Privacy Policy
Effective Date: [Insert Date] Last Updated: [Insert Date]
1. Introduction
Welcome to [Company Name] ("we," "our," or "us"). We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website [www.yourwebsite.com] or use our health and life insurance services.
Please read this policy carefully. If you disagree with its terms, please discontinue use of our site.
2. Information We Collect
We may collect the following categories of information:
Personal Identifiers Name, email address, mailing address, phone number, date of birth, Social Security number, and government-issued ID numbers.
Health and Medical Information Medical history, current health conditions, prescription information, and other health-related data necessary to provide health insurance quotes, applications, or policy management. This information is considered Protected Health Information (PHI) under HIPAA where applicable.
Financial Information Income, payment information, and billing details required to process premiums or policy transactions.
Insurance-Specific Information Policy numbers, beneficiary designations, coverage preferences, claims history, and life event information relevant to life insurance underwriting.
Technical and Usage Data IP address, browser type, device identifiers, pages visited, time spent on pages, and referring URLs, collected automatically when you visit our site.
Communications Records of your correspondence with us, including emails, chat logs, and phone call records.
3. How We Use Your Information
We use the information we collect to:
Process insurance applications, quotes, and policy enrollments
Underwrite, administer, and service health and life insurance policies
Communicate with you about your policy, claims, or account
Comply with legal and regulatory obligations, including state insurance laws and federal requirements
Detect and prevent fraud or unauthorized activity
Improve our website, products, and customer experience
Send you relevant updates, offers, or information (with your consent where required)
Respond to your inquiries and provide customer support
4. HIPAA Notice — Protected Health Information
To the extent we function as a covered entity or business associate under the Health Insurance Portability and Accountability Act (HIPAA), we are required to maintain the privacy of your Protected Health Information (PHI) and to provide you with notice of our legal duties and privacy practices.
Your HIPAA Rights include:
The right to access and receive a copy of your PHI
The right to request corrections to your PHI
The right to request restrictions on how your PHI is used or disclosed
The right to receive an accounting of disclosures of your PHI
The right to request confidential communications
The right to file a complaint if you believe your privacy rights have been violated
We will not use or disclose your PHI except as permitted or required by law, or as described in this policy. We will notify you in the event of a breach of your unsecured PHI as required by the HIPAA Breach Notification Rule.
To exercise your HIPAA rights or to file a complaint, contact us at: [privacy@yourcompany.com] or write to [Company Address]. You may also file a complaint with the U.S. Department of Health and Human Services Office for Civil Rights at hhs.gov/ocr.
5. How We Share Your Information
We may share your information in the following circumstances:
Insurance Carriers and Partners We share information with licensed insurance carriers, reinsurers, and underwriters as necessary to provide you with quotes, bind coverage, or administer your policy.
Service Providers We engage third-party vendors who perform services on our behalf (e.g., payment processing, IT support, marketing platforms). These parties are contractually obligated to protect your information and may only use it for the services they provide to us.
Legal and Regulatory Compliance We may disclose information to regulators, law enforcement, or courts when required by law, subpoena, or to protect our legal rights.
Business Transfers In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change.
With Your Consent We may share your information for any other purpose with your explicit consent.
We do not sell your personal information to third parties for their own marketing purposes.
6. California Residents — Your Rights Under the CCPA
If you are a California resident, the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA) provides you with the following rights:
Right to Know You have the right to request that we disclose what personal information we have collected about you, the categories of sources, the business purposes for collection, and the categories of third parties with whom we share it.
Right to Delete You have the right to request deletion of your personal information, subject to certain exceptions (such as information needed to complete a transaction, comply with a legal obligation, or fulfill a HIPAA requirement).
Right to Correct You have the right to request correction of inaccurate personal information we hold about you.
Right to Opt-Out of Sale or Sharing We do not sell or share your personal information for cross-context behavioral advertising. If this practice ever changes, we will update this policy and provide a "Do Not Sell or Share My Personal Information" link.
Right to Limit Use of Sensitive Personal Information You have the right to limit our use of sensitive personal information (including health data, Social Security numbers, and financial information) to purposes necessary to provide our services.
Right to Non-Discrimination We will not discriminate against you for exercising any of your CCPA rights. You will not receive a different price, service level, or quality of service as a result.
How to Submit a Request To exercise your California privacy rights, contact us at:
Email: [privacy@yourcompany.com]
Toll-Free: [1-800-XXX-XXXX]
Online: [Link to Privacy Request Form]