Privacy Policy

PolicyLens ("we", "our", "us") is an AI-powered insurance policy analysis platform operated from India. We help users understand their insurance policies in plain language. For any privacy-related questions, contact us at support@policylensai.com.

• Account information: Name, email address, and password when you sign up.
• Policy documents: PDF documents you upload for analysis. We process these to extract structured fields such as policy name, policy number, insured name, coverage, exclusions, deadlines, and claim steps.
• Usage data: Pages visited, features used, and actions taken — used to improve the product.
• Payment information: We do not store your card or UPI details. All payments are processed by a PCI-DSS-compliant payment gateway and governed by their privacy policy.
• Notification preferences: Whether you have opted into renewal email reminders. You can change this at any time from your settings.

• To provide the service: Analysing your policy documents, generating health scores, claim checklists, and coverage breakdowns.
• To send notifications: Renewal reminders and service-related messages — only if you opt in.
• To improve PolicyLens: Anonymised, aggregated usage data helps us fix bugs and build better features.
• To process payments: Subscription billing via our payment processor.
• With your consent: Before processing an uploaded document, we ask for explicit consent in the upload flow.

Your policy documents are handled with the highest care:

• Processing: Uploaded documents are processed by our AI engine to extract and analyse policy content. This processing is governed by enterprise-grade data processing agreements.
• Storage: Original uploaded PDFs are kept in temporary object storage with strict lifecycle deletion (configured for automatic cleanup within up to one hour) and are not used for any purpose beyond generating your analysis.
• What we retain: We retain only structured analysis data in our database, including key fields like policy name and policy number, along with coverage/exclusion insights. We do not permanently retain your original PDF for ongoing model training.
• Deletion: You can delete your account and associated data through support request. On account deletion, policy analysis data is permanently removed from our systems.

"We process your policy document to extract key information, then automatically delete the original PDF shortly after processing (within a limited temporary-retention window). We store only structured analysis data for your dashboard."

We do not sell your personal data. We share data only with:

• AI processing providers: Your policy text is sent to our AI processing partners solely to generate your report. These partners operate under strict data processing agreements and do not use your data for any other purpose.
• Payment processor: Payment details are handled by our PCI-DSS-certified payment partner. We never see or store your card or UPI details.
• Infrastructure providers: Encrypted document storage and authentication services are provided by enterprise-grade cloud infrastructure partners.
• Law enforcement: Only if legally required by a court order or government authority under Indian law.

We protect your data with:

• Strict account isolation — you can only access your own data
• Encrypted storage for all documents and personal data
• HTTPS / TLS encryption for all data in transit
• Industry-standard authentication with secure session management
• Working copies of document text are not shared outside our controlled infrastructure
• Regular security reviews and access controls

Under applicable Indian privacy laws, you have the right to:

• Access the personal data we hold about you
• Correct inaccurate data
• Delete your account and all associated data
• Opt-out of marketing or notification messages
• Request a copy of your data in a portable format

To exercise these rights, email support@policylensai.com. We will respond within 7 business days.

We use minimal cookies — only session cookies required for authentication and security. We do not use advertising, tracking, or third-party analytics cookies.

We retain your account data for as long as your account is active. Structured policy analysis records are retained to power your dashboard history until account deletion. Original uploaded PDFs are treated as temporary processing artifacts and removed by storage lifecycle controls. Upon account deletion, all your data is permanently removed within 30 days.

PolicyLens is not intended for users under 18 years of age. We do not knowingly collect data from minors. If you believe a minor has created an account, contact us at support@policylensai.com.

We may update this Privacy Policy periodically. Significant changes will be notified via email or in-app notification at least 7 days before they take effect. Continued use of PolicyLens after changes constitutes acceptance of the updated policy.

For any privacy-related concerns or data requests: