Privacy Policy

Last updated: July 2026

1. Information We Collect

PolicyVera collects the following personal information to facilitate insurance quote requests between clients and licensed agents:

  • Full name
  • Date of birth
  • Last four digits of Social Security Number
  • Driver's license number and state
  • Mailing address
  • Phone number
  • Email address
  • Insurance documents you upload (such as policy declarations pages)
  • Details of the property or items to be insured (such as the property address)
  • Co-applicant details, when you add a co-applicant
  • Messages you exchange on the Platform, including video messages

2. How We Store Your Data

Your personal information is encrypted in transit using TLS, and your Social Security number and driver's license number are individually encrypted at the application layer. All data is stored on infrastructure that provides encryption at rest, hosted with service providers that maintain recognized security certifications such as SOC 2. Access to personally identifiable information (PII) is restricted to authorized personnel and systems.

3. Who Can See Your Data

Your identity information is shared only with insurance agents you explicitly choose to send quote requests to. Platform administrators may access data for support, compliance, and security purposes. We do not sell your personal information: your details go only where you direct them, and that remains true regardless of any fees insurance professionals pay PolicyVera for using the Platform.

4. Data Retention and Deletion

We retain your data for as long as your account is active. You may request deletion of your account and all associated personal data at any time through your account settings. Deletion requests are processed within 30 days. Certain data may be retained as required by law or for legitimate business purposes (e.g., audit logs).

5. Cookies and Sessions

PolicyVera uses session cookies to keep you signed in. We use JSON Web Tokens (JWT) for authentication. Sessions expire after 4 hours of inactivity for security purposes. We do not use third-party tracking cookies. For website analytics we use Ahrefs Web Analytics on our public pages — a privacy-friendly, cookieless service that measures aggregate visits without setting cookies or tracking you across other websites. We also use Google Analytics 4 on our public pages to measure traffic and improve the site; it sets a first-party analytics cookie, and we have turned off Google Signals and ad personalization, so your information is not used for cross-site advertising. Where we work with aggregated or de-identified information (such as the site analytics described here), we maintain it in de-identified form and do not attempt to re-identify it.

Do Not Track and privacy signals: because we do not track you across other websites, our sites respond to “Do Not Track” browser signals by simply continuing not to track you — there is no cross-site tracking to switch off. We do honor Global Privacy Control signals as an opt-out of the sale or sharing of personal information (see Your privacy choices), and no third party is permitted to collect personal information about your activity over time and across different websites through our Platform.

6. Third-Party Service Providers & AI Data Processing

PolicyVera uses third-party service providers to operate the Platform. Your data may be processed by providers in the following categories:

  • AI document processing (Anthropic): When you or your agent upload insurance documents, their content is sent to a third-party AI provider (currently Anthropic) to extract details such as coverage limits, deductibles, and premium amounts. The provider does not retain document content after processing; extracted data is stored on our Platform.
  • Cloud hosting and application delivery
  • File storage
  • Database hosting
  • Email delivery
  • Payment processing (Stripe): when a payment feature applies to your account (for example, agent membership fees), payments are processed by Stripe. Card details go directly to Stripe; PolicyVera does not store full card numbers.
  • Text messaging (Twilio): if you opt in to text-message features (such as phone-number verification or text notifications), your phone number and the message content are shared with our SMS provider (currently Twilio) to deliver those messages. Message frequency varies with your account activity, and message and data rates may apply. Reply STOP to any message to opt out, or HELP for help. We do not share your mobile phone number or your text-messaging consent with third parties or affiliates for their own marketing purposes.

We require all service providers to maintain appropriate security measures and to process your data only as necessary to provide their services to us. We do not sell your personal information — service providers act on our instructions to run the Platform, and the professionals who receive your details are the ones you chose.

7. California Consumer Privacy Act (CCPA)

If you are a California resident, you have the right to:

  • Know what personal information we collect, use, and disclose
  • Request deletion of your personal information
  • Opt out of the sale of your personal information (we do not sell personal data — disclosures happen at your direction, which California law excludes from “sale”)
  • Not be discriminated against for exercising your privacy rights

To exercise your CCPA rights, use the deletion feature in your account settings or contact us at the address below. For the full list of California rights and how to exercise them, see Your privacy choices.

8. Notice at Collection (California)

What we collect: the identifiers and details listed in Section 1 — your name, contact information, date of birth, property details, uploaded insurance documents, and on-platform messages. Two items are sensitive personal information: the last four digits of your Social Security number and your driver's license number.

Why we collect it: to arrange the insurance quotes you request — connecting you with the licensed agents you choose, pre-filling your applications, and supporting your closing when a lender is involved. Sensitive information is used only for this purpose.

Sold or shared: we do not sell your personal information or share it for cross-context behavioral advertising — disclosures happen at your direction, to the licensed agents you choose, regardless of any fees those professionals pay PolicyVera. See Your privacy choices for your opt-out rights.

How long we keep it: for as long as your account is active; you can request deletion at any time and requests are processed within 30 days, subject to the legal retention exceptions described in Section 4.

Analytics on public pages: Ahrefs Web Analytics (cookieless) and Google Analytics 4 (first-party cookie, ad personalization off) measure aggregate site traffic, as described in Section 5.

