Privacy Statement

Health insurer OZF ensures that personal data provided by customers and users of its website is treated and secured with the greatest possible care. OZF considers the protection of the privacy of its customers and users of its website to be essential to its activities. We comply with the requirements of the Dutch Personal Data Protection Act (Wet Bescherming Persoonsgegevens (WBP)) in all instances. For more information please read the following privacy statement.

Introduction

OZF respects your privacy. We appreciate your confidence in us and do our utmost to protect your privacy. Protection of the privacy and security of your personal data is in itself extremely important. OZF also complies with the Dutch Personal Data Protection Act (Wet Bescherming Persoonsgegevens (WBP)), which sets out certain requirements regarding the use of data that can be traced to individuals. For the health insurance industry this Act has been translated into a general Code of Conduct for the Processing of Personal Data by Financial Institutions (Gedragscode Verwerking Persoonsgegevens Financiële Instellingen) and an addendum compiled specifically for health insurers to which we adhere. This privacy statement explains why we collect certain data, how we protect your privacy, your rights and the conditions under which we issue the information to you.

Why do we gather this information?

When you apply for insurance or request a financial service we ask you for personal data. We use the data you provide to process your application, implement the insurance contract and comply with statutory regulations. We may also use your data for other purposes and to tell you about other products and services we offer. Any data we gather is only held for as long as necessary.
We have registered our data processing with the Dutch Data Protection Authority (College Bescherming Persoonsgegevens (CBP)). These notifications are published on the CBP website under Melden / meldingenregister / zoeken naar verwerkingen / postcode = 7556

How we process particular information

In many instances we need information about your health. Possibly to determine whether you are entitled to reimbursement for example. This information is treated with great care. Our medical adviser is responsible for the correct processing of much of this information.
Information processed under the responsibility of the medical advisor is only issued to employees within the functional department headed by the medical advisor to the extent that they need the information to carry out their tasks. The employees in this department operate under the direct responsibility of the medical adviser. They have the same duty of confidentiality as the medical adviser, who is obliged to observe professional secrecy.

Basic insurance

Acceptance of applications for basic insurance is not subject to risk-based selection. Health insurers have a statutory obligation to accept all applications for basic insurance. Acceptance of applications for supplementary insurance may be subject to risk-based selection.

Consultation of the CIS Foundation database

As part of ensuring responsible acceptance policy, Achmea Group is also permitted to consult the data held on you by the Central Information System (CIS) Foundation in Zeist (a foundation that retains insurance data for companies). Members of the CIS Foundation can also exchange data with one another. The purpose of this process is to manage risks and combat fraud. CIS privacy regulations apply. You can find more information about this on the CIS website.

Security

Protection of privacy is important for you and for us. For this reason, our systems and programs are adequately secured. We also have management procedures to ensure that information is correct, current and complete and to prevent it from being accessed by unauthorised persons within or outside our organisation.

Website

We have taken appropriate steps to ensure that your visit to and use of our website is secure and to prevent abuse. All persons who can refer to the information you provide are obliged to maintain confidentiality. We use cookies to monitor visits to our website. Cookies help us tailor the content of our websites to your needs and to store your password or code so you do not have to type it in each time. If you do not want us to use cookies, you can adjust your browser settings to block cookies. If you accept the cookies, they will remain on your computer for 5 years unless you delete them. Disabling cookies may restrict your use of our website and services. All online forms are secured in accordance with the relevant legislation. You can check this by placing the cursor on the form and right-clicking on 'Properties'. This will show that the form is sent over a secure (https) connection.

How we monitor website use

We use web analytics services to monitor your use of our website. We do this in order to improve our website. For example, we want to see how visitors move around our site, what information they look for, when they leave the site and how long the visit lasts. The services we currently use for this purpose are Google Analytics and Speed-Trap.
 
