← Back to home

Privacy Policy

Last updated: July 16, 2026

1. Introduction

InsureGuard is an automated auto-insurance verification platform operated by Amplify Marketing (“InsureGuard”, “we”, “us”, or “our”). This Privacy Policy explains how we collect, use, disclose, secure, and retain personal information when you use our websites, applications, and API (together, the “Service”), and describes the rights and choices available to you.

We take the protection of personal information seriously because the Service processes sensitive data — including dates of birth, driver’s license numbers, policy details, and recorded phone calls — on behalf of the rental agencies that use it.

2. Our role: controller and processor

For information about our own account holders (agency staff, administrators, and voice agents) and how we operate the Service, InsureGuard acts as a data controller.

For the personal information about insured individuals that an agency submits to obtain a verification (the “Verification Data”), the agency is the data controller and InsureGuard acts as a data processor, processing that information only on the agency’s documented instructions and to provide the Service. If you are an insured individual, please direct privacy requests to the agency that submitted your information; we will assist that agency in responding.

3. Information we collect

We collect the following categories of information:

  • Account & workspace data — names, business email addresses, company name, role, hashed passwords, invitation and authentication records, and billing contact details.
  • Verification Data (personal information of insured individuals)— first and last name, date of birth, driver’s license number, address, phone number, policy number, carrier, policy effective/expiration dates, and vehicle details, as submitted by an agency.
  • Call recordings & transcripts — audio recordings of verification calls placed to insurance carriers on a recorded line, and the text transcripts derived from them.
  • Payment data — subscription plan, status, and billing identifiers. Card/payment-instrument data is collected and processed directly by our payment processor (Stripe); we do not store full payment card numbers.
  • Usage, device & log data — IP address, timestamps, request metadata, audit logs of actions taken in the Service, and cookies or similar technologies used for authentication and security.

4. How we use information

We use personal information to:

  • perform the insurance verifications requested by agencies and deliver the results;
  • place, record, and transcribe verification calls with carriers;
  • send transactional communications by email (see “Email communications” below);
  • authenticate users, provision API keys, and secure the Service;
  • process billing, subscriptions, and metered usage;
  • provide support, investigate issues, and prevent fraud and abuse;
  • maintain audit trails and comply with legal obligations; and
  • operate, maintain, and improve the Service.

We do not sell personal information, and we do not use Verification Data for advertising or to train third-party artificial-intelligence models beyond what is necessary to produce your transcript and verification result.

5. Call recording and consent

Verification calls are placed on a recorded line and begin with a spoken notice that the call is being recorded. Recordings and transcripts are used for quality assurance, verification accuracy, dispute resolution, and audit purposes. Agencies are responsible for ensuring they have any consents required under applicable call-recording and wiretapping laws in the relevant jurisdictions before initiating a call.

6. Email communications

We send transactional and service-related emails that are necessary to operate the Service — for example, account invitations and password-setup links, API-key claim links, verification result notifications, and billing messages. These are not marketing emails and are required to use the Service. Verification result notifications are sent to the email address of the user who submitted the request. To ask a question about the emails you receive, contact us at the address below.

7. How we share information

We share personal information only as described here:

  • Service providers (subprocessors) — vendors that process data on our behalf under contract and confidentiality obligations, listed in Section 8.
  • Insurance carriers — during a verification call, our voice agent discloses the relevant policy and insured details to the carrier as necessary to verify coverage.
  • Legal and safety — where required by law, subpoena, or legal process, or to protect the rights, property, or safety of InsureGuard, our users, or others.
  • Business transfers — in connection with a merger, acquisition, financing, or sale of assets, subject to this Policy.

We do not sell or rent personal information, and we do not share it for cross-context behavioral advertising.

8. Subprocessors

We rely on the following subprocessors to deliver the Service:

  • Twilio — telephony, call placement, and call recording.
  • Deepgram — speech-to-text transcription of call recordings.
  • Stripe — payment processing and subscription billing.
  • Neon — managed PostgreSQL database hosting.
  • Vercel — application hosting and delivery.
  • Email delivery provider — sending transactional email.

We require our subprocessors to protect personal information and to process it only for the purposes of providing their services to us.

9. Data retention

We retain personal information for as long as needed to provide the Service and for legitimate business or legal purposes. In general, verification request records are retained for up to 24 months and call recordings and transcripts for up to 12 months, after which they are deleted or anonymized, unless a longer period is required by law or reasonably necessary to resolve disputes or enforce our agreements. Account data is retained for the life of the account and for any period required after closure.

10. Security

We use technical and organizational measures designed to protect personal information, including encryption in transit (TLS) and encryption at rest for sensitive fields (such as date of birth and driver’s license number) using AES-256-GCM, role- and agency-scoped access controls, least-privilege access, hashed credentials, and audit logging. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.

11. Your rights and choices

Depending on your location, you may have rights to access, correct, delete, restrict, or object to the processing of your personal information, to data portability, and to withdraw consent. Where applicable (for example, under the GDPR/UK GDPR and the California Consumer Privacy Act as amended), these rights include the right to know what we collect, the right to deletion and correction, and the right not to be discriminated against for exercising your rights. Because we do not sell or share personal information for cross-context behavioral advertising, no opt-out of “sale” is necessary.

To exercise your rights, contact us at the address below. If your information was submitted to us by an agency (as Verification Data), we will refer your request to that agency, which is the controller, and assist as its processor. We may need to verify your identity before acting on a request.

12. International data transfers

We are based in the United States and process information there. If you access the Service from outside the United States, you understand that your information may be transferred to, stored, and processed in the United States and other countries where we or our subprocessors operate, which may have different data-protection laws. Where required, we use appropriate safeguards for such transfers.

13. Children's privacy

The Service is intended for business use and is not directed to children. We do not knowingly collect personal information directly from children. If you believe a child has provided us personal information, contact us and we will take appropriate steps to delete it.

14. Changes to this policy

We may update this Privacy Policy from time to time. When we do, we will revise the “Last updated” date above and, where appropriate, provide additional notice. Continued use of the Service after an update constitutes acceptance of the revised Policy.

15. Contact us

For privacy questions or to exercise your rights, contact us at danilo@amplifymarketingfl.com.