Privacy Policy


Who are we?

We are Firemelon Ltd, registered at Companies House under number 03650601.

We are based at:

5th Floor, Moneda House
25-27 Wellington Place
Belfast
BT1 6GD

Our DPO is Tash Whitaker and she can be reached by emailing DPO@firemelon.com

In the most part, Firemelon acts as a Processor only. That means when we process personal data, we are doing so purely on the instruction of another company (the Controller). That company is likely to be the one that you have taken out/or are planning to take out insurance with. To find out more about how your data is protected by them, you should contact them directly.

We are registered with the ICO as a fee payer under number ZA107210. We have chosen to appoint a Data Protection Officer because we process a lot of data on behalf of other companies and we want to ensure that we are protecting data at all times, in the course of our services.

Firemelon Ltd, does on occasion, act as a Controller. This is only for the data that we process for our day-to-day internal business operations. It is a small amount of data, and we keep to a minimum the information we hold about you.

This privacy notice refers to the data we process as a Controller only. Our website is intended for existing/potential clients, suppliers and employees to browse. We don’t generate any logs or issue any cookies and we don’t capture or store any information of any kind through this website.

We are happy to talk to you about how we process and protect data, just email us on DPO@firemelon.com

Tell me more…

To see more about how we use your personal data, read the notice or notices which apply best to your relationship with us:


Employee or Potential Employee Privacy Notice

If you are an employee, please refer to the document section of the PeopleHR system for information about how we use your personal data, or email us on DPO@firemelon.com


Supplier Privacy Notice

What data we hold

In some circumstances we will hold the following information about you:

  • Your personal name and work contact information
  • Your payment details

Using your information

Managing our relationship with you

We will use your data to manage our relationship with you, to enquire about/buy products and services from you, and to pay you.

We need to use your details to enter into and perform contracts with you, as well as keeping track of what we have agreed.

Dealing with your enquiry

If you give us a ring or make contact by email, we will follow up on your enquiry and see if there is a way in which we can help you. We keep a record of enquiries received, so that we know what we have said to whom. It is also legitimate for us to keep track of what we said to you, so we can understand further business need and plan our strategy accordingly.

Transfers of your data

Like most companies, we use a number of other companies as part of our data processing, for example cloud services and technology services. We have Data Processing Agreements in place with these providers. Where data is transferred outside of the UK and EEA, we ensure that appropriate protection and mechanisms are in place, for example the UK International Data Transfer Agreement or addendum . If data is transferred from the UK to the EEA then it is done so on the basis of those countries having a comparable data protection regime to the UK (adequacy)

Retention periods

We hold your data for as long as we have a relationship with you or think we might want to buy products or services from you, or unless we are required by law to hold it for longer, e.g. litigation.

Technical and operational security

At Firemelon all our employees are trained in data privacy on a regular basis. All our data and devices are encrypted. We maintain up to date anti-virus and anti-malware protection.

Your rights

As a supplier you have rights in respect of our processing of your personal data. The relevant rights are:

  • Request a copy of your personal data and information about our processing of it
  • Request that we delete information on you, if we do not need to hold it
  • Request that we correct any personal data that we hold on you
  • Request that we stop processing your data, although we can still hold it
  • Request that we move your data to another organisation’s IT system electronically, in some circumstances

If you want to exercise any of these rights, please just contact us on DPO@firemelon.com

You also have the right to lodge a complaint about our processing with a supervisory authority — in the UK that is the ICO whose details are here: https://ico.org.uk/global/contact-us/postal-addresses/

Contact us

If you want to talk to us about this, please email us on DPO@firemelon.com


Client Privacy Notice

What data we hold and how we use it

As one of our clients we hold information that is needed to fulfil our contract with you. This will be your contact details.

We will use your contact details, including your LinkedIn profile, to stay in touch with you during the course of everyday business and to manage our relationship with you.

If you give us a ring or make contact by email, we will follow up on your enquiry and see if there is a way in which we can help you. We keep a record of enquiries received, so that we know what we have said to whom.

Transfers of your data

Like most companies, we use a number of other companies as part of our data processing, for example cloud services and technology services. We have Data Processing Agreements in place with these providers. Where data is transferred outside of the UK and EEA, we ensure that appropriate protection and mechanisms are in place, for example the UK International Data Transfer Agreement or addendum . If data is transferred from the UK to the EEA then it is done so on the basis of those countries having a comparable data protection regime to the UK (adequacy)

Retention of your data

We hold your contact data for the length of time that you are a client of ours, then another 7 years in case of any dispute (which we are sure there won’t be!)

In the 8th year, contact data is purged as an annual event.

Technical and operational security

At Firemelon all our employees are trained in data privacy on a regular basis. All our data and devices are encrypted. We maintain up to date anti-virus and anti-malware protection.

Your rights

As a data subject you have rights in respect of our processing of your personal data.

  • Your right of access - you have the right to ask us for copies of your personal information.
  • Your right to rectification - you have the right to ask us to rectify information you think is inaccurate. You also have the right to ask us to complete information you think is incomplete.
  • Your right to erasure - you have the right to ask us to erase your personal information in certain circumstances.
  • Your right to restriction of processing - you have the right to ask us to restrict the processing of your information in certain circumstances.
  • Your right to object to processing - you have the right to object to our processing your information if the legal basis is legitimate interests.
  • Your right to data portability - You have the right to ask that we transfer the information you gave us from one organisation to another, or give it to you. The right only applies if we are processing information based on your consent or under a contract, or in talks about entering into one, and the processing is automated.

If you want to exercise any of these rights, please just contact us on DPO@firemelon.com

You also have the right to lodge a complaint about our processing with a supervisory authority — in the UK that is the ICO whose details are here: https://ico.org.uk/global/contact-us/postal-addresses/

Contact us

If you are a member of the public rather than a business entity, please contact your insurance, claims or assistance company, who will be the Controller for any further information.

If you are a business who is a client of ours and want to talk to us about this, please email us on DPO@firemelon.com