The Intelligent Agent
The Intelligent Agent
Draft, pending legal review. This document is provided in good faith while we finalize counsel review. It is not a substitute for the binding agreement in your master subscription.
Legal·Last updated 2026-05-18·v2026-05-18

Privacy Policy

How we handle data on the platform. The short version: your data is yours, we do not sell it, and we do not train AI models on it.

Questions? privacy@theintelligentagent.ai

Plain-English summary

The Intelligent Agent, Inc. ("we", "us") operates The Intelligent Agent, an AI platform for insurance agencies, brokers, and carriers. We collect the minimum data needed to run the product for you. We do not sell your data. We do not train AI models on your data. You can export or delete your data at any time.

What we collect

  • Account data: name, work email, agency name, role, password hash, IP at signup, terms acceptance.
  • Customer content: documents you upload (policies, ACORD forms, quotes, declarations), chat prompts and responses, client/prospect records, proposals you generate.
  • Usage data: pages visited, features used, error logs, performance metrics. Used to improve the product.
  • Billing data: processed by Stripe. We store the subscription state and last four of the card, not full card numbers.
  • Cookies: see the Cookie Policy.

How we use it

  • To deliver the features you use (chat, document analysis, proposals, certificates, agents).
  • To secure the platform (rate limiting, fraud detection, audit trails for E&O defensibility).
  • To support you (responding to your requests, debugging, account recovery).
  • To improve the product in aggregate (anonymized usage analytics, never your customer content).
  • To comply with law and enforce our Terms of Service.

We do not use your customer content for advertising, resale, or AI model training.

AI providers

We route AI inference through Google Gemini, OpenAI, and Perplexity via enterprise API agreements that contractually prohibit those providers from using your inputs to train their models, and that limit retention to what is needed to deliver the response (typically zero retention, with abuse-monitoring exceptions of 30 days or less). See our Subprocessors page for the live list.

Sharing

We share data only with:

  • Subprocessors we use to run the platform (hosting, AI inference, email delivery, payments). All under written contracts with confidentiality and security obligations. See /subprocessors.
  • Other users in your agency workspace, per your org's role configuration.
  • Recipients you direct us to share with, e.g. proposal share links you generate.
  • Legal or safety, when required by law or to protect rights and safety. We will notify you unless prohibited.
  • Successor entity in the event of a merger or acquisition, subject to this Privacy Policy.

We do not sell personal information. We do not share it for cross-context behavioral advertising.

Retention

We retain customer content for as long as your account is active. On account closure we soft-delete for 7 days (recoverable on request), then permanently purge within 30 days, except where retention is required by law or for legitimate accounting/audit purposes (typically 7 years for financial records).

Your rights

Regardless of jurisdiction, you can: access your data, correct it, export it (JSON + PDFs), delete it, and object to certain processing. Use the in-app Data & privacy panel, or email privacy@theintelligentagent.ai.

CCPA (California residents)

You have the right to know what personal information we collect, to delete it, to correct it, to opt out of sale or sharing (we do neither), and to non-discrimination for exercising your rights. We do not sell personal information and do not knowingly process the personal information of minors under 16.

GDPR (EU/UK residents)

We act as a data processor for your customer content under your direction (controller). Our lawful bases include contract performance, legitimate interests (security, fraud prevention), and consent (cookies and marketing). You have rights of access, rectification, erasure, restriction, portability, and objection. Our EU/UK representative can be reached at privacy@theintelligentagent.ai. For cross-border transfers we rely on Standard Contractual Clauses where applicable. See our DPA.

Security

TLS in transit, AES-256 at rest, Postgres Row-Level Security for tenant isolation, default PII redaction in chat logs, and full audit trails. Detail at /security. We commit in our DPA to notify you of confirmed security incidents within 72 hours.

Children

The platform is not directed to anyone under 18 and we do not knowingly collect personal information from children. If you believe a child has provided us information, contact privacy@theintelligentagent.ai and we will delete it.

Changes

We may update this policy. The "Last updated" date at the top reflects the most recent version. Material changes will be notified via email or in-app banner, and may require re-acceptance on next login.

Contact

The Intelligent Agent, Inc.. For privacy questions, requests, or complaints: privacy@theintelligentagent.ai.

Other legal documents: Data Promise · Privacy · Terms · DPA · Subprocessors · Acceptable use · Cookies · Security