Privacy Policy

Last updated: 4 June 2026

1. Who We Are

PolicyDash is a policy management platform built for Indian insurance advisors. It helps you store, track, and manage your insurance policies digitally. PolicyDash is operated from Rohtak, Haryana, India.

2. What Data We Collect

Account Information: Your name, email address, phone number, and login credentials (including Google account details if you use Google Sign-In).
Policy Documents: Insurance policy PDFs that you upload. These are processed by AI to extract details like policy number, premium, expiry date, client name, vehicle registration, etc.
Client Information: Client names, mobile numbers, PAN numbers, chassis numbers, and other details extracted from policies or entered manually by you.
Identity Documents: Documents you choose to attach to policies — such as PAN card, Aadhaar card, RC Book, passport copies.
Payment & Commission Data: Payment status, pending amounts, recovery dates, commission rates, and payout details you enter.
Usage Data: Pages visited, features used, quiz responses, feedback submitted, and device information (browser type, screen size).
Cookies: We use essential cookies for login sessions and visitor tracking (for the free trial). We do not use advertising or third-party tracking cookies.

3. How We Use Your Data

To provide the PolicyDash service — storing policies, sending renewal reminders, tracking payments.
To extract policy details using AI (Anthropic Claude API). Your PDF content is sent to the AI for processing and is not stored by the AI provider.
To improve our product — understanding which features are used, identifying bugs, and planning new features.
To communicate with you — service updates, support responses, and important notices.
To prevent fraud and abuse — rate limiting, file validation, and security monitoring.

4. How We Store & Protect Your Data

All data is stored on Supabase servers with encryption at rest and in transit (SSL/TLS).
Policy PDFs are stored in a private storage bucket — only you can access your own files.
Row Level Security (RLS) is enabled on all database tables — each user can only see their own data.
We use secure authentication with session tokens, not passwords stored in plain text.
PINs for the Tasks feature are hashed using SHA-256 before storage.
Our website has Grade A security headers as verified by securityheaders.com.

5. Who Can See Your Data

You: Only you can see your own policies, clients, documents, and tasks.
AI Processing: When you upload a PDF, its content is sent to Anthropic's Claude API for extraction. Anthropic does not store your data after processing. See Anthropic's Privacy Policy.
PolicyDash Admin: The admin can see aggregated analytics (total users, upload counts, feature usage) for improving the product. The admin does not routinely access individual policy details.
No Third-Party Selling: We do not sell, rent, or share your personal data or policy information with any third party for marketing or advertising purposes. Ever.

6. Your Rights

As a PolicyDash user, you have the right to:
Access: View all data we hold about you — your policies, documents, and account information are always visible in your dashboard.
Export: Download your policy data as an Excel report from the Reports page.
Correction: Edit any extracted or manually entered information directly on the policy detail page.
Deletion: Request complete deletion of your account and all associated data by contacting us at contact@policydash.in.
Withdraw Consent: You can stop using PolicyDash at any time. Contact us to have your data deleted.

7. Data Retention

We keep your data for as long as your account is active. If you delete your account, all your data (policies, documents, client information, tasks) will be permanently deleted within 30 days. Aggregated, anonymized analytics data (not linked to you) may be retained.

8. Children's Privacy

PolicyDash is a business tool for insurance professionals. It is not intended for use by anyone under 18 years of age. We do not knowingly collect data from minors.

9. Changes to This Policy

We may update this privacy policy from time to time. If we make significant changes, we will notify you through the app or via email. The "Last updated" date at the top will always reflect the latest version.

10. Governing Law

This privacy policy is governed by the laws of India, including the Information Technology Act, 2000 and the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011. Any disputes shall be subject to the exclusive jurisdiction of the courts in Rohtak, Haryana.

11. Contact Us

If you have any questions about this privacy policy or your data, contact us at:

PolicyDash

Rohtak, Haryana, India

contact@policydash.in