- The processing is necessary in view of entering into or for the performance of a contract (e.g. insurance policy, service agreement);
- The processing is necessary for compliance with a legal obligation (e.g. disclosure to government institutions or supervisory authorities, AML/CTF checks);
- The processing is necessary for the purpose of the legitimate interests of the company (e.g. call recording to limit corporate liability when clarifying instructions over the phone).
- The processing is necessary to respond to your query(ies) submitted via our website contact form, email or any other means.
1.1 Access to your personal data by our employees
Your personal data is available on a need to know basis within Lombard International Group, and can only be accessed by the employees of the relevant internal departments to the extent necessary to fulfil their respective tasks and responsibilities. Our employees process your personal data in accordance with our policies and procedures to ensure an adequate level of security.
1.2 Access to your personal data by third parties
Depending on the purpose for the processing of your personal data, third parties may have access to your personal data when this is necessary for the provisioning of their products or services to Lombard International Group These third parties may be other group companies, banks, insurance companies, head-hunters/recruitment agencies, IT suppliers, service suppliers, financial, tax or legal advisors, auditors, IT forensic experts, partners or a regulatory or government body.
If your personal data is transferred to a recipient in a country that does not provide an adequate level of protection of personal data, Lombard International Group will transfer your personal data in compliance with the applicable laws (including Luxembourg professional secrecy law), as well as on the basis of appropriate and suitable safeguards such as EU Standard Contractual Clauses with these third parties.
1.3 Sub-processing of your Personal Data
Lombard International Group may use external providers (data processors) to process your personal data on its behalf. Lombard International Assurance S.A. shall only use processors providing sufficient guarantees to implement appropriate technical and organisational measures in such a manner that processing will meet the requirements of the General Data Protection Regulation and ensure the protection of your privacy. As data controller, Lombard International Group will ensure that processors act under its authority and only process personal data insofar as strictly necessary for the performance of the services contracted.
Protecting your privacy is very important to us.
Lombard International Group has taken adequate safeguards to ensure the confidentiality and security of your personal data by implementing appropriate technical, physical and organisational measures to protect personal data against accidental or unlawful destruction or accidental loss, damage, alteration, unauthorised disclosure or access, and against all other forms of unlawful processing (including, but not limited to unnecessary collection) or further processing.
Lombard International Group is ISO/IEC 27001 certified.