Privacy Policy

1. Introduction

InsightAgent Inc. ("InsightAgent," "we," "us," or "our") operates a platform for conducting and managing AI-powered expert interviews via phone and web. This Privacy Policy explains how we collect, use, disclose, and protect your information when you use our services, including our website at insightagent.io and related applications (collectively, the "Service").

We are committed to protecting your privacy and handling your data in an open and transparent manner. This policy applies to all users of our Service, including investment professionals, research analysts, and expert interview participants.

By using our Service, you agree to the collection and use of information in accordance with this policy. If you do not agree with the terms of this policy, please do not access or use our Service.

2. Information We Collect

2.1 Account Information

When you create an account, we collect:

• Contact Information: Name, email address, phone number, and company name
• Professional Information: Job title, department, and organizational role
• Authentication Data: Login credentials and authentication tokens
• Billing Information: Payment details, billing address, and subscription information (processed securely through our payment provider, Stripe)

2.2 Interview Data

When you use our interview platform, we collect:

• Interview Recordings: Audio recordings of phone and web-based interviews
• Transcriptions: Text transcripts generated from interview audio using AI-powered speech recognition
• Interview Metadata: Date, time, duration, participant information, interview questions, and scheduling details
• Expert Information: Names, contact details, employment history, professional background, and compliance-related information of interview subjects
• AI-Generated Content: Summaries, insights, extracted data points, and analysis generated by our AI systems
• User Notes: Any notes, tags, or annotations you add to interviews

2.3 Automatically Collected Information

• Usage Data: Pages visited, features used, actions taken, and interaction patterns within the Service
• Device Information: Browser type, operating system, IP address, device identifiers, and screen resolution
• Session Data: Session recordings and interaction replays for quality improvement and debugging (via LogRocket)
• Log Data: Server logs including access times, error logs, and system events

2.4 Cookies and Tracking Technologies

We use cookies and similar tracking technologies to:

• Essential Cookies: Required for authentication and core functionality
• Analytics Cookies: Help us understand how users interact with our Service
• Preference Cookies: Remember your settings and preferences

You can control cookie preferences through your browser settings. Note that disabling certain cookies may affect Service functionality.

3. How We Use Your Information

We use the information we collect to:

3.1 Provide and Operate the Service

• Facilitate AI-powered interviews and generate transcriptions
• Produce AI-generated summaries, insights, and structured data outputs
• Enable interview scheduling, management, and participant coordination
• Process voice calls and real-time communications

3.2 Account Management

• Process payments and manage your subscription
• Send administrative communications, service updates, and important notices
• Provide customer support and respond to inquiries

3.3 Service Improvement

• Analyze usage patterns to improve features and user experience
• Train and improve our AI models using anonymized and aggregated data
• Detect, prevent, and address technical issues and security threats

3.4 Legal and Compliance

• Comply with legal obligations and regulatory requirements
• Enforce our Terms of Service and protect our rights
• Respond to legal requests and prevent fraud

4. Third-Party Services and Data Sharing

We use trusted third-party service providers to deliver our platform functionality. We share data with these providers only as necessary to provide the Service and require them to protect your data.

We do not sell your personal information. We may share anonymized, aggregated data that cannot identify you for research and analytical purposes.

5. Data Storage & Security

We implement industry-standard security measures to protect your data:

• Encryption in Transit: All data transmitted between your device and our servers is encrypted using TLS 1.2 or higher
• Encryption at Rest: Stored data is encrypted using AES-256 encryption
• Access Controls: Role-based access controls limit data access to authorized personnel only
• Infrastructure Security: Data is stored on secure AWS infrastructure with regular security audits
• Authentication Security: Support for multi-factor authentication and secure credential storage
• Monitoring: Continuous security monitoring and intrusion detection

While we implement robust security measures, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security but are committed to protecting your data using industry best practices.

6. Data Retention

We retain your data for as long as necessary to provide our Service and fulfill the purposes described in this policy:

• Account Data: Retained while your account is active and for 90 days after account closure
• Interview Recordings & Transcripts: Retained according to your account settings and subscription plan; you may delete recordings at any time
• AI-Generated Content: Retained for the same period as the source interview data
• Usage Data & Analytics: Retained for up to 24 months for service improvement
• Billing Records: Retained as required by law (typically 7 years for tax purposes)
• Support Communications: Retained for up to 3 years after resolution

You may request deletion of your data at any time, subject to legal retention requirements and legitimate business interests.

7. Your Rights & Choices

Depending on your location, you may have certain rights regarding your personal information:

• Access: Request a copy of the personal data we hold about you
• Correction: Request correction of inaccurate or incomplete data
• Deletion: Request deletion of your personal data, subject to legal retention requirements
• Portability: Request your data in a portable, machine-readable format
• Objection: Object to processing of your data for certain purposes
• Restriction: Request restriction of processing in certain circumstances
• Withdraw Consent: Withdraw previously given consent at any time
• Opt-Out of Marketing: Unsubscribe from marketing communications at any time

To exercise these rights, please contact us at privacy@insightagent.io. We will respond to your request within 30 days.

8. California Privacy Rights (CCPA/CPRA)

California residents have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

• Right to Know: What personal information is collected, used, shared, and sold
• Right to Delete: Request deletion of personal information
• Right to Correct: Request correction of inaccurate personal information
• Right to Opt-Out: Opt-out of the sale or sharing of personal information (we do not sell personal information)
• Right to Limit: Limit the use of sensitive personal information
• Right to Non-Discrimination: Not be discriminated against for exercising privacy rights

To submit a request, contact us at privacy@insightagent.io or call us. We may verify your identity before processing your request.

9. European Privacy Rights (GDPR)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have additional rights under the General Data Protection Regulation (GDPR):

• Legal Basis: We process your data based on contractual necessity, legitimate interests, consent, or legal obligations
• Data Protection Authority: You have the right to lodge a complaint with your local data protection authority
• International Transfers: When we transfer data outside the EEA, we use appropriate safeguards including Standard Contractual Clauses

For GDPR-related inquiries, contact our data protection contact at privacy@insightagent.io.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence, including the United States where our servers are located. These countries may have different data protection laws than your country.

When we transfer your information internationally, we take appropriate safeguards to protect your data, including implementing Standard Contractual Clauses approved by the European Commission and ensuring our service providers maintain appropriate security measures.

11. Children's Privacy

Our Service is designed for business professionals and is not intended for individuals under the age of 18. We do not knowingly collect personal information from children under 18. If we become aware that we have collected personal information from a child under 18, we will take steps to delete that information promptly. If you believe we have collected information from a child, please contact us at privacy@insightagent.io.

12. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or for other operational reasons. We will notify you of any material changes by:

• Posting the updated policy on this page
• Updating the "Last Updated" date at the top
• Sending you an email notification for significant changes
• Displaying a prominent notice within the Service

We encourage you to review this policy periodically. Your continued use of the Service after changes become effective constitutes acceptance of the updated policy.

13. Contact Us

If you have questions about this Privacy Policy, our privacy practices, or wish to exercise your privacy rights, please contact us at:

We will respond to your inquiry within 30 days.