Skip to main content

Privacy policy

The Royal London Mutual Insurance Society Limited is authorised by the Prudential Regulation Authority and regulated by the Financial Conduct Authority and the Prudential Regulation Authority. The firm is on the Financial Services Register, registration number 117672.  It provides life assurance and pensions. Registered in England and Wales number 99064. Registered office: 55 Gracechurch Street, London, EC3V 0RL. Royal London Marketing Limited is authorised and regulated by the Financial Conduct Authority and introduces Royal London's customers to other insurance companies. The firm is on the Financial Services Register, registration number 302391. Registered in England and Wales number 4414137. Registered office: 55 Gracechurch Street, London, EC3V 0RL.

This Privacy Policy sets out the data processing practices of The Royal London Group. This Privacy Policy may change and you should review it regularly. We will of course notify you of any changes where we are required to do so.

How do we use your information?

We (The Royal London Mutual Insurance Society Limited) and your employer may both act as data controllers1. This means we both have separate responsibilities for your personal information.

As a data controller, we're responsible for the personal information you provide to us (or that we obtain from other sources). We'll use your personal information, including any sensitive personal information, for providing and developing our products and services, legal and regulatory reasons, marketing and market research and verifying your identity and crime prevention.

If you leave the plan, we'll keep a copy of your personal information for a reasonable period, so that we can, for example, comply with our legal and regulatory obligations.

We may share your personal information with other companies in the Royal London Group, legal and regulatory bodies, auditors, legal and financial advisers, other financial institutions, professional advisers, identity authentication and fraud prevention agencies, authorised agents and third party service providers.

Your personal information may be processed in countries outside the European Economic Area, but only on terms that protect its security and comply with the requirements of The Data Protection Act 1998.

We may share information about your membership of the plan with your employer (for example, joining dates and leaving dates) where this information is needed to help them manage their responsibilities to you.

We may also provide services to help your employer manage its responsibilities to you, for example under pensions legislation. In this case, we'd be acting as a data processor2 on behalf of your employer, with your employer having overall responsibility for how we use your information.

Where your employer's workplace pension plan is being used to automatically enrol employees, you will be assessed for your eligibility to join in terms of the relevant legislation. Even if at the time your initial assessment is made you are not eligible to join the plan or any other scheme run by your employer, we (on behalf of your employer) will keep a copy of your personal information. This is so that we can check whether your circumstances change, as you may then become eligible to be enrolled into the plan in the future. We'll hold this information in accordance with the terms of our agreement with your employer. If you're unsure whether your employer's workplace pension plan is being used for automatic enrolment, please speak to your employer.

We may contact you by mail, phone, email or other electronic messaging with further offers, promotions and information about our products and services that may be of interest to you. Please contact us if you do not wish to receive this information.

You can ask for a copy of all the information we hold about you. And if you think we've got something wrong, you can let us know and we'll put it right.

If you have any further questions about how we use your personal information, please contact us or write to the Data Protection Officer, Royal London House, Alderley Road, Wilmslow, Cheshire, SK9 1PF.

1 A data controller is a person or an organisation who determines the purposes and manner your personal information is, or is to be, processed.

2 A data processor means any person (other than an employee of the data controller) who processes personal information on behalf of the data controller.

Links to other websites

We provide hypertext links to third party internet sites through the Site and we may display advertisements from third parties on the Site. These sites are not covered by our Privacy Policy and we are not responsible for the content or privacy policies of these sites and third party advertisers, nor for the way in which information about their users is treated. In particular, unless expressly stated, we are not agents for these sites or advertisers nor are we authorised to make representations on their behalf. We would advise you to look at the privacy statement applicable to that site.