What personal data does EUROASIA INSURANCE collect?

The company collects basic data during registration: full name, date and place of birth, contact phone, email, passport data, residential address and TIN. Depending on the type of insurance, additional data may be required: for auto insurance - driver's license data and vehicle information, for travel insurance - passport data and health information, for property insurance - data about the insured property. Technical data is also automatically collected: IP address, browser information, cookies and geolocation.

For what purposes is my personal data used?

Your data is used for: compliance with Uzbekistan legislation, identification and conclusion of insurance contracts, provision of insurance services and settlement of insurance claims, communication with you, sending marketing newsletters about products and promotions, improving the quality of the website and services, conducting statistical research, maintaining accounting and reporting, as well as for legal protection of the company's interests.

Does EUROASIA INSURANCE transfer my data to third parties?

Yes, the company may transfer your data to third parties in the following cases: to government agencies (as required by law), payment systems and banks (for payment processing), insurance and reinsurance partners, medical organizations (for life and health insurance), appraisers and experts (for claims settlement), law firms, IT providers and marketing services (Google Analytics, Yandex.Metrica, PostHog, advertising platforms). All recipients are required to maintain the confidentiality of your data.

How long is my personal data stored?

Personal data is stored for the period necessary to achieve the purposes of their processing, as well as for the periods established by the legislation of Uzbekistan on insurance activities and archival affairs. Data is not deleted in accordance with regulatory requirements. At the same time, all data of Uzbekistan citizens is physically stored on servers located on the territory of the Republic of Uzbekistan, in accordance with local legislation requirements.

Can I withdraw consent for personal data processing?

Yes, you have the right to withdraw consent for personal data processing. To do this, you need to send a written statement in free form to the email address info@eai.uz or in written form to the company's address in Tashkent. After receiving the statement, the company will stop processing and delete your personal data within 30 calendar days, except in cases where data retention is required by the legislation of the Republic of Uzbekistan.

How can I manage cookies on the website?

You can independently manage cookie files through your browser settings, including completely blocking them. The website uses cookies to improve user experience, authentication, storing settings and collecting analytical information through Google Analytics, Yandex.Metrica and PostHog. Please note that disabling cookies may result in inability to access some sections of the website and limited functionality.

Privacy Policy | Euroasia Insurance

1. Basic Concepts

The following terms are used in this Policy:

Operator – Joint Venture Joint Stock Company "EUROASIA INSURANCE", located at: 3A Abdulla Qodiriy Street, Yunusabad District, Tashkent, TIN 202723160. The Operator independently or jointly with other persons organizes and (or) carries out the processing of personal data.
Personal Data — information recorded on electronic, paper, and (or) other tangible media, relating to a specific individual or making it possible to identify them.
Special Personal Data – information about health status, physical or mental (psychological) condition, racial or social origin, political, religious, or ideological beliefs, membership in political parties and trade unions, as well as information about private life and criminal record.
Subject (User) – an individual who uses the eai.uz website and its services, to whom the personal data relates.
Processing of Personal Data — the implementation of one or a set of actions for the collection, systematization, storage, modification, addition, use, provision, distribution, transfer, depersonalization, and destruction of personal data.
Third Party — any person who is not a subject, owner, and (or) operator, but is associated with them by circumstances or relationships for the processing of personal data.
Website – a set of graphic and informational materials, as well as computer programs and databases that ensure their availability on the Internet at the network address https://eai.uz.
Cookies — a small piece of data sent by a web server and stored on the user's computer, which the web client or web browser sends to the web server in an HTTP request each time it tries to open a page of the Website.

2. General Provisions

2.1. The User's use of the Website signifies unconditional agreement with this Policy and the conditions for processing their personal data specified therein. In case of disagreement with these conditions, the User must refrain from using the Website.

2.2. This Policy applies only to the eai.uz website. The Company does not control and is not responsible for third-party websites to which the User may go via links available on the Website (for example, to the websites of payment systems).

2.3. The Policy applies to personal data received both in written and electronic form while using the Company's official website and mobile services, both before and after this Policy comes into effect.

3. Purposes of Collecting and Processing Personal Data

The Company collects and processes User personal data for the following purposes:

Purpose of Processing	Description
Compliance with Legislation	Compliance with and fulfillment of the requirements of the legislation of the Republic of Uzbekistan, including civil, labor, administrative, procedural, personal data, and insurance legislation.
Identification and Conclusion of Contracts	Identification of the User for registration on the Website, conclusion and execution of insurance contracts (insurance policies, co-insurance, reinsurance).
Provision of Services	Provision of insurance services, settlement of insurance claims (investigation and administration, payment of insurance compensation, compensation for damages to third parties), subrogation, provision of consultations.
Communication	Establishing feedback with the User, including sending notifications, requests regarding the use of the Website, provision of services, processing of requests and applications from the User.
Marketing and Information	Direct marketing: sending the User advertising and informational mailings (via SMS, email, Web push, messengers, social networks) about the Company's products, services, promotions, and special offers.
Improving Service Quality	Improving the quality of the Website, its usability, developing new products and services, customer support, determining User preferences.
Analytics and Statistics	Conducting statistical and other research based on anonymized data.
Accounting and Reporting	Maintaining accounting records, personnel records management, accounting for insurance operations, filling out and submitting required reporting forms to state and other authorized bodies.
Legal Protection	Carrying out pre-trial and/or judicial work, including the collection of accounts receivable.
Technical Support	Providing technical support for information systems, managing access to information systems (authentication and automated account management).

