Privacy Policy

Last Updated: July 2026

1. Introduction

Welcome to the Privacy Policy for Marigold Services Ltd (“we”, “us”, or “our”). We respect your privacy and are committed to protecting your personal data. This Privacy Policy informs you how we look after your personal data when you visit our website (including our main site and development site), interact with us, or use our accident management services. It also tells you about your privacy rights and how the law protects you.

2. Important Information and Who We Are

Purpose of this Privacy Policy

This Privacy Policy aims to give you information on how Marigold Services Ltd collects and processes your personal data through your use of this website and our offline interactions, including any data you may provide when you enquire about or instruct us to assist with an accident management claim.

This website is not intended for children, and we do not knowingly collect data relating to children unless they are directly involved as passengers in a road traffic accident claim, in which case data is processed strictly with parental or guardian consent.

Data Controller

Marigold Services Ltd is the data controller and is responsible for your personal data.

If you have any questions about this Privacy Policy, including any requests to exercise your legal rights, please contact Us using the details set out below.

Contact Details

Full Name of Legal Entity: Marigold Services Ltd

Email Address: info@marigold-services.com

Postal Address: City Gate House, 246-250 Romford Road, London E7 9HZ, United Kingdom

You have the right to make a complaint at any time to the Information Commissioner’s Office (ICO), the UK regulator for data protection issues (www.ico.org.uk). We would, however, appreciate the chance to deal with your concerns before you approach the ICO, so please contact us in the first instance.

3. The Data We Collect About You

Personal data, or personal information, means any information about an individual from which that person can be identified. It does not include data where the identity has been removed (anonymous data).

We may collect, use, store, and transfer different kinds of personal data about you, which we have grouped together as follows:

Identity Data: Includes first name, maiden name, last name, username or similar identifier, marital status, title, date of birth, gender, and driving licence details.

Contact Data: Includes billing address, delivery address, home address, email address, and telephone numbers.

Accident & Claim Data: Includes details of the road traffic accident, date, time, location, vehicle registration numbers, insurance policy details, dashcam or CCTV footage, photographs of damage, witness details, and police report references.

Financial Data: Includes bank account details, payment card details, and financial/credit assessment information (where required for credit hire eligibility evaluation).

Technical Data: Includes internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access this website.

Usage Data: Includes information about how you use our website, products, and services.

Marketing and Communications Data: Includes your preferences in receiving marketing from us and our third parties and your communication preferences.

Special Category Data

To assist with your non fault accident claim, we may need to collect details about any physical or mental injuries sustained during the accident. This is classified as “Special Category Data” under the UK GDPR. We will only collect and process this data with your explicit consent or where strictly necessary for the establishment, exercise, or defence of legal claims.

4. How Is Your Personal Data Collected?

We use different methods to collect data from and about you, including through:

Direct Interactions: You may give us your Identity, Contact, Financial, and Accident Data by filling in forms on our website or by corresponding with us by post, phone, email, or otherwise. This includes data you provide when you apply for our services, request a replacement vehicle, or submit an inquiry.

Automated Technologies or Interactions: As you interact with our website, we will automatically collect Technical Data about your equipment, browsing actions, and patterns. We collect this personal data by using cookies, server logs, and other similar technologies. Please see our Cookie Policy for further details.

Third Parties or Publicly Available Sources: We may receive personal data about you from various third parties, including:

Insurers, brokers, or claims intermediaries.

Independent solicitors handling your personal injury or property claim.

Recovery operators, repair centres, or independent engineers.

Witnesses or emergency services.

5. How We Use Your Personal Data

We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:

Performance of a Contract: Where we need to perform the contract we are about to enter into or have entered into with you (such as a Credit Hire Agreement or Accident Management Service Agreement).

Legitimate Interests: Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests (e.g., managing our business efficiently, verifying the validity of a non-fault accident claim).

Legal Obligation: Where we need to comply with a legal or regulatory obligation.

Purposes for Which We Will Use Your Personal Data

We have set out below, in a table format, a description of all the ways we plan to use your personal data, and which of the legal bases we rely on to do so. We have also identified what our legitimate interests are where appropriate.

