Health insurer OZF ensures that personal data provided by customers and users of its website is treated and secured with the greatest possible care. OZF considers the protection of the privacy of its customers and users of its website to be essential to its activities. We comply with the requirements of the Dutch Personal Data Protection Act (Wet Bescherming Persoonsgegevens (WBP)) in all instances. For more information please read the following privacy statement.
OZF respects your privacy. We appreciate your confidence in us and do our utmost to protect your privacy. Protection of the privacy and security of your personal data is in itself extremely important. OZF also complies with the Dutch Personal Data Protection Act (Wet Bescherming Persoonsgegevens (WBP)), which sets out certain requirements regarding the use of data that can be traced to individuals. For the health insurance industry this Act has been translated into a general Code of Conduct for the Processing of Personal Data by Financial Institutions (Gedragscode Verwerking Persoonsgegevens Financiële Instellingen) and an addendum compiled specifically for health insurers to which we adhere. This privacy statement explains why we collect certain data, how we protect your privacy, your rights and the conditions under which we issue the information to you.
Why do we gather this information?
When you apply for insurance or request a financial service we ask you for personal data. We use the data you provide to process your application, implement the insurance contract and comply with statutory regulations. We may also use your data for other purposes and to tell you about other products and services we offer. Any data we gather is only held for as long as necessary.
We have registered our data processing with the Dutch Data Protection Authority (College Bescherming Persoonsgegevens (CBP)). These notifications are published on the CBP website
under Melden / meldingenregister / zoeken naar verwerkingen / postcode = 7556
How we process particular information
In many instances we need information about your health. Possibly to determine whether you are entitled to reimbursement for example. This information is treated with great care. Our medical adviser is responsible for the correct processing of much of this information.
Information processed under the responsibility of the medical advisor is only issued to employees within the functional department headed by the medical advisor to the extent that they need the information to carry out their tasks. The employees in this department operate under the direct responsibility of the medical adviser. They have the same duty of confidentiality as the medical adviser, who is obliged to observe professional secrecy.
Acceptance of applications for basic insurance is not subject to risk-based selection. Health insurers have a statutory obligation to accept all applications for basic insurance. Acceptance of applications for supplementary insurance may be subject to risk-based selection.
Consultation of the CIS Foundation database
As part of ensuring responsible acceptance policy, Achmea Group is also permitted to consult the data held on you by the Central Information System (CIS) Foundation in Zeist (a foundation that retains insurance data for companies). Members of the CIS Foundation can also exchange data with one another. The purpose of this process is to manage risks and combat fraud. CIS privacy regulations apply. You can find more information about this on the CIS website
Protection of privacy is important for you and for us. For this reason, our systems and programs are adequately secured. We also have management procedures to ensure that information is correct, current and complete and to prevent it from being accessed by unauthorised persons within or outside our organisation.
How we monitor website use
We use web analytics services to monitor your use of our website. We do this in order to improve our website. For example, we want to see how visitors move around our site, what information they look for, when they leave the site and how long the visit lasts. The services we currently use for this purpose are Google Analytics and Speed-Trap.
To whom do we issue your data?
If you ask to see the data we hold on you, we will only issue it to you by phone or email, over the internet or at one of our counters if we are satisfied that you are who you say you are. Secure information about your health cannot be issued by phone or non-secure email. This is to protect your privacy. OZF only issues personal data to third parties if it is necessary and permitted by law and in the event of fraud.
What are your rights?
We need to keep your details up-to-date. If you notice that some of the information we hold on you is incorrect, please let us know. If you want to check that all of the information we hold on you is correct, you can ask us for an overview of the personal data we have on file for you. We will send you this overview within 4 weeks. If you notice any inaccuracies in the data we have on file for you, please write to us and ask us to correct or remove the data.
Why do we process data?
When you apply for insurance or request a financial service we ask you for personal data. We use the data you provide to process your application, manage our relationship with you, implement the insurance contract and comply with statutory regulations. We may also use your data for other purposes that support our business operations, such as fraud prevention, statistical analysis and to tell you about other relevant products and services. It goes without saying that your data is always handled in accordance with the Dutch Personal Data Protection Act (Wet Bescherming Persoonsgegevens (WBP)). Would you prefer not to receive information about our products and/or services? Or do you want to withdraw your consent to the use of your email address? Then please write to us at Zorgverzekeraar OZF and let us know.
If you have any questions about this privacy statement, you can write to us at:
7550 AB Hengelo
If you wish to make a complaint about the way your personal data has been handled, you can write to us at the address shown under the heading ‘Questions’. If your complaint is not resolved to your satisfaction, you can submit your complaint to the Health Insurance Ombudsman for review at Ombudsman Zorgverzekeringen, Postbus 291, 3700 AG Zeist, telephone (030) 698 8 360, fax (030) 698 8 245. You must do this within 1 year of being notified of our decision.
We may change this privacy statement in light of new developments that affect our business operations. You can always find our current privacy statement on this page.
Data that can be traced to an individual.
Information about your health
All information about a person’s mental or physical health.
The doctor (or dentist) who provides the health insurer with independent advice about medical matters and heads the corresponding functional department.
Expert employees involved in processing information about a person’s health and requests for authorisation under the responsibility of the medical adviser and for specific activities.
Risk-based selection is prohibited by law for basic insurance. Risk-based selection means that a health insurer assesses whether a person applying for insurance meets the eligibility criteria based on the state of their health. Acceptance of applications for supplementary insurance may only be subject to risk-based selection if the insured person has provided medical information expressly for this purpose.
Under the Dutch Personal Data Protection Act (Wet Bescherming Persoonsgegevens (WBP)) your personal data may be processed without your express consent if this is necessary to comply with a statutory obligation. These statutory obligations include, first and foremost, the implementation of the Dutch Health Insurance Act (Zorgverzekeringswet (Zvw)) and the Exceptional Medical Expenses Act (Algemene Wet Bijzondere Ziektekosten (AWBZ)). Furthermore, under the State Taxes Act (Algemene Wet inzake Rijksbelastingen (AWR)) and the Work and Income (Implementation Structure) Act (Wet Structuur Uitvoeringsorganisaties Werk en Inkomen (SUWI)) among others, in certain cases, as a health insurer we are required to issue personal data to government agencies such as the Dutch Tax and Customs Administration (Belastingdienst), the Employee Insurance Agency (UWV), investigation authorities, the police and other (law enforcement) agencies.