Last updated: June 2026
This Privacy Notice explains how ClaimSorted EU Ltd collects, uses, stores and shares your personal data when you submit or manage an insurance claim through a claim form or claims portal operated by ClaimSorted, and the rights available to you under the EU General Data Protection Regulation (GDPR) and applicable Irish data protection law.
ClaimSorted EU Ltd (“ClaimSorted”, “we”, “us” or “our”) is a company registered in Ireland with its registered office at 24A Baggot Street Upper, Dublin, Ireland. ClaimSorted EU Ltd is a subsidiary of ClaimSorted Inc.
When we handle your insurance claim, we generally act as a data processor on behalf of your insurer or its managing agent (who is the data controller and decides how your data is used to assess the claim under your policy). For the operation, security and improvement of our claim forms and portals, ClaimSorted EU Ltd acts as a data controller. If you are unsure who the controller of your claim is, contact us using the details in section 14.
This notice applies to individuals who visit or interact with our claim forms and portals, and who submit or are named in a claim that we administer. It does not replace the privacy notice provided by your insurer, which governs decisions made about your claim under your policy. Providing your personal data is necessary for us to handle and assess your claim under your policy. If you do not provide it, we may be unable to process or progress your claim.
We collect most of this personal data directly from you. We also receive personal data about you from your insurer and its agents, from other people involved in the claim (for example witnesses, medical professionals or loss adjusters), and from publicly accessible sources where relevant to the claim. Depending on your claim, the personal data we collect includes:
Our claim forms and portals are intended to be used by adults. Where a claim involves a child or another person who cannot act for themselves, it should be submitted by a parent, guardian or another adult authorised to act on their behalf, and we process the child's personal data only as needed to handle that claim. Where we rely on consent to process a child's personal data in connection with an online service, that consent is given or authorised by the holder of parental responsibility, in line with Article 8 GDPR and applicable national law. If you believe a child has provided us with personal data without appropriate authority, please contact us using the details in section 14.
We process your personal data on the following legal bases under Article 6 GDPR:
We may share your personal data with: your insurer and its appointed agents; service providers who support us (such as secure hosting, IT, identity verification and document handling) acting as our processors under contract; experts, loss adjusters or other third parties needed to assess your claim; and regulators, law enforcement or other authorities where required by law. We do not sell your personal data.
Your personal data is stored and processed within the European Economic Area (EEA) and the United Kingdom. Where any transfer outside the EEA is necessary (for example to a service provider or to our group), we put in place appropriate safeguards required by GDPR, such as an adequacy decision or Standard Contractual Clauses, and you may request a copy of these safeguards using the contact details below.
We keep your personal data only for as long as necessary to handle your claim, to meet legal, regulatory and contractual requirements, and to deal with any queries or disputes. Retention periods are set by the insurer’s requirements and applicable law, after which your data is securely deleted or anonymised.
We use appropriate technical and organisational measures — including encryption, access controls and secure storage — to protect your personal data against unauthorised access, loss or misuse.
Under the GDPR you have the right to: access your personal data; have inaccurate data corrected; have your data erased in certain circumstances; restrict or object to processing; data portability; and, where we rely on consent, to withdraw that consent at any time. Where we act as a processor for your insurer, we may direct your request to the relevant controller. To exercise your rights, contact us using the details in section 14.
We may use technology, including AI/ML tools, to support claims handling (for example to flag potential fraud or to help organise information). Decisions that produce legal or similarly significant effects are subject to human review. You have the right not to be subject to a decision based solely on automated processing where it would produce such effects, except as permitted by law.
If you have a concern about how your personal data has been handled, please contact us first using the details below so we can try to resolve it. You also have the right to lodge a complaint with the Irish Data Protection Commission (DPC), 21 Fitzwilliam Square South, Dublin 2, D02 RD28, Ireland — www.dataprotection.ie, +353 1 765 0100. If you are located in the United Kingdom, you may instead contact the UK Information Commissioner’s Office (ICO) at ico.org.uk, 0303 123 1113.
We may update this Privacy Notice from time to time. The version that applies is the one published here when you use our claim form or portal, and we will update the “Last updated” date above.
For any questions about this notice or your personal data, contact ClaimSorted EU Ltd at info@claimsorted.com or at 24A Baggot Street Upper, Dublin, Ireland.