Google Analytics uses cookies (small text files downloaded to your computer) to help the website analyse how visitors use the site. Google stores the data on your use of the website generated by the cookie (including your IP address) on servers in the United States. Google uses this information to monitor your use of the website, compile reports on website activity for website operators and to provide other services relating to website activity and internet usage. Google is permitted to issue this information to third parties if it has a legal obligation to do so, or if third parties process the information on its behalf. Google will not combine your IP address with other data held by Google. You can block the use of cookies by changing the settings in your browser. However, if you do, you may find that you are unable to use certain parts of this website. By using this website you agree to allow Google to process data in the manner and for the purposes described above.

To whom do we issue your data?

If you ask to see the data we hold on you, we will only issue it to you by phone or email, over the internet or at one of our counters if we are satisfied that you are who you say you are. Secure information about your health cannot be issued by phone or non-secure email. This is to protect your privacy. OZF only issues personal data to third parties if it is necessary and permitted by law and in the event of fraud.

What are your rights?

We need to keep your details up-to-date. If you notice that some of the information we hold on you is incorrect, please let us know. If you want to check that all of the information we hold on you is correct, you can ask us for an overview of the personal data we have on file for you. We will send you this overview within 4 weeks. If you notice any inaccuracies in the data we have on file for you, please write to us and ask us to correct or remove the data.

Why do we process data?

When you apply for insurance or request a financial service we ask you for personal data. We use the data you provide to process your application, manage our relationship with you, implement the insurance contract and comply with statutory regulations. We may also use your data for other purposes that support our business operations, such as fraud prevention, statistical analysis and to tell you about other relevant products and services. It goes without saying that your data is always handled in accordance with the Dutch Personal Data Protection Act (Wet Bescherming Persoonsgegevens (WBP)). Would you prefer not to receive information about our products and/or services? Or do you want to withdraw your consent to the use of your email address? Then please write to us at Zorgverzekeraar OZF and let us know.

Questions

If you have any questions about this privacy statement, you can write to us at:
 
Zorgverzekeraar OZF
Postbus 94
7550 AB Hengelo 

Complaints

If you wish to make a complaint about the way your personal data has been handled, you can write to us at the address shown under the heading ‘Questions’. If your complaint is not resolved to your satisfaction, you can submit your complaint to the Health Insurance Ombudsman for review at Ombudsman Zorgverzekeringen, Postbus 291, 3700 AG Zeist, telephone (030) 698 8 360, fax (030) 698 8 245. You must do this within 1 year of being notified of our decision.

New developments

We may change this privacy statement in light of new developments that affect our business operations. You can always find our current privacy statement on this page.

Definitions

Personal data
Data that can be traced to an individual.
 
Information about your health
All information about a person’s mental or physical health.
 
Medical adviser
The doctor (or dentist) who provides the health insurer with independent advice about medical matters and heads the corresponding functional department.
 
Functional department
Expert employees involved in processing information about a person’s health and requests for authorisation under the responsibility of the medical adviser and for specific activities.
 
Risk-based selection
Risk-based selection is prohibited by law for basic insurance. Risk-based selection means that a health insurer assesses whether a person applying for insurance meets the eligibility criteria based on the state of their health. Acceptance of applications for supplementary insurance may only be subject to risk-based selection if the insured person has provided medical information expressly for this purpose.
 
Statutory regulations
Under the Dutch Personal Data Protection Act (Wet Bescherming Persoonsgegevens (WBP)) your personal data may be processed without your express consent if this is necessary to comply with a statutory obligation. These statutory obligations include, first and foremost, the implementation of the Dutch Health Insurance Act (Zorgverzekeringswet (Zvw)) and the Exceptional Medical Expenses Act (Algemene Wet Bijzondere Ziektekosten (AWBZ)). Furthermore, under the State Taxes Act (Algemene Wet inzake Rijksbelastingen (AWR)) and the Work and Income (Implementation Structure) Act (Wet Structuur Uitvoeringsorganisaties Werk en Inkomen (SUWI)) among others, in certain cases, as a health insurer we are required to issue personal data to government agencies such as the Dutch Tax and Customs Administration (Belastingdienst), the Employee Insurance Agency (UWV), investigation authorities, the police and other (law enforcement) agencies.