x

Privacy policy

Bolster B.V. (“Bolster”, “we”, “us”, “our”) respects your privacy and is committed to protecting personal data in accordance with the General Data Protection Regulation (EU) 2016/679 (“GDPR”) and applicable Dutch data protection laws. 

This Privacy Policy explains how we collect, use, disclose and safeguard personal data in the context of our activities as an insurance intermediary and programme administrator. It also outlines the rights individuals have in relation to their personal data and how those rights can be exercised.


1. Controller

Bolster B.V.
Stationsweg 6
5211 TW ’s-Hertogenbosch
The Netherlands
KvK: 84653574
Email: info@bolsterinsurance.com

Bolster acts as the data controller for the processing activities described in this Privacy Policy.

In the context of arranging and administering insurance, multiple parties may be involved. Insurers and brokers (including Howden Nederland B.V.) may process personal data as independent controllers for their respective roles. Each party operates within its own legal and regulatory responsibilities.
 

2. Scope and Context

This Privacy Policy applies to all personal data processed by Bolster in connection with its services, including data relating to:

> visitors of our website

> clients and prospective clients

> policyholders, insured persons and claimants

> business partners and service providers

Given the nature of our services, personal data is often processed in a business-to-business-to-consumer context, where data is provided via corporate clients but relates to individual insured persons. Bolster processes such data strictly within the scope of its services.
 

3. Personal Data We Process

The categories of personal data processed depend on the relationship and services involved.

This may include identification and contact details, insurance-related information, and claims documentation. In practice, this typically involves name and contact details, policy and shipment information (such as inventories and insured values), claims-related information (including descriptions of loss, supporting documentation and settlement data), and financial details where required for premium handling or claim payments.

Technical data, such as IP address and website usage, may also be processed where permitted.

Bolster does not intentionally collect special categories of personal data. However, such data may occasionally be included in claims documentation. In such cases, processing is limited to what is strictly necessary and handled with appropriate safeguards.
 

4. Purposes of Processing and Legal Basis

Personal data is processed only where a lawful basis exists under the GDPR and always in a manner that is proportionate and relevant.

Processing is primarily necessary for the performance of a contract or to take steps prior to entering into a contract. This includes arranging insurance coverage, issuing certificates and administering policies.

Personal data is also processed to comply with legal and regulatory obligations applicable to Bolster as an insurance intermediary. This includes obligations relating to record keeping, compliance monitoring, sanctions screening and fraud prevention.

In addition, certain processing activities are based on legitimate interests, such as maintaining and improving services, ensuring operational continuity, managing risk and defending legal claims. Where this basis is relied upon, Bolster ensures that these interests do not override the rights and freedoms of the individual.

Where required, such as for marketing communications or the use of non-essential cookies, processing is based on consent. Consent can be withdrawn at any time.
 

5. Sharing of Personal Data

In order to provide its services, Bolster may share personal data with relevant parties within the insurance and service chain.

This includes insurers underwriting the risk, brokers, claims handlers, surveyors, IT service providers and professional advisors. Where required, data may also be shared with regulatory or supervisory authorities.

Such sharing is always limited to what is necessary for the relevant purpose. Where third parties process personal data on behalf of Bolster, appropriate contractual safeguards are in place to ensure compliance with applicable data protection laws.

Bolster does not sell personal data or make it available to third parties for unrelated commercial purposes.
 

6. International Data Transfers

Due to the international nature of the services provided, personal data may be transferred outside the European Economic Area.

Where this occurs, Bolster ensures that appropriate safeguards are implemented in accordance with the GDPR. This may include reliance on adequacy decisions or the use of Standard Contractual Clauses, supplemented where necessary by additional protective measures.
 

7. Retention of Personal Data

Personal data is retained only for as long as necessary for the purposes for which it was collected, taking into account legal, contractual and regulatory requirements.

In the context of insurance services, this generally means that data relating to policies and claims is retained for up to seven years after the end of the relationship or settlement of a claim, unless a longer retention period is required or justified, for example in connection with legal proceedings.
 

8. Data Security

Bolster takes appropriate technical and organisational measures to protect personal data against unauthorised access, loss or misuse.

These measures include secure systems, access controls based on roles and responsibilities, and internal procedures designed to ensure confidentiality and integrity. Security measures are periodically reviewed and updated where appropriate.
 

9. Your Rights

Under the GDPR, individuals have the right to access their personal data, request correction or deletion, restrict processing, and object to certain forms of processing. Where applicable, individuals also have the right to data portability.

Requests can be submitted via info@bolsterinsurance.com. Bolster may request additional information to verify identity before processing a request. A response will be provided within one month, unless an extension is permitted due to complexity or volume.

If you are not satisfied with the handling of your personal data, you have the right to lodge a complaint with the Autoriteit Persoonsgegevens via its official website https://autoriteitpersoonsgegevens.nl.
 

10. Cookies

Our website uses cookies to ensure proper functioning and to improve user experience.

Functional cookies are necessary for the operation of the website and are always active. These cookies do not require consent.

All other cookies, including analytical and marketing cookies, are disabled by default and will only be placed after obtaining your prior consent through a clear affirmative action via the cookie banner. Where analytical cookies are used, these are configured in a privacy-friendly manner where possible.

You can choose to accept or decline non-essential cookies and can change or withdraw your preferences at any time via the cookie banner or through your browser settings.
 

11. Marketing and Communication

Bolster may send communications relating to its services where this is relevant to an existing business relationship or otherwise permitted under applicable law.

Where consent is required, such communications will only be sent after an explicit opt-in. Individuals may opt out at any time.
 

12. Mandatory Data and Consequences

In certain cases, providing personal data is necessary in order to enter into or perform a contract, or to comply with legal obligations.

If such data is not provided, Bolster may not be able to offer or perform its services, including issuing insurance coverage or processing claims.
 

13. Automated Decision-Making

Bolster does not carry out automated decision-making or profiling that produces legal or similarly significant effects within the meaning of Article 22 GDPR.
 

14. Third-Party Websites

Our website may contain links to third-party websites. Bolster is not responsible for the content or privacy practices of such websites.
 

15. Updates

This Privacy Policy may be updated from time to time to reflect changes in legal requirements or in the way Bolster operates.

The most recent version is always available on our website.
 

16. Contact

For any questions regarding this Privacy Policy or the processing of personal data:
 

Bolster B.V.
Address: Stationsweg 6, 5211TW, 's Hertogenbosch The Netherlands
Email: info@bolsterinsurance.com 
Phone: +31 (0) 85 - 800 1065