4. Categories of Personal Data Subjects

4.1. The Company processes the personal data of the following categories of subjects:

4.1.1. Clients (policyholders, insured persons, beneficiaries)

Personal data of clients is information concerning current and potential clients of the Company, necessary for the conclusion, execution, and/or termination of insurance contracts.

Purpose of processing: provision of insurance services, settlement of insurance claims, exercise and implementation of the rights and legitimate interests of the Company.

4.1.2. Users of the website and mobile applications

Personal data of users is information collected automatically when visiting the Website or using the Company's mobile services.

Purpose of processing: registration and identification on the Website, conclusion of an insurance contract remotely, improvement of user experience, analytics.

4.1.3. Insurance agents and partners (if any)

Personal data of insurance agents and persons providing services under a civil law contract is information necessary for the conclusion and support of contracts.

Purpose of processing: conclusion and fulfillment of obligations under civil law contracts, compliance with legal requirements.

5. Composition of Collected Data and Methods of Their Processing

5.1. The Company processes the following categories of personal data:

5.1.1. Data provided by the User during registration and conclusion of an insurance contract:

Full name (last name, first name, patronymic).
Date and place of birth.
Contact phone number, email address (e-mail).
Identity document data (series, number, date of issue, PINFL).
Registered address and actual residential address.
Individual taxpayer number (TIN).

5.1.2. Additional data depending on the type of insurance:

For auto insurance (OSAGO, KASKO, EURO KASKO):

Driver's license data (series, number, date of issue, categories).
Vehicle registration certificate data.
Vehicle information (make, model, type, year of manufacture, VIN, engine number, body number, color, engine volume and type).

For travel insurance:

International passport data (series, number, date of issue, expiration date).
Country of destination, travel dates.
Special personal data on health status (if necessary for risk assessment).

For property insurance:

Address of the insured property.
Certificate of state registration of ownership data (series, number, cadastral number).
Information about the insured property.

For accident insurance:

Special personal data on health status (if necessary).

5.1.3. Data collected automatically:

IP address, browser type and operating system, browser version.
Data from cookies.
History of page visits on the Website and information about the User's actions on the Website.
Information about the User's device (screen size, resolution).
Geolocation (if permission is granted).
Browser language, external source of referral to the website.
Password (in encrypted form).

5.2. The processing of personal data is carried out both with and without the use of automation tools.

6. Transfer of Personal Data to Third Parties

6.1. The Company has the right to transfer the User's personal data to third parties in the following cases:

For the provision of services: To partners who are directly involved in the provision of the service (for example, international assistance companies for travel insurance, service stations for the settlement of claims under KASKO, medical institutions).
To payment systems: When paying for services through external payment gateways (Payme, Click, Uzcard, Humo, Mastercard). Please note that the processing of payment data takes place on the side of the secure services of these payment systems, and the Company does not store complete bank card data.
To state bodies: At the request of authorized state authorities of the Republic of Uzbekistan only on the grounds and in the manner established by law.

6.2. When transferring data, the Company requires third parties to maintain confidentiality and ensure the security of personal data.

7. Cross-Border Transfer of Personal Data

7.1. In case of necessity to transfer personal data to the territory of foreign states (for example, to international assistance companies for travel insurance), the Company undertakes to ensure that the foreign state provides reliable protection of the rights of personal data subjects.

7.2. Cross-border transfer of personal data to the territories of foreign states is carried out only in the following cases:

The Subject has given written consent to the cross-border transfer of their personal data, and/or
It is necessary for the performance of an insurance contract to which the Subject is a party.

8. Use of Cookies and Analytics Services

8.1. The Website uses cookies to improve the user experience and to collect analytical information. Cookies help us analyze how the Website is used and make it more convenient. Cookies are used for user authentication, storing personal preferences and settings, tracking the status of the access session, and maintaining statistics about users.

8.2. The Website uses the following web analytics services that collect anonymized data about user behavior:

Google Analytics
Yandex.Metrica
PostHog

8.3. The Website uses advertising pixels (including, but not limited to, Facebook Pixel, Google Ads) to evaluate the effectiveness of advertising campaigns and to form targeted advertising.

8.4. The User can independently manage cookies through their browser settings, including blocking them. However, disabling cookies may result in the inability to access some sections of the Website.