9. State Privacy Rights (All U.S. States)

PolicyVera LLC is the business responsible for — the “controller” of — personal data processed through the Platform. If you live in a state with a comprehensive consumer privacy law (a growing number of U.S. states have enacted one, and more take effect each year), you have rights that may include:

  • Confirming whether we process your personal data and accessing it
  • Correcting inaccurate personal data
  • Deleting your personal data
  • Obtaining a copy of your personal data in a portable format
  • Opting out of the sale of personal data, targeted advertising, and profiling — we do not sell your personal data, serve targeted advertising, or make profiling decisions
  • A list of the third parties to whom we have disclosed your personal data (an Oregon right) — for most users this is the agents you chose, a lender you consented to, and the service providers in Section 6

Not every state law grants each of these rights, but we honor these requests from residents of any state — including states whose privacy laws take effect in the future; you do not need to wait for your state's law to become effective. To exercise them, use the deletion feature in your account settings or email privacy@policyvera.com; we will verify your request using the contact information associated with your account or your request. You may also use an authorized agent to submit a request on your behalf — we will ask for proof of your written permission (or a power of attorney) and verify your identity as above. If we decline a request, you may appeal by replying to our decision (or emailing the same address with “Appeal” in the subject line); if your appeal is denied, you may contact your state Attorney General.

Why we are not “selling” your data: we disclose your information at your direction — to the licensed agents you choose, to a referring lender only with your consent, and to the service providers that operate the Platform — to provide the service you request. State privacy laws exclude these disclosures from the definition of a “sale.” That analysis does not depend on how PolicyVera is paid: insurance professionals may pay us fees for using the Platform, but your information goes only where you direct it — it is never exchanged with anyone you did not choose. Because we do not sell or share personal data, there is no sale to opt out of; we nevertheless honor opt-out preference signals such as Global Privacy Control today, and any recorded opt-out is enforced before any practice that could qualify as a sale would ever begin.

Nonpublic personal information we receive in connection with insurance transactions is used only for those transactions, consistent with federal Gramm-Leach-Bliley reuse and redisclosure limits.

10. Nevada Residents

We do not sell covered information as defined by Nevada law (NRS 603A) — covered information is disclosed only at your direction and is never licensed or sold onward. Nevada residents may submit a verified request directing us not to sell covered information to our designated request address: privacy@policyvera.com. We will respond within 60 days.

You can review and request changes to your information in your account settings or through the same address. Google Analytics may collect information about your online activities over time and across different websites when you use our public pages — we have turned off Google Signals and ad personalization, so that information is not used to advertise to you across sites; Ahrefs Web Analytics is cookieless and does not track you across websites. We announce material changes to this policy by updating this page and the “Last updated” date above, which is also this notice's effective date.

11. Mortgage Lenders & Referral Partners

If a mortgage lender or loan officer refers you to PolicyVera — through their link, or by adding you as a borrower — that lender may, only with your consent, see information related to your home-insurance shopping, including:

  • that you are obtaining home-insurance quotes for your home purchase;
  • your name, email address, and phone number;
  • your quote progress and the quotes licensed agents provide to you; and
  • the ability to coordinate with your agent to help your closing.

A referring lender cannot see your Social Security number, your driver's license, or your private messages with your agent.

If your lender submits your loan application file to start your quote request, we extract only the fields needed to facilitate insurance quotes — your name, contact information, the subject property, and basic loan details — and do not keep the rest of the file.

You control this. When you first sign in after a lender refers you, you choose whether to allow that lender to see your progress. You can change or withdraw your decision at any time in Settings → Your lenders & data sharing, including blocking a lender entirely. A lender may also request quotes from agents on your behalf; if they do, we will notify you, and you can stop those requests at any time. Declining or blocking a lender never prevents you from getting insurance quotes yourself.

12. Social Security Number Protection

We collect only the last four digits of your Social Security number, and we protect them as confidential: they are individually encrypted at the application layer (Section 2), access is restricted to authorized personnel and systems with a legitimate need, and they are never disclosed except as described in this policy or as required by law. If your lender submits a loan file that contains your full Social Security number, we do not extract or keep it (Section 11). When Social Security number data is no longer needed, it is disposed of securely, and any violation of this section by our personnel is grounds for discipline up to termination.

13. Agents, Loan Officers & Professional Users

If you use PolicyVera as an insurance agent, loan officer, or other professional, we collect your professional information: your name and business contact details, your National Producer Number and state license numbers (with status and expiration, which we may verify against state licensing records), and the profile content you choose to provide — such as a photo, biography, languages, business address, links, and introductory video — along with public ratings information (for example, your Google rating) where you connect it.

Because the Platform's purpose is connecting consumers with licensed professionals, parts of this information are displayed publicly: your agent profile page, and your name and license number on the quotes you author. Your account credentials, billing details, and private messages are not public. The rights described in Section 9 apply to professional users too — including California users acting in a business capacity — through the same channels: your account settings or privacy@policyvera.com.

14. Children's Privacy

PolicyVera is a platform for insurance shoppers, mortgage borrowers, and licensed professionals. It is not directed at children, and we do not knowingly collect personal information from anyone under 16. If you believe a child has provided us personal information, contact privacy@policyvera.com and we will delete it.

15. Contact Us

If you have questions about this Privacy Policy or wish to exercise your data rights, please contact us at: privacy@policyvera.com

This Privacy Policy should be read together with our Terms of Service.