Privacy Notice Disclosure/Notice at Collection

Last Updated: December 31, 2024

Great American Insurance Group (“Great American”) respects your privacy, and we strive to be transparent in how we may collect and use your information. This Privacy Notice Disclosure/Notice at Collection (“Privacy Disclosure”) describes how Great American collects, uses, discloses, and protects your personal information.

  1. Scope

This Privacy Disclosure applies to personal information Great American receives or collects from you (as defined hereafter) and from other sources about you during the course of our relationships, including personal information we receive or collect when you visit our websites. This Privacy Disclosure does not apply to anonymized, deidentified, aggregate, or publicly available information or to personal information covered by other specific privacy laws, such as HIPAA, the Fair Credit Reporting Act (FCRA), the Driver's Privacy Protection Act of 1994, or the Gramm-Leach-Bliley Act (GLBA) or implementing laws and regulations. Please review Section 8 for further details.

For purposes of this Privacy Disclosure, “Great American”, “we”, “us” and “our” means the Great American group of insurance companies and operations.

  1. Personal Information We Collect

Categories of Personal Information We Collect

Great American offers and administers a variety of insurance products and services. Depending on our relationship with you—policyholder, insured, claimant, producer (including brokers, agents, and advisors), business partner, vendor or other person or entity (“you”)— we may collect information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with you (“personal information”). We may collect the following categories of your personal information:

Category of Personal InformationExamples
Identifiers (“Identifiers”)Name, alias, postal address, social security number (or social insurance number), unique personal identifier, online identifier, email address, account name, driver’s license number, or other similar identifiers.
Personal Information Described in the California Customer Records statue (Cal. Civ. Code 1798.80(e)) (“Other PI”) Real name, signature, social security number, address, telephone number, passport number, driver’s license or state identification card number, insurance policy number, employment, employment history, bank account number, or any other financial information or health information. Some personal information included in this category may overlap with other categories.
Characteristics of protected classifications under California or federal law (“Characteristics”)Age, race, ancestry, national origin, citizenship, marital status, medical condition, physical or mental disability, sex (including gender, pregnancy, or childbirth and related conditions), sexual orientation, and veteran or military status. Some personal information included in this category may overlap with other categories.
Commercial information (“Commercial”)Records of personal property, products or services purchased, obtained or considered.
Internet or other electronic network activity information (“Internet Activity”)Browsing history, search history, and information regarding a consumer’s interaction with an Internet website, application, or advertisement.
Geolocation data (“Geolocation”)Physical location and/or movements.
Sensory data (“Sensory”)Audio, electronic, visual, or similar information.
Professional or employment-related information (“Professional”)Current and/or past employment history, professional licenses or affiliations. Education records for maintaining continuing education requirements.
Inferences drawn from other personal information (“Inferences”)Information used to create a profile about a consumer reflecting the consumer’s characteristics or behavior, such as driving behaviors or account transactions.
Sensitive Personal Information (“Sensitive”)Personal information that reveals your social security number, driver’s license, state identification card, or passport number; your racial or ethnic origin; the contents of your email or text messages, unless we were the intended recipients of the communication; personal information collected and analyzed concerning your health. Some personal information included in this category may overlap with other categories.

  1. Sources of Personal Information

We may obtain the following categories of personal information from the following categories of sources:

Category of Personal InformationSources
All Categories
  • Indirectly. For example, from information collected from an agent, broker, personal representative, group, employer, or throughout the course of processing sales and/or providing services.
  • Directly and indirectly from activity on our website (www.gaig.com), other Great American Insurance Group member websites, or mobile apps. For example, from submissions you make, when you access our portals, and/or from website details collected automatically when you access our website.
  • From third parties that interact with us in connection with the products and/or services we provide. For example, from another financial institution when soliciting business on our behalf, service providers who assist us with providing or improving our products or services, or service providers who assist us with fraud detection or compliance with government regulations or laws.
All Categories except InferencesDirectly from you. For example, from forms you complete and/or products or services you purchase.
Identifiers and Internet ActivityThrough tracking technologies when you access and use our website, including cookies, browser fingerprinting, and location identifying technologies. See our Cookie Policy for more information on how we use cookies.

