We may also gather personal data by any of the following methods:

From technical functionality that gathers data automatically from computer equipment when people visit our online platforms, or download or use the app.

Who will TruRisk share your Personal Data with?

To achieve the above stated purposes for which we process your personal data, we may have to share your personal data with certain third parties.

We shall make all reasonable efforts to ensure that any third-party we share your personal data with is also compliant with data protection law.

The kinds of third parties we may share your personal data with include:

Organisations where it is necessary to provide services.

The specific types of third-parties TruRisk may share your personal data with include:

  • IT providers
  • Storage of data
  • Insurers/Brokers
  • Sharing information
  • Risk Engineers
  • Provision of expert advice

Where will TruRisk store your Personal Data?

As a part of our standard business practices, we only transfer your personal data to organisations based in the UK or the EU.

How long will TruRisk keep your Personal Data?

We will keep your personal data for the duration of the service provided plus one year.

Your Rights, Our Responsibility

There are several rights granted to you immediately upon providing us with your personal information; some of these are mentioned above. We’d like you to know that at TruRisk we take your rights seriously and will always conduct ourselves in a way that is considerate of our responsibility to serve your legal rights.

The Right of Access

This grants you the right to confirm whether or not your personal data is being processed, and to be provided with relevant details of what those processing operations are and what personal data of yours is being processed.

If you would like access to the personal data we have about you, we ask that you contact us using the details below.

The Right to Rectification

This one is fairly straightforward; if you notice that the data we have about you is inaccurate or incomplete, you may request we rectify the mistake. We will make every effort to respond to requests of this type immediately.

The Right to Erasure

Otherwise known as the ‘right to be forgotten’, this gives you the right to request your personal data be deleted.

You can request your data be deleted in one of two ways:

1) Delete your user account yourself
While logged in to the TruRisk app, go to Profile > ‘…’ > Settings > Delete Account.

2) Request for us to delete your user account for you
In the app, raise a support ticket by navigating to Profile > ‘…’ > Need Help? > Contact Us. In your message, please mention you wish your account to be deleted. Alternatively, you can also email support@trurisk.io to request your data be deleted.

This is not an absolute right; if you were to request that we erase your personal data, we would erase as much of that data as we could but may have to retain some information if it is necessary. Where we have received a request for personal data to be erased, if it is necessary for us to retain some of that information we shall ensure that the remaining data is used only when and where it is absolutely necessary.

The Right to Objection

The right to object is a basic freedom all democracies enjoy. If you wish to object to the way we use, or have used, your personal data you may do so freely.

The Right to Complain

We will always try to maintain the highest standards and encourage the confidence our customers have in us as an organisation. To achieve this, we request that any complaints be first brought to our attention so we can properly investigate matters. If you would like to complain about TruRisk to a regulatory body, you may do so by contacting your local data protection supervisory authority.

Contact Details

TruRisk Ltd
Leahy O’Riordan,
1-2 Marino Mart,
Dublin 3, D03T3P1
Ireland

+353 1 223 3791
GDPR@TruRisk.io

Who is the TruRisk UK Representative?

Trurisk has appointed a UK representative who will liaise between yourself and our head office.
To contact them see the contact details below.

Ametros Group Ltd
Lakeside Offices, Thorn Business Park
Rotherwas Industrial Estate
Hereford
Herefordshire
England
HR2 6JT

0330 223 2246
dpo@ametrosgroup.com
www.ametrosgroup.com

Who is the TruRisk Data Protection Officer

Trurisk has appointed an external organisation to oversee and audit their data protection responsibilities.

To contact them see the contact details below.

Ametros Group Ltd
Lakeside Offices, Thorn Business Park
Rotherwas Industrial Estate
Hereford
Herefordshire
England
HR2 6JT

0330 223 2246
dpo@ametrosgroup.com
www.ametrosgroup.com