The latest thinking and expert insights into the insurance industry.
21 March 2016

Identity fraud in the insurance industry: what’s in a name?

Mandatory use of social security numbers could be the way to authenticate new customers and limit fraud in the insurance industry, says Albert Wienen, Customer Success Consultant at FRISS. And why don’t governments issue validated unique email addresses, based on social security numbers, to citizens?

Validation of personal data
Most insurance companies have to rely on their customers’ honesty and accuracy when they provide a name and address for a new insurance policy. Typo’s occur, especially when customers sign up for policies through websites or by email, but that is obviously not the only issue. Even when the applicant means no harm, people are often inconsistent in the way they introduce themselves.

Identity fraud (2)To use my own name as an example, I am Albert Wienen but I am also A. Wienen. Software can verify whether I am the same person because both names have the same address and date of birth. But what if I get married and add my wife’s name to mine? Or if I change my name to hers? These are actual options in the Netherlands, as well as in other countries. It would make it very easy for me to sign up for new insurance policies even after I have been charged for committing fraud. And a new email address is easily acquired. Formal ID documents such as driving licenses and passports can provide extra validation of personal data, but are not fool proof when chasing fraudulent claims. Those documents can be faked, especially when digital copies are the only ones customers have to provide.

Digital ID as a solution
This is what I propose. Most European countries issued unique identification numbers to their citizens, for tax and social security purposes. Those numbers are often attached to a digital ID, such as DigiD in the Netherlands, BankID in Sweden and EstID in Estonia. The digital ID’s also work with validated email addresses. Use of such digital ID’s should become mandatory when consumers apply for an insurance policy. The Swedish financial industry already operates like this. The result is that fraudsters can be identified more effectively in the underwriting process. Also, fraudulent insurance claims can always be traced to a real person. Furthermore, it is much, much harder for an individual to use a fake identity when applying for a policy or submitting a claim, because the fraudster would have to fake his or her BankID.

Reducing fraud
The renewed European privacy laws may make it hard to realize this across the entire EU on the short-term. However, our industry and its branch organizations could lobby for a first step: nationally validated email addresses for each citizen, attached to validated personal data and based on social security numbers. This would limit fraud at underwriting and reduce the number of untraceable unjust claims. It would save the branch a pretty sum.

Contact us

Cookie and Privacy Policy

1. Introduction

When you use this website, FRISS may collect information about your use of the website and the content offered. We believe it is important to handle your (personal) data with due care and confidentiality. When processing your personal data, we comply with the General Data Protection Regulation (Algemene Verordening Gegevensbescherming) and Article 11.7a of the Telecommunications Act (Telecommunicatiewet).

1.1.  Controller

The controller of the processing of personal data is:

FRISS Fraudebestrijding B.V.
Orteliuslaan 15
3528 BA

This processing of personal data is registered with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) in The Hague under reporting number m00004997.

1.2.  Purposes of data processing

There are several places on our website where you can fill in your (personal) data. We will explain the purposes of the various instances of data processing below.

Filling in the contact form or sending an e-mail

If you fill in the contact form on our website or send us an e-mail, we will only use the (personal) data you provide for the purpose or purposes for which you filled in the contact form or sent the e-mail.

Download form

If you download files on our website (such as e-books, whitepapers or reports), we will use the (personal) data you provide for one or more of the following purposes:

  • for the execution of an agreement, for example to send you the e-book, whitepaper or report you have chosen;
  • for the formation of an agreement, for example by contacting you by telephone or in writing.


If you fill in the application form for the newsletter on our website, your (personal) data will be used to send you the newsletter. Each newsletter contains a hyperlink at the bottom of the message that you can use to unsubscribe.

In addition to the personal data you provide to FRISS yourself, FRISS may collect, record and process additional (personal) data if you use the (web) services of FRISS. This concerns the following personal data:

  • data from the used equipment, such as a unique device ID, version of the operating system and settings of the device you use to access a service;
  • information about the use of a service, such as the time at which you use the service and the type of service that is used;
  • location details from your device or derived from your IP address that is provided to us when you use a particular service;
  • data available from external sources. We may receive information about you from public or commercially available sources.

1.3.  Provision of (personal) data to third parties

Your (personal) data will never be provided to third parties without your permission, unless we have an obligation to do so pursuant to legislation or regulations or you have given permission for this.

1.4.  Security of data

FRISS respects your privacy and ensures that personal data are handled confidentially and with the utmost care. All processed (personal) data is stored exclusively in secure databases. These databases are only accessible to employees of FRISS, to the extent that this access is required by virtue of their position. FRISS makes every effort to secure these systems against loss and/or any form of unlawful use or processing.

1.5.  Inspection, correction and deletion of data and the right to object

You can view your data that is processed by FRISS at any time and free of charge and, if you so wish, modify this data or have it deleted. You can also object to receiving information about products, services or content of FRISS. If you wish to make use of one of these options, you can send an e-mail to the Data Protection Officer of FRISS via privacy@friss.eu or write to the following address:

FRISS | fraud, risk & compliance
Attn. Data Protection Officer
Orteliuslaan 15
3528 BA Utrecht.

2. Cookies

When using this website, information about your use of these services and other websites may be collected by or on behalf of FRISS, for example by means of cookies.

A cookie is a small file that is sent along with pages of a website and stored by your browser on the hard disk of your computer. We use cookies to remember settings and preferences. You can disable these cookies via your browser.

2.1.  The purposes for which FRISS uses cookies

On our website we use cookies for the following purposes:

  • for statistical purposes, in order to analyse the use of FRISS websites. This allows us to keep track of the number of visitors and see which parts of our website are popular. We use Google Analytics in order to track and consult these statistics. On this website you can find explanations about all cookies that may be placed by Google;
  • for what is known as ‘targeting’ purposes, if you have used the download form. By targeting we mean building a profile of you based on your surfing behaviour on our website, after which we may contact you by telephone or e-mail based on the interests you have shown in order to offer you FRISS services that you may be interested in. We use HubSpot in order to track and consult these statistics. On this website you can find explanations about all cookies that may be placed by HubSpot;

3. Changes to this Cookie and Privacy Statement

FRISS may make changes to this Cookie and Privacy Statement. All modifications will be published on this page. We advise you to consult this Cookie and Privacy Statement regularly, so that you are always aware of the content of the current Cookie and Privacy Statement.