  1. Uses and Disclosures of Personal Information

Business or Commercial Uses of Personal Information

We may use all of the categories of personal information for the following commercial or business purposes:

Category of Personal InformationPurposes
All Categories
  • To underwrite and issue, maintain, and renew insurance policies, bonds or warranty products, obtain reinsurance, and communicate information to you throughout this process. We process this information to enter into and perform our contractual obligations to you and for our legitimate business purposes.
  • To process, adjust, and administer claims under an insurance policy, bond, or warranty contract and to communicate with you throughout the process. We process this information to perform our contractual obligations to you and for our legitimate business purposes.
  • To collect premium payment, collect purchase payments, collect reinsurance proceeds, purchase reinsurance, pay insurance claims, pay third-party service providers and other payees, and to make other business-related payments. We process this information to perform our contractual obligations to you and for our legitimate business purposes.
  • To fulfill or meet the reason you provided the information; to respond to your inquiries, including to investigate and address your concerns; and to monitor and improve our response(s). We process this information to enter into and perform our contractual obligations to you, for our legitimate business purposes, and to comply with legal obligations and exercise any legal rights we may have.
  • To market to you; and to provide you with alerts or other notices, concerning our products, services, payments, events, or news that may be of interest to you; and to communicate important information regarding our policies, terms and conditions and other administrative information. We process this information for our legitimate business purposes, to perform contractual obligations to you, and to comply with legal obligations and exercise any legal rights we may have.
  • To help maintain the safety, security, and integrity of our website, products and services, databases and other technology and information assets; for business continuity and disaster recovery, and to create, maintain, customize, and secure your account with us. We process this information to perform our contractual obligations to you, for our legitimate business purposes, to secure your information, and to comply with legal obligations and exercise any legal rights we may have.
  • For testing, research, analysis, and product development, including actuarial studies, analytics, and statistical modeling; to develop, personalize, and improve our website and products and services. We process this information for our legitimate business purposes, to provide and customize our products and services to you, and to secure your information.
  • To respond to law enforcement, regulatory, or other legal requests; to prevent and detect fraud, to comply with legal, regulatory, or contractual obligations; to comply with internal policies and procedures; to respond to and resolve complaints (including consumer complaints); for financial, claim, or other audits; to establish and defend Great American’s legal rights; and as necessary or appropriate to protect the rights, property or safety of our clients or others. We process this information for our legitimate business purpose, to perform contractual obligations to you, to secure your information, and to comply with legal obligations and exercise any legal rights we may have.
  • To evaluate or conduct a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of the Company’s assets, whether as a going concern or as part of bankruptcy, liquidation, or similar proceeding, in which personal information held by us is among the assets transferred. We process this information for our legitimate business purpose, to comply with legal obligations and exercise any legal rights we may have.
  • For other internal business operations, such as to service your account; to manage commercial risk, and for quality assurance measures. We process this information for our legitimate business purpose, to perform contractual obligations to you, and to comply with legal obligations and exercise any legal rights we may have.

  1. Third Parties with Whom Personal Information is Disclosed

We may disclose the following categories of personal information to the following categories of third parties:

Category of Personal InformationThird Parties
All Categories
  • Service providers or third parties, such as IT vendors, developers, software providers, website hosting providers, data analytics and marketing companies, market research companies, accountants, auditors, lawyers, and other service providers or third parties in order to provide products and services and to support our business operations.
  • Our Insurance-related business partners and service providers, such as brokers, agents, advisors, adjusters, claims administrators, insurance support organizations, reinsurers, other insurance companies, financial institutions, consumer reporting agencies, in order to provide products and services and to support our business operations.
  • Government agencies, our regulators, judicial bodies or other third parties in response to a legal process (such as a subpoena), to protect the rights of our Company or others, or as otherwise required or allowed by law.
  • Third parties in connection with a proposed or actual reorganization, merger, sale, joint venture, assignment, transfer or other disposition of all or a portion of our business assets or stock.

  1. Data Retention and Information Security Policies

Great American retains your personal information for at least as long as is reasonable or necessary to fulfill the purposes for which the data was collected, meet its business requirements, and comply with all applicable laws and regulations.

