Insulytics Privacy Policy

Effective Date: January 1, 2025
Last Updated: January 1, 2025

Introduction

Insulytics (“we,” “our,” or “us”) is committed to protecting the privacy and security of personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard information when you use our website, analytics platform, and related services (collectively, the “Services”).

Insight That Underwrites Success – This commitment extends to how we handle your data with the highest standards of privacy and security.

Information We Collect

Personal Information

We may collect personal information that you provide directly to us, including:

  • Contact Information: Name, email address, phone number, job title, company name
  • Account Information: Username, password, and account preferences
  • Business Information: Company details, industry information, business requirements
  • Communication Data: Information from your communications with us, including support requests and demo inquiries

Business Data

For our analytics platform clients, we process:

  • Insurance Data: Submissions, quotes, policy information, and claims data (excluding PII)
  • Aggregated Analytics: Performance metrics, trends, and business intelligence insights
  • Usage Data: Platform usage statistics and feature utilization

Automatically Collected Information

  • Website Usage: IP address, browser type, operating system, referral URLs
  • Platform Analytics: Login times, feature usage, dashboard interactions
  • Cookies and Tracking: As described in our Cookie Policy section below

How We Use Your Information

Primary Uses

  • Service Delivery: Providing our analytics platform and related services
  • Account Management: Creating and maintaining your account
  • Customer Support: Responding to inquiries and providing technical assistance
  • Platform Improvement: Enhancing our services and developing new features
  • Communication: Sending service updates, security alerts, and administrative messages

Business Intelligence

  • Data Analytics: Processing client data to generate insights and reports
  • Benchmarking: Creating anonymized industry benchmarks and trends
  • Product Development: Improving our analytics capabilities and dashboard offerings

Legal and Compliance

  • Legal Obligations: Complying with applicable laws and regulations
  • Security: Protecting against fraud, security threats, and unauthorized access
  • Business Operations: Mergers, acquisitions, or asset transfers

Information Sharing and Disclosure

We Do Not Sell Personal Information

Insulytics does not sell, rent, or trade personal information to third parties for their marketing purposes.

Limited Sharing Scenarios

We may share information only in the following circumstances:

Service Providers: Trusted third-party vendors who assist in service delivery, including:

  • Cloud hosting providers (Microsoft Azure)
  • Analytics and monitoring tools
  • Customer support platforms
  • Security service providers

Legal Requirements: When required by law, regulation, or legal process, including:

  • Subpoenas, court orders, or government requests
  • Protecting rights, property, or safety
  • Preventing fraud or security threats

Business Transfers: In connection with mergers, acquisitions, or asset sales, with continued privacy protection commitments

Client Authorization: Only when explicitly authorized by our clients for their business purposes

Data Security

Security Measures

We implement industry-standard security measures to protect your information:

  • Encryption: Data encrypted in transit and at rest using enterprise-grade encryption
  • Access Controls: Multi-factor authentication and role-based access limitations
  • Network Security: Firewalls, intrusion detection, and secure network architectures
  • Regular Audits: Ongoing security assessments and penetration testing
  • Employee Training: Staff education on data protection and security protocols

Microsoft Azure Security

Our platform leverages Microsoft Azure’s enterprise-grade security infrastructure:

  • SOC 2 Type II compliance
  • ISO 27001 certification
  • GDPR and CCPA compliance frameworks
  • Multi-tenant data isolation
  • Automated backup and disaster recovery

Data Retention

  • Personal Information: Retained only as long as necessary for service provision and legal obligations
  • Analytics Data: Client data retained per contractual agreements
  • Website Data: Usage logs retained for 24 months unless longer retention is required by law

Your Privacy Rights

Access and Control

You have the right to:

  • Access: Request copies of your personal information
  • Correction: Update or correct inaccurate information
  • Deletion: Request deletion of your personal information (subject to legal and contractual obligations)
  • Portability: Receive your data in a structured, machine-readable format
  • Objection: Object to certain processing of your information

California Residents (CCPA)

If you are a California resident, you have additional rights including:

  • Right to know what personal information is collected and how it’s used
  • Right to delete personal information
  • Right to opt-out of the sale of personal information (Note: We do not sell personal information)
  • Right to non-discrimination for exercising your privacy rights

European Residents (GDPR)

If you are in the European Economic Area, you have rights including:

  • Right to access, rectify, and erase personal data
  • Right to restrict or object to processing
  • Right to data portability
  • Right to lodge complaints with supervisory authorities

Exercising Your Rights

To exercise your privacy rights, contact us at:

  • Email: inquiry@insulytics.com
  • Address: PO Box 107, Naperville, IL 60565

We will respond to verified requests within 30 days.

Cookies and Tracking Technologies

Cookie Usage

We use cookies and similar technologies for:

  • Essential Functions: Website operation and security
  • Analytics: Understanding website usage and performance
  • Preferences: Remembering your settings and preferences
  • Performance: Optimizing website speed and functionality

Cookie Types

  • Strictly Necessary: Required for website operation
  • Performance: Help us analyze website usage
  • Functionality: Remember your preferences and settings
  • Analytics: Understand how visitors interact with our website

Cookie Control

You can control cookies through your browser settings. However, disabling certain cookies may limit website functionality.

Third-Party Services

Integrated Services

Our platform may integrate with third-party services including:

  • Microsoft Azure (cloud infrastructure)
  • Analytics and monitoring tools
  • Customer support platforms
  • Payment processing services

Third-Party Privacy

These services have their own privacy policies. We encourage you to review their privacy practices.

Data Processing Agreements

We maintain data processing agreements with all third-party vendors handling personal information.

International Data Transfers

Global Operations

We may transfer information internationally for service delivery. All transfers are protected by:

  • Adequate data protection frameworks
  • Standard contractual clauses
  • Binding corporate rules
  • Other appropriate safeguards

Data Localization

Client data is primarily processed and stored in the United States using Microsoft Azure’s secure infrastructure.

Children’s Privacy

Our Services are designed for business use and are not directed to individuals under 16. We do not knowingly collect personal information from children under 16. If we become aware of such collection, we will delete the information promptly.

Changes to This Privacy Policy

Policy Updates

We may update this Privacy Policy periodically to reflect:

  • Changes in our practices
  • Legal or regulatory requirements
  • Service enhancements
  • Industry best practices

Notification

We will notify you of material changes through:

  • Email notification to account holders
  • Website notice
  • Platform notifications

Effective Date

Changes become effective on the date specified in the updated policy.

Contact Information

Privacy Inquiries

For questions about this Privacy Policy or our privacy practices:

Email: inquiry@insulytics.com
Address: PO Box 107, Naperville, IL 60565
Subject Line: Privacy Policy Inquiry

Data Protection Officer

For GDPR-related inquiries, contact our Data Protection Officer at inquiry@insulytics.com with “DPO Inquiry” in the subject line.

Response Time

We respond to privacy inquiries within 5 business days and fulfill verified requests within 30 days as required by applicable law.

Governing Law

This Privacy Policy is governed by the laws of the State of Illinois, United States, without regard to conflict of law principles.

Additional Resources

Industry Compliance

  • Insurance Regulations: We comply with applicable insurance data protection regulations
  • SOC 2 Type II: Annual compliance audits and certifications
  • Industry Standards: Following insurance industry best practices for data security

Transparency Reports

We maintain transparency in our data practices and may publish annual transparency reports regarding government requests and data security incidents.

This Privacy Policy demonstrates our commitment to protecting your privacy while delivering enterprise-grade insurance analytics solutions. For additional information about our security practices and compliance certifications, please contact us.

Insulytics – Insight That Underwrites Success