Users are entitled to request access to their own personal data on payment of a fee.

The security and protection of personal information supplied by a user to the Site is of the highest importance and concern to CHC Global. CHC Global has in place all generally accepted standards of technology and operational security in order to protect personal information submitted to the Site from loss, misuse, alteration or destruction and to ensure compliance with the requirements of all applicable data protection and privacy legislation. CHC Global collects, uses and is responsible for certain personal information about you. We are regulated under the General Data Protection Regulations which applies across the European Union (including in the United Kingdom) and we are responsible as ‘controller’ of that personal information for the purposes of those laws.


CHC Insurance Services Limited (“CHC Global”) operates the website (the “Site”) and organises its maintenance and the placing of its content.CHC Global is committed to integrity in our dealings with our clients, employees and service partners (“customers”). This commitment extends to personal information about our customers that we might possess or acquire. We strive to protect the personal information under our control and take certain precautions to help maintain the security and accuracy of that data.CHC takes our obligations under the Data Protection Act 2018 and the General Data Protections Regulation (GDPR) seriously and have adopted the appropriate measures to ensure compliance. This Data Collection and Privacy Policy applies to all CHC Global affiliates and subsidiaries. If you have questions or concerns regarding this statement, you should contact CHC Global on


CHC Global commits to the user that it will only use the personal information supplied by the user for the purposes for which such information was provided or for its own statistical analysis or marketing initiatives. The Site does not collect personal information for sale or dissemination to third parties or host mailings on behalf of third parties. Where required by the reason for which the personal information was initially supplied by the user, the personal information will be shared with other companies under the protections required under applicable law and with the explicit consent of the user.

Data Controller

CHC Insurance Services Limited is registered in England and Wales company number 10942687; is the data controller of any personal data collected through the Site and will process such information in accordance with the provisions of the Data Protection Act 2018 and to the applicable data protection law. Any enquiries relating to data protection issues should be sent to


CHC Global will not share any personal information collected on the Site with third parties unless required by law, required to enable the fulfilment of the purpose for which the personal information was originally supplied or as otherwise set out in this Policy. In submitting personal information to the Site the user is giving explicit consent for such usage. CHC Global may transfer all or part of its business in the circumstances of a merger or sale of part or all of its business. In such circumstances personal information supplied by a user of this website may be transferred but this will be only in circumstances where the acquiring company has agreed to the same standards and terms of privacy as are set out in this policy.


As part of our Code of Conduct and Ethics, CHC is committed to maintaining a business environment that values diversity and inclusion. We strive to always communicate and promote our values and working practices, which discourage intolerance and discrimination. Our Code promotes “good manners” in our daily activities and we promote the fair and decent treatment of all people, no matter their age, disability, gender, race, religion or belief, sex, sexual orientation, marriage or civil partnership, pregnancy – maternity or paternity status, or veteran status. We nurture an inclusive environment, where employees feel engaged, valued and empowered to share their experiences, perspectives and ideas.


Under the GDPR, we must always have your consent or a legal basis for using personal data. This may be because the data is necessary for our performance of a contract with you, because you have consented to our use of your personal data, or because it is in our legitimate business interests to use it (legal basis). You may withdraw your consent to such processing at any time.


We may need to transfer your data to insurance market participants or their affiliates or sub-contractors which are located outside of the European Economic Area (EEA). Those transfers would always be made in compliance with the GDPR. If you would like further details of how your personal data would be protected if transferred outside the EEA, please contact the data protection contact at Ambant (see ‘How to contact us’ below).


Under the General Data Protection Regulation you have a number of important rights free of charge. In summary, those include rights to:

access to your personal information and to certain other supplementary information that this Privacy Notice is already designed to address

require us to correct any mistakes in your information which we hold

require the erasure of personal information concerning you in certain situations

receive the personal information concerning you which you have provided to us, in a structured,

commonly used and machine-readable format and have the right to transmit those data to a

third party in certain situations

object at any time to processing of personal information concerning you for direct marketing

object to decisions being taken by automated means which produce legal effects concerning you or similarly significantly affect you

object in certain other situations to our continued processing of your personal information

otherwise restrict our processing of your personal information in certain circumstances

For further information on each of those rights, including the circumstances in which they apply, see the Guidance from the UK Information Commissioner’s Office (ICO) on individuals rights under the General Data Protection Regulation.

If you would like to exercise any of those rights, please:

email, call or write to us OR Catherine Johnstone, our Data Controller


We have appropriate security measures in place to prevent personal information from being accidentally lost, or used or accessed in an unauthorised way. We limit access to your personal information to those who have a genuine business need to know it. Those processing your information will do so only in an authorised manner and are subject to a duty of confidentiality. We also have procedures in place to deal with any suspected data security breach. We will notify you and any applicable regulator of a suspected data security breach where we are legally required to do so.


We hope that can resolve any query or concern you raise about our use of your information. The General Data Protection Regulation also gives you right to lodge a complaint with a supervisory authority, in particular in the European Union (or European Economic Area) state where you work, normally live or where any alleged infringement of data protection laws occurred. The supervisory authority in the UK is the Information Commissioner who may be contacted at