Last Updated: February 2026

1. Introduction

ClearRoute Insurance ("we", "our", "us") is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, store, and share your personal information when you use our website, services, or interact with us.

ClearRoute Insurance is a UK-based insurance broker, and we are registered with the Information Commissioner's Office (ICO) as a data controller.

We comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

If you have any questions about this Privacy Policy or how we handle your personal data, please contact us using the details provided in Section 12.

2. Information We Collect

We collect and process the following types of personal information:

2.1 Information You Provide to Us

- Contact Information: Name, email address, postal address, telephone number

Identification Information: Date of birth, national insurance number (where required for specific insurance products)

- Financial Information: Bank details, payment card information, credit history (where relevant to insurance underwriting)

- Insurance Details: Policy information, claims history, no claims bonus, driving licence details, vehicle information, property details, health information (where relevant to the insurance product)

- Communication Preferences: Your preferences for receiving marketing communications

- Correspondence: Any information you provide when contacting us via email, phone, live chat, or through our website forms

2.2 Information We Collect Automatically

When you visit our website, we automatically collect:

Technical Information: IP address, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform

Usage Information: Information about your visit, including the full URL clickstream, page response times, download errors, length of visits to certain pages, page interaction information, and methods used to browse away from the page

Cookie Information: Details about cookies stored on your device (see Section 7 for more information)

2.3 Information We Receive from Third Parties

We may receive personal information about you from:

Insurance Providers: Underwriters and insurance companies we work with to provide you with quotes and policies

Credit Reference Agencies: To assess creditworthiness and prevent fraud

Comparison Websites: If you find us through a price comparison site

Claims Databases: Such as the Claims and Underwriting Exchange (CUE) and Motor Insurance Database (MID)

Fraud Prevention Agencies: To verify your identity and prevent fraud

Publicly Available Sources: Electoral roll, Companies House, and other public registers

3. How We Use Your Information

We use your personal information for the following purposes:

3.1 To Provide Insurance Services

Obtaining insurance quotes from insurers on your behalf

Arranging and administering insurance policies

Processing renewals and mid-term adjustments

Handling claims and liaising with insurers

Providing customer service and support

Legal Basis: Performance of a contract, legitimate interests (providing effective insurance broking services)

3.2 To Comply with Legal Obligations

Verifying your identity and preventing fraud

Meeting regulatory requirements set by the Financial Conduct Authority (FCA)

Responding to requests from law enforcement or regulatory bodies

Maintaining records as required by law

Legal Basis: Legal obligation, legitimate interests (compliance and fraud prevention)

3.3 For Marketing Purposes

Sending you information about our services, special offers, and insurance products we believe may interest you

Conducting market research and customer satisfaction surveys

Improving our services based on your feedback

Legal Basis: Consent (for electronic marketing), legitimate interests (for non-electronic marketing to existing customers)

3.4 To Improve Our Website and Services

Analysing how visitors use our website to improve functionality and user experience

Troubleshooting technical issues

Testing new features and services

Legal Basis: Legitimate interests (improving our services)

4. Go High Level Platform

Our website and customer relationship management system are hosted on the Go High Level platform, a third-party service provider based in the United States. Go High Level processes personal data on our behalf as a data processor.

4.1 Data Processed by Go High Level

Go High Level may process the following on our behalf:

Contact information submitted through website forms

Communication history (emails, SMS messages, phone calls)

Website analytics and visitor tracking data

Calendar bookings and appointment information

Customer interaction data

4.2 Data Protection Measures

Go High Level has implemented appropriate technical and organisational security measures to protect your data

We have a data processing agreement in place with Go High Level that ensures compliance with UK GDPR

Go High Level uses Standard Contractual Clauses (SCCs) approved by the UK Information Commissioner's Office for international data transfers

Data is encrypted in transit and at rest

4.3 International Data Transfers

As Go High Level is based in the United States, your personal data may be transferred to and processed in the USA. We ensure that such transfers are protected by appropriate safeguards, including Standard Contractual Clauses and additional security measures.

You can find more information about Go High Level's privacy practices at: https://www.gohighlevel.com/privacy-policy

5. Sharing Your Information

We may share your personal information with the following categories of recipients:

5.1 Insurance Providers

We share your information with insurance companies and underwriters to obtain quotes, arrange policies, and handle claims on your behalf.

5.2 Service Providers

We work with trusted third-party service providers who process data on our behalf, including:

Go High Level (CRM and website platform)

Payment processors

IT support and hosting providers

Email service providers

Analytics providers

5.3 Regulatory and Legal Bodies

We may share your information with:

The Financial Conduct Authority (FCA)

The Financial Ombudsman Service

Law enforcement agencies

HMRC and other tax authorities

Courts and tribunals

5.4 Fraud Prevention Agencies

We share information with fraud prevention agencies to verify your identity and prevent fraudulent claims and applications.

5.5 Credit Reference Agencies

Where relevant to insurance underwriting or payment arrangements, we may share information with credit reference agencies.

5.6 Business Transfers

If we sell or restructure our business, we may transfer your personal data to the new owner or successor entity.

We require all third parties to respect the security of your personal data and to treat it in accordance with the law. We only permit them to process your personal data for specified purposes and in accordance with our instructions.

