Who we are

How we gather, hold and treat your data

What personal information do we collect?
The MPI Group will determine the purpose and means of processing of the personal data you provide to us. We collect personal data about you, which includes your name, address and contact information, as well as details of what it is you want to arrange insurance for. In order to quote on certain types of insurance we will need to collect sensitive personal information about you, which can include such things as criminal and motoring convictions and health conditions.

If there are other people who will be named on the insurance policy, or who will be a beneficiary of the insurance, we may need to collect similar personal information about them too. Before you tell us personal details about another person, you will need to make sure that you have their permission to give us their information and that they understand how we will use it (they can view our Privacy Statement on our website at www.stackhouse.co.uk).

If you visit our website, the site uses cookies. These are small text files that are placed on your computer (see ‘Why we need it’ for more information).

Some of our premises have CCTV for security reasons and images will be recorded and retained for a period of 6 months before being deleted.

Why we need it
We need to collect personal information in order to obtain insurance quotations that you have asked us for and, if you accept our quotation, to enable us to arrange and subsequently administer the contract of insurance. If you make a claim against your insurance contract, we will need your personal information to process this for you. We will not collect any personal data that we do not need in order to provide our broking services to you.

Cookies are used on our website to make it work more smoothly and improve your experience as you use it. They also provide anonymised tracking data to third party applications like Google Analytics. To find out more about cookies and how you can control or delete these visit www.aboutcookies.org.

What we do with it
All of the personal data we collect is processed by our staff in the UK. However, for the purposes of IT hosting and maintenance, this information is located on servers within the UK and European Union. Information you give to us will be treated as confidential and will not be disclosed other than to insurers, or other specialist or wholesale insurance markets we may use to place your insurance, and in the normal course of arranging and administering your insurance. In the event of a claim, we may need to provide your personal details to a loss adjuster, or other third party who is involved in providing a service in the settlement of your claim.

We will use your name and contact information to tell you about important information that may affect your insurance, such as changes in law and advice on risk management. We may also send you information about other products and services we offer that would complement your existing insurance arrangements with us or which would offer protection against other insurable risks we have identified which may be suitable for your needs. You have the option to unsubscribe from this service at any time.
Information we hold may be used for research or statistical purposes, but this would be on an anonymised basis so that you could not be personally identified.

We will not give anyone else your personal information except on your instructions or authority, or where we are required to by law, or due to our regulatory requirements.

How long we keep it
If you take out a policy with The MPI Group, the contracts we have with insurers require us to keep your personal data for a minimum of seven years after your policy lapses, after which time it will be destroyed or deleted from our systems. If there is no contractual requirement to retain your personal data we will also destroy or delete it after 7 years to comply with regulatory reporting requirements. If you ask us for a quotation but do not take this up, your personal information will be deleted immediately after the quotation expires unless you provide us with consent to retain this and quote at your next renewal.

If you have given us your consent to use your information for other purposes, we will keep this data until you notify us that you no longer wish us to use it for the purpose (see below for more information about what this purpose might be).

What we would also like to do
We would like to use your name and contact information to tell you about other products and services that The MPI Group can offer that we think may be of interest to you.

If you have contacted us for a quotation and decided not to take it up, or if you are a customer of The MPI Group and your cover lapses , we would like to contact you at the appropriate time in the future to offer a free, no obligation re-quote.

We will ask for your consent to use your information for this purpose when you contact us for a quotation or take out a new policy or, if we have not previously asked, when you contact us to lapse your policy.

If you do give us your consent, you have the option to withdraw this in whole or in part at any time by unsubscribing from emails, or by phoning or emailing us. We will remind you of your consent choices when your policy comes up for renewal to make sure that you are aware that you can change these if you wish.

We will never share with or sell your information to a third party.

If our privacy policy changes
From time to time we may update our privacy policy to comply with changes in the law or regulation or to meet current best practice. If our privacy policy changes we will update our website with the new policy.

What are your rights?
If at any point you believe the information we process on you is incorrect you can ask us to update or correct it. You can also ask to see the information that we hold or ask that it be deleted. Please be aware however that deleting your information will affect our ability to administer your insurance or assist you with a claim or complaint.

If you wish to raise a complaint on how we have handled your personal data you can contact our Data Protection Officer who will investigate the matter. If you are not satisfied with our response or believe we are not processing your personal data in accordance with the law you can complain to the Information Commissioners Office (ICO) by calling their helpline on 0303 123 1113.

Find out more
If you have a question, please get in touch. Our Data Protection Officer is Iain Jamieson and you can contact him on 01483 407440 or email dpo@stackhouse.co.uk.

Our website address is: http://otsis.co.uk.

What personal data we collect and why we collect it


When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.


If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Contact forms


If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.


Who we share your data with

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where we send your data

Visitor comments may be checked through an automated spam detection service.

Your contact information

Additional information

How we protect your data

What data breach procedures we have in place

What third parties we receive data from

What automated decision making and/or profiling we do with user data

Industry regulatory disclosure requirements