9. Storage and Protection of Personal Data

9.1. Localization: In accordance with the requirements of the legislation of the Republic of Uzbekistan, the processing and storage of personal data of citizens of the Republic of Uzbekistan are carried out using databases physically located on the territory of the Republic of Uzbekistan.

9.2. Storage periods: Personal data is stored for the period necessary to achieve the purposes of their processing, as well as for the periods established by the legislation of the Republic of Uzbekistan on insurance activities and archival affairs. Data is not deleted in accordance with the requirements of the regulator. The storage of personal data on tangible (paper) media is carried out by the Company in a way that excludes unauthorized access to personal documents, including the use of metal lockable cabinets, lockable pedestals, and safes.

9.3. Protection measures: The Company takes the necessary and sufficient legal, organizational, and technical measures to protect personal data from unauthorized or accidental access, destruction, modification, blocking, copying, distribution, as well as from other illegal actions with them, including:

Appointment of a person or structural unit responsible for organizing the processing of personal data.
Issuance of local documents in the field of processing and protection of personal data.
Identification of security threats to personal data during their processing in information systems.
Monitoring of security threats, including during the processing of personal data in information systems in order to detect facts of unauthorized access and take response measures.
Application of personal data protection means that have passed the conformity assessment procedure in the prescribed manner.
Accounting for machine carriers of personal data.
Application of technical and organizational measures to restore personal data after unauthorized access to them.
Establishment of rules for access to personal data processed in information systems, as well as ensuring the registration and accounting of actions performed with personal data.

10.1. The Subject makes the decision to provide their personal data and gives consent to their processing freely, of their own will, and in their own interest.

10.2. The User's consent is provided by accepting this Policy upon registration (authorization) on the Website or in the Company's mobile services. The use of the Website's services, mobile applications, and the performance of any actions are considered by the Company as an official appeal of the subject to the Company and confirmation of consent to the processing of personal data for the purposes and on the terms set out in this Policy.

10.3. In case of disagreement with the terms of the Policy, the Subject must immediately stop using the services of the Website and the Company's mobile applications.

10.4. The Subject has the right to withdraw consent to the processing of personal data by sending the Company a written statement in any form to the email address info@eai.uz or in writing to the Company's address. In this case, the Company, within 30 (thirty) calendar days from the date of receipt of the application, terminates the processing and deletes the subject's personal data, except in cases where the retention of data is required by the legislation of the Republic of Uzbekistan.

11. Conditions for Updating and Terminating the Processing of Personal Data

11.1. Personal data subjects have the right to demand from the Company the clarification of their personal data, their blocking or destruction in cases where personal data is incomplete, outdated, inaccurate, illegally obtained, or not necessary for the stated purpose of processing.

11.2. In case of confirmation of the inaccuracy of personal data or the illegality of their processing, personal data shall be updated or destroyed, respectively.

11.3. If the purpose of personal data processing is achieved, the Company shall terminate the processing of personal data and destroy them within a period not exceeding 30 (thirty) calendar days from the date of achieving the processing purpose, unless otherwise provided by an agreement to which the Subject is a party, or if the Company is not entitled to process personal data on the grounds provided for by the legislation of the Republic of Uzbekistan.

12. Rights and Obligations of the Parties

12.1. The User has the right to:

Know about the presence of their personal data held by the Company and its composition.
Receive information regarding the processing of their personal data.
Receive information about the conditions for granting access to their personal data.
Demand from the Operator the clarification of their personal data, their blocking or destruction in case the data is incomplete, outdated, inaccurate, illegally obtained, or not necessary for the stated purpose of processing.
Demand the temporary suspension of the processing of their personal data.
Withdraw consent to the processing of personal data.
Refuse to receive advertising and informational mailings.
Apply to the authorized state body or court on matters of protecting their rights and legitimate interests in relation to their personal data.
Submit documents in electronic form for the temporary suspension of processing and/or destruction of personal data to the Company's email address.

12.2. To exercise their rights, the User may send a request to the Operator by email to info@eai.uz or in writing to the Company's address: 3A Abdulla Qodiriy Street, Yunusabad District, Tashkent.

12.3. The User is obliged to:

Provide reliable information about themselves.
Keep the provided data up to date.

12.4. The Operator is obliged to:

Use the information received exclusively for the purposes specified in this Policy.
Ensure the storage of confidential information in secret and take precautions to protect personal data.
Provide the User with information about the processing of their personal data upon request.

13. Final Provisions

13.1. The Operator has the right to make changes to this Privacy Policy without the User's consent. The new version of the Policy comes into force from the moment it is posted on the Website, unless otherwise provided by the new version of the Policy.

13.2. All suggestions or questions regarding this Policy and/or the processing of personal data should be sent to the email address: info@eai.uz or to the address: Republic of Uzbekistan, 100097, Tashkent, Yunusabad district, 3A Abdulla Qodiriy street, tel.: +998 71 207-91-93.

13.3. The current Privacy Policy is available on the page at: https://eai.uz/en/privacy-policy.

Privacy Policy and Personal Data Processing