Privacy Policy


Who are we?

We are Firemelon Ltd, registered at Companies House under number 03650601.

We are based at:

5th Floor, Moneda House
25-27 Wellington Place
Belfast
BT1 6GD

Our DPO is Tash Whitaker and she can be reached by emailing DPO@firemelon.com

In the most part, Firemelon acts as a Processor only. That means when we process personal data, we are doing so purely on the instruction of another company (the Controller). That company is likely to be the one that you have taken out/or are planning to take out insurance with. To find out more about how your data is protected by them, you should contact them directly.

We are registered with the ICO as a fee payer because we have chosen to appoint a Data Protection Officer. We have a Data Protection Officer because we process a lot of data on behalf of other companies and we want to ensure that we are protecting your rights and freedoms at all times, in the course of our day to day activities.

Firemelon Ltd, does on occasion, act as a Controller. This is only for the data that we process for our day to day internal business operations. It is a small amount of data, and we keep to a minimum the information we hold about you.

This privacy notice refers to the data we process as a Controller only. Our website is intended for existing/potential clients, suppliers and employees to browse. We don’t generate any logs or issue any cookies and we don’t capture or store any information of any kind through this website.

We are happy to talk to you about how we process and protect data, just email us on DPO@firemelon.com

Tell me more…

To see more about how we use your personal data, read the notice or notices which apply best to your relationship with us:


Employee or Potential Employee Privacy Notice

If you are an employee, please refer to the document section of the PeopleHR system for information about how we use your personal data, or email us on DPO@firemelon.com


Supplier Privacy Notice

What data we hold

In some circumstances we will hold the following information about you:

  • Your personal name and work contact information
  • Your payment details

Using your information

Managing our relationship with you

We will use your data to manage our relationship with you, to enquire about/buy products and services from you, and to pay you.

We need to use your details to enter into and perform contracts with you, as well as keeping track of what we have agreed – a legitimate thing for a business to do.

Dealing with your enquiry

If you give us a ring or make contact by email, we will follow up on your enquiry and see if there is a way in which we can help you. We keep a record of enquiries received, so that we know what we have said to whom. It is also legitimate for us to keep track of what we said to you, so we can understand further business need and plan our strategy accordingly.

Transfers of your data

We only transfer data outside of the EEA if it is to a country or organisation that is deemed by the EU to have adequate protection of data. For example, our cloud data providers in the US are all signed up to the Privacy Shield. https://www.privacyshield.gov/list

Retention periods

We hold your data for as long as we have a relationship with you or think we might want to buy products or services from you, or unless we are required by law to hold it for longer, e.g. litigation.

Third parties

We do have a small number of companies providing services to us. These are our processors and in line with our obligations, we have confirmed that they all adhere to the GDPR.

Technical and operational security

At Firemelon all our employees are trained in data privacy on a regular basis. All our data and devices are encrypted. We maintain up to date anti-virus and anti-malware protection.

Your rights

As a supplier you have rights in respect of our processing of your personal data. The relevant rights are:

  • Request a copy of your personal data and information about our processing of it
  • Request that we delete information on you, if we do not need to hold it
  • Request that we correct any personal data that we hold on you
  • Request that we stop processing your data, although we can still hold it
  • Request that we move your data to another organisation’s IT system electronically, in some circumstances

If you want to exercise any of these rights, please just contact us on DPO@firemelon.com

You also have the right to lodge a complaint about our processing with a supervisory authority — in the UK that is the ICO whose details are here: https://ico.org.uk/global/contact-us/postal-addresses/

Contact us

If you want to talk to us about this, please email us on DPO@firemelon.com


Client Privacy Notice

What data we hold and how we use it

As one of our clients we hold information that is needed to fulfil our contract with you. This will be your contact details.

We will use your contact details, including your LinkedIn profile, to stay in touch with you during the course of everyday business and to manage our relationship with you.

If you give us a ring or make contact by email, we will follow up on your enquiry and see if there is a way in which we can help you. We keep a record of enquiries received, so that we know what we have said to whom.

Transfers of your data

We only transfer data outside of the EEA if it is to a country or organisation that is deemed by the EU to have adequate protection of data. For example, our cloud data providers in the US are all signed up to the Privacy Shield. his can be viewed at: https://www.privacyshield.gov/list

Retention of your data

We hold your contact data for the length of time that you are a client of ours, then another 7 years in case of any dispute (which we are sure there won’t be!)

In the 8th year, contact data is purged as an annual event.

Third Parties

As a general principle, we will not transfer your personal data to third parties without your permission, but we do have a small number of companies providing services to us, e.g. cloud service providers. These are our processors and we have confirmed that they all meet the requirements of the GDPR.

Technical and operational security

At Firemelon all our employees are trained in data privacy on a regular basis. All our data and devices are encrypted. We maintain up to date anti-virus and anti-malware protection.

Your rights

You have lots of rights in respect of our processing of your personal data. The relevant rights are:

  • Request a copy of your personal data and information about our processing of it.
  • Request that we delete information on you if we do not need to hold it.
  • Request that we correct any personal data that we hold on you.
  • Request that we stop processing your data, for certain things, e.g. marketing although we can still hold it.
  • Request that we move your data to another organisation’s IT system electronically.

If you want to exercise any of these rights, please just contact us on DPO@firemelon.com

You also have the right to lodge a complaint about our processing with a supervisory authority — in the UK that is the ICO whose details are here: https://ico.org.uk/global/contact-us/postal-addresses/

Contact us

If you are a member of the public rather than a business entity, please contact your insurance, claims or assistance company, who will be the Controller for any further information.

If you are a business who is a client of ours and want to talk to us about this, please email us on DPO@firemelon.com