6. Data Retention

We retain your personal information for as long as necessary to fulfil the purposes for which it was collected and to comply with legal, regulatory, and contractual obligations.

6.1 Retention Periods

Quote Information: 12 months from the quote date

Active Policy Information: Duration of the policy plus 7 years (in line with FCA requirements)

Expired Policies: 7 years from policy expiry

Claims Information: 7 years from claim settlement or closure

Marketing Consent: Until you withdraw consent or we determine the data is no longer needed

Financial Records: 7 years for tax and accounting purposes

After the retention period expires, we will securely delete or anonymise your personal information.

7. Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies to distinguish you from other users and to improve your browsing experience.

7.1 Types of Cookies We Use

Strictly Necessary Cookies: Essential for the website to function properly

Performance Cookies: Collect information about how visitors use our website

Functionality Cookies: Remember your preferences and personalise your experience

Targeting/Advertising Cookies: Deliver relevant advertisements and track campaign effectiveness

7.2 Third-Party Cookies

Our website may also use third-party cookies from:

Google Analytics (website analytics)

Go High Level (tracking and CRM functionality)

Social media platforms (Facebook, LinkedIn, Twitter)

Advertising networks

7.3 Managing Cookies

You can control and manage cookies through your browser settings. However, disabling certain cookies may affect the functionality of our website.

For more detailed information, please see our Cookie Policy.

8. Your Rights

Under UK GDPR, you have the following rights regarding your personal data:

8.1 Right of Access

You have the right to request a copy of the personal information we hold about you.

8.2 Right to Rectification

You have the right to request that we correct any inaccurate or incomplete personal information.

8.3 Right to Erasure ("Right to be Forgotten")

You have the right to request deletion of your personal data in certain circumstances, though this may not apply if we have a legal obligation to retain it.

8.4 Right to Restriction of Processing

You have the right to request that we restrict the processing of your personal information in certain circumstances.

8.5 Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit it to another controller.

8.6 Right to Object

You have the right to object to processing of your personal data where we rely on legitimate interests as the legal basis.

8.7 Rights Related to Automated Decision-Making

You have the right not to be subject to decisions based solely on automated processing, including profiling, which produce legal effects or similarly significantly affect you.

8.8 Right to Withdraw Consent

Where we rely on consent as the legal basis for processing, you have the right to withdraw consent at any time.

8.9 How to Exercise Your Rights

To exercise any of these rights, please contact us using the details in Section 12. We will respond to your request within one month, though this may be extended by two further months where necessary.

You will not usually have to pay a fee to exercise your rights. However, we may charge a reasonable fee or refuse to comply with your request if it is clearly unfounded, repetitive, or excessive.

9. Security of Your Information

We have implemented appropriate technical and organisational security measures to protect your personal information from unauthorised access, use, disclosure, alteration, or destruction.

9.1 Security Measures Include

Encryption of data in transit using SSL/TLS protocols

Encryption of data at rest

Regular security assessments and penetration testing

Access controls and authentication procedures

Employee training on data protection and security

Regular backups and disaster recovery procedures

Firewall protection and intrusion detection systems

9.2 Your Responsibility

Where you have chosen a password for accessing certain parts of our website or services, you are responsible for keeping this password confidential. We ask you not to share your password with anyone.

While we strive to protect your personal information, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security.

10. Third-Party Websites

Our website may contain links to third-party websites, including insurance provider websites and comparison sites. We are not responsible for the privacy practices or content of these external sites. We encourage you to read the privacy policies of any website you visit.

11. Children's Privacy

Our services are not directed at children under the age of 16, and we do not knowingly collect personal information from children. If you are under 16, please do not provide any personal information through our website. If we become aware that we have collected personal information from a child under 16, we will take steps to delete it as soon as possible.

12. Contact Us

If you have any questions about this Privacy Policy or how we handle your personal data, please contact us:

ClearRoute Insurance

Email: [email protected] Telephone: 07899 000006 Address: Gauntlet House, 15 Killingbeck Drive, Killingbeck, Leeds LS14 6UF.

Data Protection Officer: Ella Burgess

13. Complaints

If you are unhappy with how we have handled your personal information, you have the right to lodge a complaint with the supervisory authority:

Information Commissioner's Office (ICO)

Website: https://ico.org.uk/make-a-complaint/ Telephone: 0303 123 1113 Address: Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or for other operational, legal, or regulatory reasons. We will notify you of any significant changes by posting the new Privacy Policy on our website and updating the "Last Updated" date at the top of this page.

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

15. Regulatory Information

ClearRoute Insurance Ltd is an appointed representative of Gauntlet Risk Management Ltd who are authorised and regulated by the Financial Conduct Authority (FCA) under firm reference number 1041442. You may check this on the Financial Services Register by visiting the FCA website, www.fca.org.uk/register/ or by contacting the FCA on 0800 111 6768. Broker Zone Ltd is Registered in England & Wales. Registered office: Gauntlet House, 15 Acorn Business Park, Killingbeck Drive, Killingbeck, Leeds, LS14 6UF. Company Registration No 16626306.

Acceptance

By using our website and services, you acknowledge that you have read and understood this Privacy Policy and agree to the collection, use, and sharing of your information as described herein.