Privacy Notice

Policygenius Privacy Notice

Last updated: March 3, 2025

This Privacy Notice (“Privacy Notice”) describes how Policygenius (“we”, “us, or “our”) collects, uses, shares, and secures your personal information in connection with our websites (www.policygenius.com and www.pro.policygenius.com), as well as any related mobile applications, and other digital properties that link to this Privacy Notice (collectively, the “Sites”) and to provide our Sites, educational materials, insurance coverage estimates and quotes, insurance brokerage services, financial planning tools, business-to-business offerings, and other services (the “Services”).  To the extent we collect information about you from third-parties, the privacy and data security practices of such third-parties govern their data collection practices and not this Privacy Notice. For the purposes of this Privacy Notice, “users”, “you”, and “your” means you as the user of the Sites and Services.

Our Gramm-Leach-Bliley Act (“GLBA”) Privacy Notice applies to personal information we collect, use, and share in connection with you seeking, applying for, or obtaining financial products or services (including insurance products and services) from us. 

We may change this Privacy Notice at any time, in which case we will update the “Last Updated” date. If we make material changes to the way we use the information we collect described in this Privacy Notice, we will use commercially reasonable efforts to notify you and will take additional steps to the extent required by applicable law. Your continued use of the Sites or Services following the updates to this Privacy Notice means that you consent to our updated notice.

CONTENTS

I. How and Where We Collect and Use Your Information

II. How We Share Your Information

III. How We Secure Your Information

IV. Users From Outside The U.S.

V. Children

VI. Job Applicants

VII. External Sites

VIII. How to Opt-Out

IX. Data Retention

X. Additional Information For Residents of Certain U.S. States

XI. Contact Us

I. How and Where We Collect and Use Your Information

1. Types and Sources of Information We Collect About You

The types and sources of information we collect about you depends on the Sites and Services you use, how you interact with us and our Sites, and how you were referred to us. The types and sources of information may include:

Information that you provide to us directly 

We may collect personal information directly from you through our Sites and Services, including online, over the telephone, via text messages, and in any other manner in which you communicate with us. Information we may collect directly from you includes your name, address, email address, telephone number, etc. (“Contact Information”); insurance application information (such as your health or financial information); and, for Policygenius Pro users, your associated company and agent information. You may also choose to provide other personal information to us when you communicate with us or apply for a product. For certain products you may also be required to provide your consent and certain information to enable assessment of your credit report and other eligibility information.

Information from third parties 

We may obtain information about you from third-parties. Examples of third-parties from whom we may obtain information include consumer reporting agencies, identity verification services, health care providers, insurance carriers, and Business Partners (as further described below). In addition, we may also collect information about you from social networks or other third-party platforms that you may use to access our Sites and Services. For example, you may also choose to login via a third-party platform, such as Google. In such instances, we may collect information from that platform, such as your social network alias, email address, first and last name, country of residence, language preference, and profile picture, and use it as described in this Privacy Notice. (See also “Social Features” below). 

Information automatically collected through your interaction with our Sites

When you visit our Site or use our Services, we may collect personal information and information about you automatically from the devices and browsers that you use to interact with us (“Usage Information”). Usage Information includes information and analytics about how you interact with our Sites and Services. In addition, our Sites use technologies such as cookies, beacons, pixels, tags, session replay, and scripts (collectively “Cookies” or “Technologies”).  These Technologies are typically a small piece of software or text placed on your computer when you visit a website. They are used to store information on web browsers and to store and receive identifiers and other information on computers, telephones, and other devices. They may include data we store on your web browser or device, identifiers associated with your device, and other software. For instance, if you visit from a mobile device, we may reference your device identifier or other information to remember certain information about your preferences for viewing our Sites, and allow us to recognize you each time you return. For more information about your choices and controls regarding these Technologies, please visit the How to Opt-Out section of our Privacy Notice below.

2. How We Use Personal Information

Depending on how you interact with our Site and Services, we may  use personal information and information about you for the following purposes: 

Establishing an Online Account

We will use your information to establish and maintain your online account if you choose to create one (become a “Member”). 

