Privacy Policy
Effective date: 12 July 2026 · Last updated: 12 July 2026
PolicyJaano ("we," "us," "our") helps you understand your insurance policy documents using AI. This page explains what personal data we collect, why, and what control you have over it — in plain language, not legal jargon. If anything here is unclear, email us at support@policyjaano.com and we'll explain further.
The short version
- We only use your uploaded policy documents to analyze them for you — never to sell you anything without telling you, and never shared with insurers for marketing purposes.
- We don't send your name, email, or phone number to the AI systems that read your policy — only the policy text itself.
- You can download a copy of everything we have on you, or delete your account entirely, any time from your account settings.
- We never display "we earn a commission" language because when we do work with insurers in the future, that relationship won't change what we tell you about your own policy's risks.
What we collect
When you sign up: your email address, full name, and (optionally) phone number. Your password is never stored in readable form — we store a one-way cryptographic hash of it, which means even we can't see your actual password.
When you upload a policy document: the file itself (stored privately — never publicly accessible), and everything our AI extracts from it: clauses, exclusions, waiting periods, sub-limits, and so on. We also record a fingerprint (hash) of the file so we can recognize if you upload the same document twice.
When you chat with BHAI: your questions and BHAI's answers, so you can scroll back through a conversation and so we can improve the assistant over time.
Automatically: basic technical information like your IP address and browser type, mainly for security and to keep the service running reliably.
What we don't collect
We don't ask for or store your insurance policy number's linkage to any government ID, your bank account details, or payment information (the service is free during this launch phase — see our Pricing page).
How we use it
- To analyze your policy: extracting the text of your uploaded document and sending it to an AI system to identify clauses, risks, and generate your risk score and summary.
- To power BHAI: answering your questions about your specific uploaded policy, using only that policy's content as context.
- To keep your account secure: sending you an email if we notice a sign-in from a new device, and letting you log out of all your sessions at once.
- To notify you: telling you when your policy analysis is ready, or if your password was reset.
- To improve the product: understanding, in aggregate and anonymously, which insurers and policy types are uploaded most.
What we never do
- We never send your name, email, or phone number to the AI systems (Gemini, OpenAI, Claude) that analyze your policy or power BHAI — only extracted policy text and your chat questions.
- We never sell your personal data to anyone.
- We never display "we earn money from this" language to hide how the product works.
- We never make claim decisions or guarantee any insurance outcome.
Who we share data with
AI providers (Google Gemini, OpenAI, Anthropic Claude) — extracted policy text and chat questions only, never your name/email/phone.
Email provider (Resend) — your email address, to send account-related emails.
Cloud storage provider — stores your uploaded policy PDF privately, accessible only via time-limited secure links.
We do not share your data with insurers for marketing purposes, and we do not sell data to advertisers.
How long we keep your data
We keep your account and uploaded policies for as long as your account is active. If you delete your account, we immediately remove your name, email, and phone number and disable the account, then permanently delete everything else after a 30-day window — this short delay exists so an accidental deletion request can still be reversed if you contact support in time.
Your rights
You can, at any time, from your account settings (or by emailing us):
- See and download a copy of your data.
- Correct your profile information.
- Delete your account, anonymized immediately, fully deleted after a 30-day grace period.
- Withdraw consent for AI-powered analysis or marketing emails at any time.
Security
Encrypted connections (HTTPS) everywhere, passwords hashed (never stored in plain text), private storage with short-lived access links, and role-based access controls. No system is perfectly secure — please use a strong, unique password.
Children's privacy
PolicyJaano is intended for adults making their own insurance decisions and is not directed at children. We do not knowingly collect data from anyone under 18.
Changes to this policy
If we make material changes to this policy, we'll notify you by email and/or a notice on the site before the changes take effect.
Contact us
Questions about this policy or your data: support@policyjaano.com
This is a plain-language summary, not a substitute for our full Terms of Service. See docs/DPDP_COMPLIANCE.md in the project repository for the underlying technical compliance mapping.