Great American is committed to protecting your personal information and has implemented physical, procedural, organizational, and technical safeguards, consistent with applicable law, intended to prevent loss, misuse, unauthorized access, disclosure, or modification of personal information under our control. Our employees participate in annual information security and privacy trainings and exercises.

If you have questions about Great American's information security policies, please reach out using the contact information below.

  1. International Operations and Data Transfers

In connection with the purposes described above, Great American may transfer personal information to persons and organizations that are located in other countries. Where permitted by applicable law, by providing your personal information to Great American, you understand and consent to the collection, use, processing, disclosure, and transfer of such information in the United States of America (“U.S.”) and other countries, which may not offer the same level of data protection as the country where you reside. Please note that information collected through the use of this website and certain communications you send to the contact information provided below may be sent to the U.S.

  1. Exclusions From This Privacy Disclosure

This Privacy Disclosure does not apply to:

  • Personal information which is anonymized, deidentified, aggregated or publicly available information;
  • Protected health information collected pursuant to the Health Insurance Portability and Accountability Act of 1996 (HIPAA) or similar state law(s);
  • Personal information collected pursuant to the Fair Credit Reporting Act (FCRA);
  • Personal information collected pursuant to the Driver's Privacy Protection Act of 1994; and/or
  • Personal information collected from job applicants, employees, contractors, and their emergency contacts. You may review Great American's Privacy Notice for Job Applicants, Employees, and Their Emergency Contacts here.

Certain Insurance Relationships

In cases where consumers seek or obtain an insurance product or service for personal, household or family use pursuant to the Gramm-Leach-Bliley Act (GLBA) or states' implementation of the GLBA (collectively, the GLBA), we will provide a notice of privacy and insurance information practices (GLBA Notice). Please review the relevant GLBA Notice by clicking on the appropriate link below.

Great American Affiliates

Great American conducts business internationally through subsidiaries, affiliates, and international divisions (“Affiliates”), which may have their own privacy policies. If you visit the website of, have a relationship with, or otherwise provide personal information to any Great American Affiliate listed below, please review that Affiliate’s privacy policy for information about how that Affiliate collects, uses, and discloses your personal information.

Mexican Affiliates:

European and UK Affiliates:

Other Exclusions

Great American’s website is intended for individuals who are over the age of eighteen (18). We do not knowingly collect personal information through our website from children under the age of eighteen (18) and ask that they do not provide us with personal information through the website.

Although our website may contain links to third-party websites, this Privacy Policy does not apply to those third-party websites. You should review the privacy policies associated with those third-party websites to understand their privacy practices.

  1. Your Rights with Respect to Your Personal Information

Great American strives to ensure the information we have is accurate and up-to-date. Please notify us if you believe an error has been made in the accuracy of the information Great American has about you, and we will correct it upon confirmation of the error and receipt of the correct information.

You may have additional rights with respect to your personal information, depending on the laws of your jurisdiction.

  • European Union and UK residents may have a right of access, rectification, erasure, and/or portability of their personal information, as well as the right to object to certain processing activities by Great American.
  • Canadian residents may have the right to be informed, to access and correct their personal information and/or withdraw consent to Great American's processing of their personal information. If you are located in Quebec, you may have additional rights, such as the right to be forgotten, the right to portability of your personal information and the right to be notified of a confidentiality breach.
  • Singapore residents may have the right to access the personal information that is in the possession or control of GAIG, as well as the ways in which such personal information has been or may have been used or disclosed by Great American in the preceding 12 months.
  • California Residents should refer to Section 10 to understand their rights under California law and how they may exercise those rights.

If you wish to exercise one or more of your rights with respect to your personal information, please contact Great American using the information provided in Section 11: Questions and Contact Information below. Please understand that to protect your privacy and security, we will need to take reasonable steps to verify your identity before we can respond or comply with any request relating to personal information. Great American will respond to your request as soon as practicable, but in any event within the legally required time.