Site Usage, Personalization, and Performance

We may use your information, including Usage Information, to inspect, analyze, tailor, and improve our Sites and Services. Additionally, we may use your information to analyze interactions with our Sites and Services, and to gain insights into their performance, including to:

• associate our users with the reports they provide about satisfaction with our Sites and Services;

• analyze usage of our Sites and Services including based on navigation paths and mouse clicks;

• personalize the content displayed to you on our Sites and Services;

• perform testing on our Sites;

• optimize interaction with our data stores; and

• organize and administer other related technologies on our Sites.

Marketing and Advertising

We may use your information, including Contract Information, Usage Information, and Third-Party Information to tailor the content, advertisements, and promotions you may see on our Sites or elsewhere online and to determine which Services or other offerings might be of interest to you. Additionally, we may use your information to enable, improve, and effect targeted and re-targeted advertising for our advertising partners on both our Sites and their third-party sites such as Facebook and Google. We may also use your information to provide or offer other financial and consumer products and services from partners with whom we have entered into a joint marketing agreement. For more information about your choices and controls regarding marketing communications, please visit the How to Opt-Out section of our Privacy Notice below.

Communicating with You

We may use your information to communicate with you through mail, over email, via chat on the Sites, by phone, or by text message. In such instances, we will collect additional information about the communications with us, including the date and time of communications, method or channel used, and where applicable law permits, audio recordings (such as when you call our Policygenius customer support line[s]). We will use this information to respond to your inquiries, to provide products and services relevant to you, and to monitor and improve our operations and customer support.

Customer Surveys and Reviews

We may ask you to participate in customer reviews and surveys. If you participate, then we may request certain personal information. Participation in these surveys is completely voluntary and you therefore have a choice whether or not to disclose this information. The requested information typically includes first and last name, contact information (such as email or address), and demographic information (such as zip code).

We use this information to evaluate our level of customer service, as well as test and make improvements on our products, Sites, and Services. By participating, you consent to the use of your first and last name, along with your responses, on our Sites, in marketing materials, or on our social media platforms, and you permit us to, at our sole discretion, pass on your information to third-party service providers.

Getting Insurance Estimates, Applying for Insurance & Paying for Your Policy

The information you provide us for these purposes is subject to the Gramm-Leach-Bliley-Act (GLBA). We encourage you to please read our GLBA Privacy Notice, which describes how we use and share this information. 

Other Uses of Personal Information on our Sites and Services

In addition to the specific uses of information described above, we may use your personal information for the following reasons:

• Aggregate your personal information and use that for our business purposes;

• Comply with applicable laws, lawful requests, and legal process, such as to respond to subpoenas or requests from government authorities;

• Protect our, your or others’ rights, privacy, safety or property (including by making and defending legal claims);

• Audit our internal processes for compliance with legal and contractual requirements and internal policies;

• Enforce the terms and conditions that govern the Services; and

• Identify verification and fraud prevention, including, investigating and deterring fraudulent, harmful, unauthorized, unethical or illegal activity such as cyberattacks and identity theft.

II. How We Share Your Information

We may share your information to the following types of third-parties and for the following purposes:

Policygenius Affiliates

We may share personal information to Policygenius corporate group affiliates, for general business purposes.

Service Providers and Contractors 

We may share your personal information with service providers for market research, analytics, and for providing and improving our  Sites and Services. 

Business Partners  

We may also share your personal information with insurance brokers/agents, financial services companies, insurance companies, and referral partners (collectively “Business Partners”). For instance, this sharing may occur if you were referred to us by a Business Partner, indicated an interest in an insurance product, or submitted a request for quotes or an application for insurance through a Business Partner. The information we share in this context is subject to the Gramm-Leach-Bliley-Act (GLBA). We encourage you to please read our GLBA Privacy Notice, which describes how we share this information. 

