Who we are
Oneglobal Broking Limited (“Oneglobal”, “we”, “us”) is a UK insurance and reinsurance broker. We act as a
data controller when processing personal data in connection with our services.
Address: 30 St Mary Axe, London EC3A 8BF
Email: compliance@ogbroking.com
For the attention of: Data Protection Officer (DPO)
What personal data we collect
We may collect and use personal data relating to:
• Clients and prospective clients
• Directors, officers, shareholders and beneficial owners
• Intermediaries and business contacts
• Website users who contact us
This can include identity details, contact information, corporate information, financial details, risk and insurance information, and compliance or due-diligence data (including sanctions and financial crime screening results).
How and why we use your data
We use personal data to:
• Arrange, place and administer insurance and reinsurance contracts
• Comply with legal and regulatory obligations (including AML, sanctions and KYC)
• Manage claims and complaints
• Communicate with clients about relevant markets and services
• Prevent fraud and financial crime
Lawful bases
Under UK GDPR as amended by the DUAA 2025, we process personal data where necessary for:
• Compliance with legal obligations
• Performance of a contract
• Our legitimate business interests
• Substantial public interest (financial crime prevention)
• Consent, where specifically obtained
Who we share data with
We may share personal data with insurers, reinsurers, intermediaries and other parties involved in the
placement and administration of (re)insurance contracts, as well as regulators and professional advisers.
These parties usually act as independent data controllers and are responsible for their own data protection compliance. Details are provided in placement and policy documentation.
International transfers
Personal data may be transferred outside the UK where appropriate safeguards are in place, such as adequacy regulations or approved contractual protections
How long we keep your data
We retain personal data only for as long as necessary, including:
• Insurance contract data: 6 years after expiry
• Claims data: 10 years, following conclusion
• Due-diligence data: 5 years after the relationship ends
Your rights
You have rights under UK GDPR, including the right to:
• Access your personal data
• Correct inaccurate data
• Request erasure or restriction
• Object to processing
• Withdraw consent (where applicable)
• Complain to the Information Commissioner’s Office (ICO)
Complaints
Personal data relating to complaints is handled confidentially and retained securely in line with our retention policy.