Purpose/ActivityType of DataLawful Basis for Processing Including Basis of Legitimate Interest
To register you as a new customer and assess your eligibility for our non-fault accident services(a) Identity
(b) Contact
(c) Accident & Claim
Performance of a contract with you
To process and manage your claim, including arranging vehicle recovery, storage, and independent vehicle engineering inspections(a) Identity
(b) Contact
(c) Accident & Claim
Performance of a contract with you
To evaluate eligibility for and provision of a replacement vehicle via a Credit Hire Agreement(a) Identity
(b) Contact
(c) Financial
(d) Accident & Claim
(a) Performance of a contract with you
(b) Necessary for our legitimate interests (to ensure credit risk is minimised)
To liaise with third-party insurers, independent solicitors, and repairers to progress your claim(a) Identity
(b) Contact
(c) Accident & Claim
(a) Performance of a contract with you
(b) Necessary for our legitimate interests (to facilitate efficient claim resolution)
To administer and protect our business and this website (including troubleshooting, data analysis, testing, system maintenance, support, reporting and hosting of data)(a) Technical
(b) Usage
Necessary for our legitimate interests (for running our business, provision of administration and IT services, network security, and to prevent fraud)
To manage our relationship with you, which will include notifying you about changes to our terms or privacy policy(a) Identity
(b) Contact
(c) Marketing & Communications
(a) Performance of a contract with you
(b) Necessary to comply with a legal obligation
(c) Necessary for our legitimate interests (to keep our records updated)

6. Disclosures of Your Personal Data

To effectively manage your non-fault accident claim and provide replacement vehicles, we must share your personal data with the following external third parties:

Independent Solicitors: Independent law firms experienced in road traffic accident claims who handle your legal case, personal injury claims, and losses recovery.

Insurers and Claims Handlers: Your own insurance company and the fault third-party’s insurance company to negotiate liability, repair costs, and credit hire charges.

Repair Centres and Engineers: Independent vehicle repair specialist garages and independent automotive engineers who assess and report on your vehicle’s damage.

Vehicle Recovery and Storage Operators: Transport operators contracted to recover and store your unroadworthy vehicle.

Replacement Vehicle Providers: Fleet operators or secondary credit hire providers if a specialized replacement vehicle is required that is not directly available in our fleet.

Regulators and Legal Authorities: Government bodies, law enforcement, or regulators acting as processors or joint controllers based in the UK who require reporting of processing activities in certain circumstances.

We require all third parties to respect the security of your personal data and to treat it in accordance with the law. We do not allow our third-party service providers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions.

7. International Transfers

We process your personal data primarily within the United Kingdom (UK). If any of our software providers or third-party IT systems store or process data outside the UK or the European Economic Area (EEA), we ensure a similar degree of protection is afforded to it by ensuring that appropriate safeguards, such as UK Standard Contractual Clauses (SCCs) or International Data Transfer Agreements (IDTAs), are implemented.

8. Data Security

We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorised way, altered, or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors, and other third parties who have a business need to know. They will only process your personal data on our instructions, and they are subject to a duty of confidentiality.

We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.

9. Data Retention

How long will you use my personal data for?

We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.

To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data, and whether we can achieve those purposes through other means, alongside applicable legal requirements.

By law, and in alignment with statutory limitation periods in England and Wales for breach of contract and personal injury claims, we generally retain core customer records, contractual agreements, and accident claim data for six (6) years from the date our relationship with you ends or from the final settlement date of the claim.

10. Your Legal Rights

Under certain circumstances, you have rights under data protection laws in relation to your personal data. You have the right to:

Request access to your personal data (commonly known as a “data subject access request”). This enables you to receive a copy of the personal data we hold about you.

Request correction of the personal data that we hold about you. This enables you to have any incomplete or inaccurate data we hold about you corrected.

Request erasure of your personal data. This enables you to ask us to delete or remove personal data where there is no good reason for us continuing to process it.

Object to processing of your personal data where we are relying on a legitimate interest (or those of a third party) and there is something about your particular situation which makes you want to object to processing on this ground.

Request restriction of processing of your personal data. This enables you to ask us to suspend the processing of your personal data in certain scenarios.

Request the transfer of your personal data to you or to a third party.

Withdraw consent at any time where we are relying on consent to process your personal data.

If you wish to exercise any of the rights set out above, please contact our team.

No Fee Usually Required

You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request is clearly unfounded, repetitive, or excessive. Alternatively, we could refuse to comply with your request in these circumstances.

What We May Need From You

We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it.

Time Limit to Respond

We try to respond to all legitimate requests within one month. Occasionally it could take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.