Advertising Partners

We may disclose or make available personal information to third-party advertising platforms and providers to obtain personalized and tailored advertising services. They may use the information that we provide (e.g., online identifiers, browsing history, usage data, and other activity information and characteristics) to help us better reach individuals with relevant ads and to measure and improve our ad campaigns, or to better understand how individuals interact with our Services. In addition, advertising and analytics companies may combine the information collected from us and our Services with information collected about you by them and from third-party sites, apps, and services,  to make inferences about you and your interests, to better tailor advertising and content to you across multiple sites, apps, and services, and to collect associated metrics.

Corporate Transaction Participants

We may share or transfer personal information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business with counterparties in the course of a corporate sale, merger, reorganization, sale of assets, dissolution, or similar event, some or all of the personal information may be part of the transferred assets. 

Professional advisors and third parties pursuant to legal and regulatory obligations 

We may share your personal information with our professional advisors (e.g. lawyers, auditors, bankers and insurers), in response to legal processes (e.g. responding to subpoenas or requests from U.S. law enforcement requests); and with other parties  to enforce our agreements or policies, protect the rights, property and safety of Policygenius, users and others, and to detect, prevent and address actual or suspected fraud, violations of our Terms & Conditions, other illegal activities, security issues or when it is required by law. This may include exchanging information with other companies and organizations for fraud protection and credit risk reduction.

Social Features

Certain features of the Services permit you to initiate interactions between the Services and third-party services or platforms, such as social networks (“Social Features”). Social Features include features that allow you to click and access our pages on certain third-party platforms, such as Facebook and X, and from there to “like” or “share” our content on those platforms. Use of Social Features may entail a third party’s collection and/or use of information about you, which will be subject to the privacy policies of those platforms. If you use Social Features or similar third-party services, information you post or otherwise make accessible may be publicly displayed by the third-party service you are using. Both us and the third party may have access to information about you and your use of both the Services and the third-party service.

III. How We Secure Your Information

We maintain commercially reasonable administrative, physical and technical safeguards designed to prevent any unauthorized use, access, destruction, loss, alteration, or disclosure of your data. 

If you submit a credit card payment through our Services, for example to purchase insurance coverage, we do not store credit card information on our own servers or associate it with your account information for any purpose other than completing your purchase. 

If you submit bank account information, for example to purchase insurance coverage, that bank information is encrypted, stored on our servers in encrypted form, and is accessed and used to complete your insurance application or purchase. 

If you submit credit card or other payment information via DocuSign, it will be temporarily stored in encrypted form on DocuSign’s servers, and we will use the payment information to securely transmit your payment information to the carrier.

While we take commercially reasonable steps to protect your data we cannot guarantee perfect security – no internet-based service can. No security system is impenetrable. Despite our security measures, we cannot guarantee the security of our databases, nor can we guarantee that the information you supply will not be intercepted while being transmitted to and from us over the Internet. 

IV. Users From Outside The U.S.

Policygenius Sites and Services are intended for use by U.S. residents. U.S. law, and not the laws of other countries, govern the Sites and Services. If you are visiting the Sites or any of the Services, your information will be maintained in the U.S. and in other locations where we may process data. 

By default, we disable the submission of personal information to our Sites from users using European Union and United Kingdom IP addresses. If you need access to your account and are using an E.U. or U.K. IP address, please email privacy@policygenius.com with (i) a description of the access and/or help you need, and (ii) an express consent to use any personal information in our possession to respond to your request.

V. Children

We do not knowingly collect personal information from children under the age of 13. If you are under 13, please do not give us any personal information and do not use the Sites or Services. If you have reason to believe that a child under the age of 13 has provided personal information to us, please contact us immediately, and we will delete that information from our databases.

VI. Job Applicants

For information on how we process data for job applicants please refer to the Zinnia Privacy Policy. For job applicants residing in California, please also see the Zinnia Notice at Collection and Privacy Policy for Applicants Who Reside in California.

VII. External Sites

The Sites may contain links to third-party websites, including, without limitation, the websites of the insurance carriers offering the third-party insurance products made available to you through the Services (“External Sites”), but we do not endorse, and we are not responsible for the content of any linked External Sites or for the privacy practices of the third parties that own and operate such sites. Before using any External Site, please refer to the terms of use and privacy policies of the External Sites for more information, as those terms and policies govern your use of such External Sites.

