Medical Travel Shield

Sure Privacy


Sure Insurance Privacy


SIS Privacy Statement

Protecting the individual's privacy on the Internet is crucial to the future of Internet-based business and the move toward a true Internet economy. We have created this Privacy Statement to demonstrate our firm commitment to the individual`s right to data protection and privacy. This Privacy Statement outlines how we handle information that can be used to directly or indirectly identify an individual ("Personal Data").

General Information

When does this Privacy Statement apply?

This Privacy Statement applies to Personal Data that you provide to SIS or which is derived from the Personal Data as outlined below. The use of and any information that is gathered by cookies or other web tracking technologies is subject to the disclosures and options provided which can be found on the relevant website.

Data Controller.

The data controller of

2 White Lion Court, Cornhill, London, EC3V 3NP Company No: 4687399 United Kingdom.

Where a registration form is presented on this website, the data controller may vary depending on the actual offering or the purpose of the data collection, but it is in any case displayed on the individual registration form’s privacy statement.

The SIS Group’s data protection officer is Terry Eyles.


What does SIS do with my Personal Data?

SIS will process the Personal Data provided hereunder only as set out in this Privacy Statement. Further information can be found below. Where the processing of your Personal Data is based on a statutory permission, you can find information on which Personal Data SIS is processing or using for which purpose below. Where consent for the processing of your Personal Data is required you can find further information below.

Duration of processing of Personal Data.

Where SIS is processing and using your Personal Data as permitted by law or under your consent, SIS will store your Personal Data:

  1. only for as long as is required to fulfil the purposes set out below or
  2. until you object to SIS’s use of your Personal Data (where SIS has a legitimate interest in using your Personal Data), or
  3. until you withdraw your consent (where you consented to SIS using your Personal Data). However, where SIS is required by mandatory law to retain your Personal Data longer or where your Personal Data is required for SIS to assert or defend against legal claims, SIS will retain your Personal Data until the end of the relevant retention period or until the claims in question have been settled.


Why am I required to provide Personal Data?

As a general principle, your granting of any consent and your provision of any Personal Data hereunder is entirely voluntary; there are generally no detrimental effects on you if you choose not to consent or to provide Personal Data. However, there are circumstances in which SIS cannot act without certain Personal Data, for example because this Personal Data is required to provide you with an insurance product. In this case, it will unfortunately not be possible for SIS to provide you with what you request without the relevant Personal Data.

Where will my Personal Data be processed?

As part of a global group of companies, SIS has affiliates and third-party service providers within as well as outside of the European Economic Area (the “EEA”). Therefore, whenever SIS is using or otherwise processing your Personal Data for the purposes set out in this Privacy Statement, SIS may transfer your Personal Data to countries outside of the EEA including to such countries in which a statutory level of data protection applies that is not comparable to the level of data protection within the EEA. Whenever such transfer occurs, it is based on the Standard Contractual Clauses (according to EU Commission Decision 87/2010/EC or any future replacement) in order to contractually provide that your Personal Data is subject to a level of data protection that applies within the EEA. You may obtain a redacted copy (from which commercial information and information that is not relevant has been removed) of such Standard Contractual Clauses by sending a request to the data controller.

Data subjects’ rights.

You can request from SIS at any time information about which Personal Data SIS processes about you and the correction or deletion of such Personal Data. Please note, however, that SIS can delete your Personal Data only if there is no statutory obligation or prevailing right of SIS to retain it. Kindly note that if you request that SIS delete your Personal Data, you will not be able to continue to use any SIS service that requires SIS’s use of your Personal Data.

If SIS uses your Personal Data based on your consent or to perform a contract with you, you may further request from SIS a copy of the Personal Data that you have provided to SIS. In this case, please contact the email address below and specify the information or processing activities to which your request relates, the format in which you would like this information, and whether the Personal Data is to be sent to you or another recipient. SIS will carefully consider your request and discuss with you how it can best fulfil it.