  1. For California Residents: Your Privacy Rights

The California Consumer Privacy Act of 2018 (CCPA), as amended by the California Privacy Rights Act of 2020 (CPRA) and its implementing regulations (collectively, the CCPA), provides California residents specific rights regarding the processing of their personal information. This section describes your CCPA rights and explains how to exercise those rights, subject to limitations and exceptions described in the CCPA.

Right to Know and Access Your Information

You have the right to request that we disclose to you:

  1. the categories of personal information we have collected about you;
  2. the categories of sources from which we collect your personal information;
  3. the business or commercial purposes for collecting or disclosing your personal information;
  4. the categories of third parties to whom we disclose your personal information; and
  5. the specific pieces of personal information we have collected about you.

Right to Correct

You have the right to request that we correct inaccurate personal information we maintain about you. We may request additional information to support your request.

Right to Request Deletion

You have the right to request that we delete your personal information we collect from you.

You should be aware, however, that California law allows us to retain your personal information under certain conditions, even if you have asked us to delete it. We, therefore, may deny your deletion request if an exception applies.

Right to Opt-Out of Sale or Sharing Personal Information; Sensitive Personal Information

You have the right to opt-out of the sale of your personal information. You also have the right to opt-out of the sharing of your personal information for cross-context behavioral advertising purposes.

To enhance the user’s experience with GAIG’s website and advertising materials, GAIG may use third-party cookies, pixels, or other technologies (“Cookies”) where the user’s identifiers and internet activities are shared with and sold to third-party marketing and analytics companies, as those terms are defined under the CCPA (“share” or “sell”).

You may opt-out of the sale and sharing of such personal information by:

  • Clicking the Do Not Sell or Share My Personal Information link located at the bottom of the relevant Great American website and selecting your privacy choices.

GAIG does not sell or share sensitive personal information, nor will we use sensitive personal information for purposes other than those allowed in the CCPA and its implementing regulations.

To our knowledge, we do not sell or share the personal information of individuals under 16 years of age.

Right to No Retaliation

We will not discriminate or retaliate against you because you have chosen to exercise any of your privacy rights described above.

How to Exercise Your CCPA Rights

If you wish to exercise any legal rights with respect to your personal information, you or someone legally authorized to act on your behalf ("authorized agent") can exercise your rights by:

  1. calling us at 1-866-723-3149; or
  2. completing this form

Only you, or your authorized agent, may make a request related to your personal information. You also may make a request on behalf of your minor child. We cannot respond to your request or provide you with personal information if we cannot (i) verify your identity or authority to make the request, and (ii) confirm the personal information relates to you. To make a verifiable request, you must:

  1. provide sufficient information to allow us to reasonably verify you are the person about whom we collected personal information or that you are the person authorized to make the request. If you are an authorized agent, you also will be required to provide proof that you are authorized to make the request, such as by providing a copy of the written permission from the person on whose behalf you are making the request; and
  2. describe your request with sufficient detail that allows us to properly understand, evaluate, and respond.

We will only use personal information you provide to verify your identity or authority to make the request. Making a verifiable request does not require you to create an account with us.

  1. Questions and Contact Information

If you have any questions about the Privacy Policy, wish to exercise any legal rights with respect to your personal information, or have a complaint regarding Great American's protection of your personal information, please reach out using the contact information below. If you are having difficulty accessing this notice for any reason, please call or email us at the contact information listed below so that we may provide you with the notice in an alternative format. If you would like to read the Privacy Policy and Cookie Policy in French, please click here.

Privacy Office

Great American Insurance – Property and Casualty Group
301 E. Fourth Street
Cincinnati, Ohio 45202-4201
Attention: General Counsel, Privacy Office

Canadian Branch

Great American Insurance Company, Chief Agency
Suite 3200, Bay Adelaide Centre – North Tower
40 Temperance Street
Toronto, Ontario M5H 0B4 Canada
Attention: Chief Agent

Singapore Branch

Ian Lee
Director, Risk Management & Compliance
Telephone: +65-6804-6039
Fax: +65-6235-0302

  1. Changes to this Privacy Disclosure

This Privacy Disclosure may be changed from time to time. We will post any changes on our website (www.gaig.com/privacy). The date noted on the Privacy Disclosure indicates when it was last revised.