VIII. How to Opt-Out 

If you wish to opt-out of certain uses of your personal information by our Services, email us at privacy@policygenius.com and let us know what you wish to opt-out of. Please be advised that certain uses and sharing of your information may be required to continue providing certain Services to you, and that you will not be entitled to any refund if your removal of personal information will make certain prepaid Services unavailable to you.

Please note that under certain federal regulations, including the GLBA, you may not be able to opt out of the use and sharing of your personal information, in connection with seeking, applying for, or obtaining insurance products or services from us. For more information on such financial products, and our data practices, please review our GLBA Privacy Notice. 

Web browser Do-Not-Track (DNT)

Some web browsers may transmit “do-not-track” signals to websites with which the browser communicates. We do not currently have the ability to recognize Do Not Track signals. You can learn more about Do Not Track signals at https://allaboutdnt.com/ 

Marketing Communications

You can opt out of receiving marketing communications by emailing us at privacy@policygenius.com, clicking the unsubscribe link at the bottom of email communications (to opt out of marketing emails), or replying STOP to text message communications (to opt out of marketing text messages).

Third-Party Tracking - Like many companies online, we use Technologies provided by Google, Facebook and other companies for the purposes described in this Privacy Notice. There are a number of ways to opt-out of having your online activity and device data collected through these services, which we have summarized below:

• Blocking cookies in your browser. Most browsers let you remove or reject cookies, including cookies used for interest-based advertising. To do this, follow the instructions in your browser settings. Many browsers accept cookies by default until you change your settings. For more information about cookies, including how to see what cookies have been set on your device and how to manage and delete them, visit www.allaboutcookies.org.

• Blocking advertising ID use in your mobile settings. Your mobile device settings may provide functionality to limit use of the advertising ID associated with your mobile device for interest-based advertising purposes.

• Using privacy plug-ins or browsers. You can block our Sites from setting cookies used for interest-based ads by using a browser with privacy features, like Brave, or installing browser plugins like Privacy Badger, Ghostery or uBlock Origin, and configuring them to block third party cookies/trackers.

• Platform opt-outs. The following advertising partners offer opt-out features that let you opt-out of use of your information for interest-based advertising:

  • Google: https://adssettings.google.com

  • Facebook: https://www.facebook.com/about/ads

  • X: https://help.x.com/en/safety-and-security/privacy-controls-for-tailored-ads 

• Advertising industry opt-out tools. You can also use these opt-out options to limit use of your information for interest-based advertising by participating companies:

  • Digital Advertising Alliance: http://optout.aboutads.info

  • Network Advertising Initiative: http://optout.networkadvertising.org/?c=1

To opt out of tracking by Google Analytics, click here.

IX. Data Retention

We generally retain your information for as long as your account is active or as needed to provide the Services to you. In some circumstances, we may retain  information longer if ‎reasonably necessary for legitimate business or legal purposes, if required by law, if deletion would require disproportionate technical effort or would be extremely impractical (for example, fundamentally changing an existing practice or would impact information residing on backup systems), to resolve disputes, to comply with our internal compliance and record retention policies, to enforce our agreements, to prevent fraud and abuse, to enforce or Terms and Conditions, and/or for any other purpose permitted by law.

If you request that we delete your information, please note that it is not always possible to completely delete all of your information from our databases ‎and that residual data may remain on our backup systems. 

X. Additional Information For Residents of Certain U.S. States 

If you are a resident of certain U.S. states you may be entitled to additional information regarding how we collect, use, and share your “personal information,” as well as certain privacy rights over such information. You can learn more about which rights may be available to you and how to exercise those rights by reviewing the U.S. State Privacy Addendum.

XI. Contact Us

If you have additional questions or would like more information regarding our information collection, use of information, or disclosure practices, please feel free to contact us at privacy@policygenius.com.

Previous GLBA Consumer Privacy Notice can be viewed here.