Furthermore, you can request from SIS that SIS restricts your Personal Data from any further processing in any of the following events:

  1. you state that the Personal Data SIS has about you is incorrect, (but only for as long as SIS requires to check the accuracy of the relevant Personal Data),
  2. there is no legal basis for SIS processing your Personal Data and you demand that SIS restricts your Personal Data from further processing,
  3. SIS no longer requires your Personal Data, but you claim that you require SIS to retain such data to claim or exercise legal rights or to defend against third party claims or
  4. in case you object to the processing of your Personal Data by SIS (based on SIS’s legitimate interest as further set out below) for as long as it is required to review as to whether SIS has a prevailing interest or legal obligation in processing your Personal Data.

Please direct any such request to


Right to lodge a complaint.

If you believe that SIS is not processing your Personal Data in accordance with the requirements set out herein or applicable EEA data protection laws, you can at any time lodge a complaint with the data protection authority of the EEA country in which you live or with the data protection authority of the country or state in which SIS has its registered seat.

Use of this website by children.

This website is not intended for anyone under the age of 16 years. If you are younger than 16, you may not register with or use this website.

Links to other websites. This website may contain links to foreign (meaning non-SIS Group companies) websites. SIS is not responsible for the privacy practices or the content of websites outside the SIS Group of companies. Therefore, we recommend that you carefully read the privacy statements of such foreign sites.

Where SIS uses My Personal Data based on the Law

In the following cases, SIS is permitted to process your Personal Data under the applicable data protection law.

Providing the services.

If you order services from SIS, SIS will use the Personal Data that you enter into the order or registration form (usually (a subset of) your name, (email) address, telephone number, company name and address, your job title and role and, if payment is to be made to SIS, credit card number or bank details) only to process your order or to provide the requested service. This may include taking the necessary steps prior to entering into the contract, responding to your related inquiries, and providing you with billing information and to process or provide customer feedback and support.

Ensuring compliance.

SIS and its products and services are subject to the laws of various countries including, without limitation, those of the European Union and its member states, and of the United States of America.

SIS’s legitimate interest.

Each of the use cases below constitutes a legitimate interest of SIS to process or use your Personal Data. If you do not agree with this approach, you may object against SIS’s processing or use of your Personal Data as set out below.

Creation of anonymized data sets.

SIS may anonymize Personal Data provided under this Privacy Statement to create anonymized data sets, which will then be used to improve its and its affiliates’ products and services.

Recording of calls and chats for quality improvement purposes. In case of telephone calls or chat sessions, SIS may record such calls (after informing you accordingly during that call and before the recording starts) or chat sessions in order to improve the quality of SIS’s services.


Right to object.

You may object to SIS using Personal Data for the above purposes at any time by sending us an email If you do so, SIS will cease using your Personal Data for the above purposes (that is to say, under a legitimate interest set out above) and remove it from its systems unless SIS is permitted to use such Personal Data for another purpose set out in this Privacy Statement or SIS determines and demonstrates a compelling legitimate interest to continue processing your Personal Data. 


Revocation of a consent granted hereunder.

You may at any time withdraw a consent granted hereunder by sending us an email In case of withdrawal, SIS will not process Personal Data subject to this consent any longer unless legally required to do so. In case SIS is required to retain your Personal Data for legal reasons your Personal Data will be restricted from further processing and only retained for the term required by law. However, any withdrawal has no effect on past processing of personal data by SIS up to the point in time of your withdrawal.

U.S.A. Specific Provisions

Where SIS is subject to U.S. privacy requirements, the following also applies:

Do Not Track.

You may elect not to accept cookies by changing the designated settings on your web browser if the relevant website contains a link to it. Cookies are small text files placed on your computer while visiting certain sites on the Internet used to identify your computer. Please note that if you do not accept cookies, you may not be able to use certain functions and features of our site. This site does not allow third parties to gather information about you over time and across sites. 

Requirements to Protect Children's Privacy.

We do not intend for our websites or online services to be used by anyone under the age of 16. If you are a parent or guardian and believe we may have collected information about a child, please contact