Privacy Policy
Last updated: December 26, 2025
1. Introduction
PolicyInsight ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our financial intelligence platform.
By using our Service, you consent to the data practices described in this Privacy Policy. If you do not agree with this Privacy Policy, please do not access or use our Service.
π Our Commitment:
We never sell your personal data to third parties and implement industry-standard security measures to protect your information.
2. Information We Collect
Personal Information You Provide:
- Account Information: Username, email address, password (encrypted)
- Profile Data: Optional profile information, preferences, settings
- Payment Information: Billing address, payment method details (processed securely)
- Communication Data: Messages sent through our support channels
Automatically Collected Information:
- Usage Data: Pages viewed, features used, time spent on platform
- Device Information: IP address, browser type, operating system
- Analytics Data: User interactions, click patterns, performance metrics
- Log Data: Server logs, error reports, security logs
Financial Preferences & Analysis Data:
- Trading Interests: Asset classes you follow (stocks, crypto, forex)
- Risk Tolerance: Investment preferences and risk profiles
- Alert Preferences: Notification settings and watchlists
- Research History: Policies and analyses you've viewed
- Portfolio Tracking: Assets you monitor for policy impact analysis
- Policy Preferences: Government entities and policy types you follow
- Market Sentiment: Your reactions to policy analysis (helpful/not helpful)
AI & Machine Learning Data:
π€ AI Transparency:
We use AI and machine learning to provide personalized financial insights. Here's how your data helps train our models:
- Pattern Recognition: Analysis of your trading preferences to improve recommendations
- Sentiment Analysis: Feedback on our analysis to refine accuracy
- Behavioral Analytics: Usage patterns to enhance user experience
- Market Correlations: Your interactions to improve policy-market impact predictions
Note: All AI training uses anonymized, aggregated data and cannot identify individual users.
2.5. Financial Data Handling
π¦ Special Financial Data Protections
Data Encryption:
- β’ End-to-end encryption for all financial data
- β’ Separate encrypted storage for sensitive information
- β’ Regular encryption key rotation
Access Controls:
- β’ Strict need-to-know basis for employee access
- β’ Audit logs for all data access
- β’ Regular security clearance reviews
Financial Compliance: We adhere to financial industry standards including PCI DSS for payment data, SOC 2 for security controls, and relevant securities regulations for market data handling.
No Investment Advice: While we analyze your preferences to provide relevant policy insights, we never provide personalized investment advice or make trading recommendations.
3. How We Use Your Information
We use the information we collect to:
π Service Delivery
- β’ Provide personalized financial insights
- β’ Deliver real-time policy analysis
- β’ Send relevant market alerts
- β’ Customize user experience
π§ Platform Improvement
- β’ Analyze usage patterns
- β’ Improve algorithm accuracy
- β’ Develop new features
- β’ Fix bugs and optimize performance
π‘οΈ Security & Compliance
- β’ Prevent fraud and abuse
- β’ Monitor suspicious activity
- β’ Comply with regulations
- β’ Protect user accounts
π’ Communication
- β’ Send service updates
- β’ Provide customer support
- β’ Share educational content
- β’ Process billing inquiries
- β’ Send policy alerts and market notifications
- β’ Deliver personalized insights and analysis
π§ AI & Analytics
- β’ Train machine learning models (anonymized)
- β’ Improve policy impact predictions
- β’ Enhance sentiment analysis accuracy
- β’ Develop better risk assessment tools
- β’ Research market-policy correlations
4. Information Sharing & Disclosure
π« We Do NOT Sell Your Data
We never sell, rent, or trade your personal information to third parties for marketing purposes.
We may share your information only in the following limited circumstances:
- Service Providers: Trusted third-party vendors who help us operate our platform
- Financial Data Partners: Authorized market data providers and financial institutions (with strict data processing agreements)
- Legal Requirements: When required by law, court order, or regulatory authorities
- Business Transfers: In connection with a merger, acquisition, or sale of assets (with 30-day prior notice)
- Security Incidents: With law enforcement or security professionals to investigate fraud or abuse
- With Your Consent: Any other sharing with your explicit permission
π€ Trusted Third-Party Integrations:
Financial Services:
- β’ Payment processors (Stripe, PayPal, Creem)
- β’ Market data providers (Truth Social, X)
- β’ Banking API partners
Infrastructure:
- β’ Cloud hosting (AWS, Supabase)
- β’ Analytics (Google Analytics, Mixpanel)
- β’ Communication (SendGrid, Twilio)
All third-party service providers are contractually bound to protect your information and use it only for the purposes we specify.
5. Data Security
We implement comprehensive security measures to protect your personal information:
π Technical Safeguards
- β’ SSL/TLS encryption for data transmission
- β’ AES-256 encryption for data at rest
- β’ Secure database architecture
- β’ Regular security audits and penetration testing
π‘οΈ Administrative Controls
- β’ Multi-factor authentication for staff
- β’ Role-based access controls
- β’ Employee training on data protection
- β’ Incident response procedures
β οΈ Important Security Notice
While we use industry-standard security measures, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security.
5.5. Regulatory Compliance
πͺπΊ GDPR Compliance
- β’ Lawful basis for processing
- β’ Data minimization principles
- β’ Right to be forgotten
- β’ Data portability rights
- β’ Privacy by design implementation
πΊπΈ CCPA Compliance
- β’ Right to know about data collection
- β’ Right to delete personal information
- β’ Right to opt-out of data sales
- β’ Non-discrimination protections
- β’ Transparent privacy disclosures
π¦ Financial Regulations
- β’ Securities data handling compliance
- β’ Anti-money laundering (AML) checks
- β’ Know Your Customer (KYC) procedures
- β’ Market abuse prevention measures
- β’ Financial promotion regulations
π Global Standards
- β’ ISO 27001 security management
- β’ SOC 2 Type II compliance
- β’ PCI DSS for payment data
- β’ Regional privacy law adherence
- β’ Cross-border data transfer safeguards
6. Cookies & Tracking Technologies
We use cookies and similar technologies to enhance your experience on our platform:
π§ Essential Cookies
Required for basic platform functionality, authentication, security, and compliance with financial regulations.
π Analytics Cookies
Help us understand platform usage to improve performance, user experience, and AI model accuracy.
βοΈ Preference Cookies
Remember your settings, watchlists, alert preferences, and personalized dashboard configurations.
π― Marketing Cookies (Optional)
Provide relevant content and measure campaign effectiveness. You can opt-out at any time.
πͺ Cookie Management
You can manage cookie preferences through your browser settings or our cookie consent banner. Note that disabling essential cookies may affect platform functionality and your ability to access certain features.
You can control cookie preferences through your browser settings, though some features may not function properly if you disable certain cookies.
7. Your Privacy Rights
Depending on your location, you may have the following rights regarding your personal information:
β Access & Portability
Request a copy of your personal data in a portable format.
βοΈ Correction
Update or correct inaccurate personal information.
ποΈ Deletion
Request deletion of your personal data (subject to legal obligations).
βΈοΈ Processing Restriction
Limit how we process your personal information.
To exercise these rights, please contact us at admin6@policyinsight.trade. We will respond to your request within 30 days.
7.5. Data Breach Response
In the unlikely event of a data breach affecting your personal information, we have comprehensive response procedures:
π¨ Immediate Response (0-24 hours)
- β’ Contain and assess the breach
- β’ Notify internal security team
- β’ Begin forensic investigation
- β’ Implement containment measures
π’ User Notification (24-72 hours)
- β’ Email notification to affected users
- β’ Platform-wide security announcement
- β’ Recommended protective actions
- β’ Regular status updates
π Regulatory Compliance
We will notify relevant authorities within 72 hours as required by GDPR, CCPA, and other applicable regulations. We maintain cyber insurance and work with leading security firms for incident response.
8. Data Retention
We retain your personal information only as long as necessary for the purposes outlined in this Privacy Policy:
π Data Retention Schedule
User Data:
- β’ Account Data: Active + 12 months after closure
- β’ Profile Information: Active + 6 months
- β’ Financial Preferences: Active + 2 years
- β’ Support Communications: 2 years
Operational Data:
- β’ Usage Analytics: 3 years (aggregated)
- β’ Financial Records: 7 years (compliance)
- β’ Security Logs: 1 year
- β’ AI Training Data: 5 years (anonymized)
β»οΈ Secure Data Disposal
When data reaches retention limits, we use secure deletion methods including cryptographic erasure, physical destruction of storage media, and verification of complete removal. All deletion activities are logged and audited.
When data is no longer needed, we securely delete or anonymize it according to industry best practices.
9. International Data Transfers
PolicyInsight operates globally, and your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place:
- Standard contractual clauses approved by relevant authorities
- Adequacy decisions for transfers to countries with equivalent protection
- Certification schemes and codes of conduct where applicable
10. Children's Privacy
PolicyInsight is not intended for children under 18 years of age. We do not knowingly collect personal information from children under 18.
If we become aware that we have collected personal information from a child under 18, we will take steps to delete such information promptly.
11. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. When we make changes, we will:
- Post the updated Privacy Policy on our website
- Update the "Last Updated" date at the top
- Notify you via email for material changes
- Provide prominent notice on our platform when appropriate
Your continued use of the Service after any changes constitutes acceptance of the updated Privacy Policy.
12. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
Privacy Inquiries:
Email: admin@policyinsight.trade
Subject: Privacy Policy Question
Data Protection Officer:
Email: admin@policyinsight.trade
Response Time: Within 30 days
This Privacy Policy is effective as of December 26, 2025
Your privacy is important to us, and we are committed to protecting your personal information.