Privacy Policy
Effective Date: April 14, 2026 | Last Updated: April 14, 2026
Infinite Advantage ("we," "our," or "us") operates the Infinite Advantage platform at infiniteadvantage.app (the "Service"). This Privacy Policy describes how we collect, use, store, and protect information when you use our Service.
1. Who This Policy Applies To
This policy applies to:
- Licensed agents ("Users") who create accounts to use our comparison and analysis tools
- Prospective users who submit account requests
- Clients of agents whose information is entered into the platform by their agent
Infinite Advantage is a business-to-business (B2B) platform designed for licensed insurance and financial professionals. It is not intended for direct consumer use.
2. Information We Collect
2.1 Agent Account Information
When you create an account or request access, we collect:
- Full name
- Email address
- Password (stored in encrypted/hashed form — we cannot read it)
- Firm or agency name (optional)
- Phone number (optional)
2.2 Client Information (Entered by Agents)
Agents may enter information about their clients to use our comparison tools. This may include:
- Client name
- Age, gender, and state of residence
- Health rating and smoker status
- Income tax bracket and tax rate
- Insurance policy details (carrier, premium amounts, face values, policy year, product type)
- Annuity contract details (carrier, rates, fees, surrender schedules)
- Financial goals and notes
2.3 Financial Comparison Data
When agents use our comparison tools, the following data is generated and may be saved:
- Comparison configurations (vehicle types, rates, loan parameters, tax assumptions)
- Calculation results and projections
- Saved workspace configurations (stored as JSON)
- Agent notes attached to comparisons
2.4 Uploaded Documents
Agents may upload PDF policy illustrations for automated parsing. These documents may contain:
- Policyholder names and personal details
- Policy numbers and financial projections
- Carrier-specific illustration data
2.5 Technical and Usage Data
We automatically collect:
- IP address and browser type
- Pages visited and features used
- Session duration
- Device and operating system information
3. How We Use Your Information
We use collected information solely to:
- Provide and operate the comparison and analysis tools
- Authenticate your account and maintain session security
- Save and restore your comparison workspaces
- Parse uploaded policy illustrations to extract relevant data
- Send account-related emails (welcome emails, password resets, account lock notifications)
- Notify administrators of new account requests
- Fetch current market rates for use in calculations
- Improve the Service's functionality and fix issues
We do NOT use your information to:
- Sell or rent data to third parties
- Target advertising to you or your clients
- Build profiles for marketing purposes
- Share data with insurance carriers or competitors
- Make any automated financial decisions
4. Third-Party Services
We use the following third-party services to operate the platform. Each receives only the minimum data necessary for its function:
4.1 Anthropic API (Claude)
Used to parse uploaded PDF policy illustrations and extract structured data. When you upload an illustration, the document content is sent to Anthropic's API for processing. Anthropic's data handling is governed by their privacy policy. We use the API in a configuration where uploaded data is not used to train AI models.
4.2 SendGrid (Twilio)
Used to deliver transactional emails (account creation, password resets, account request notifications). SendGrid receives recipient email addresses and email content. SendGrid's privacy policy is available at twilio.com/legal/privacy.
4.3 FRED API (Federal Reserve)
Used to fetch publicly available market interest rates. No personal or client data is sent to this service.
4.4 Render (Hosting)
Our application and database are hosted on Render's cloud infrastructure. All data stored in the platform resides on Render's servers. Render's privacy policy is available at render.com/privacy.
5. Data Storage and Security
5.1 Encryption
- All data transmitted between your browser and our servers is encrypted using TLS/SSL (HTTPS)
- Passwords are hashed using bcrypt and cannot be read by anyone, including our administrators
- Database connections use encrypted channels
5.2 Access Controls
- Agent accounts can only access their own clients, templates, and saved workspaces
- Administrator accounts have broader access for user management and support purposes
- Accounts are automatically locked after 10 failed login attempts
- Sessions expire after 30 minutes of inactivity
5.3 Infrastructure Security
- Application hosted on Render's SOC 2 compliant infrastructure
- Database backups are performed automatically
- Rate limiting protects against brute-force attacks
- Content Security Policy headers restrict script execution
6. Data Retention
- Active accounts: Data is retained for as long as your account is active
- Deleted accounts: When an administrator deletes a user account, all associated data (clients, policies, comparisons, templates) is permanently deleted
- Account requests: Declined or deleted account requests are permanently removed
- Uploaded PDFs: Stored as long as the associated policy record exists
- Market rates: Historical rate data is retained indefinitely as it is public information
7. Your Rights
You have the right to:
- Access your data: View all information stored in your account through the platform interface
- Correct your data: Edit your account information, client records, and templates at any time
- Delete your data: Request deletion of your account and all associated data by contacting us
- Export your data: Download your comparison configurations and client information
- Withdraw consent: Stop using the Service at any time
7.1 California Residents (CCPA)
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):
- Right to know what personal information we collect and how it is used
- Right to delete your personal information
- Right to opt-out of the sale of personal information (we do not sell personal information)
- Right to non-discrimination for exercising your privacy rights
7.2 Client Data Rights
If you are a client whose information has been entered by your agent, you may contact us or your agent to request access to, correction of, or deletion of your information.
8. Cookies and Local Storage
We use:
- Session cookies: Required for authentication and maintaining your login session. These are essential and cannot be disabled while using the Service.
- Local storage: Used to store your theme preference (light/dark mode). No personal data is stored in local storage.
We do not use tracking cookies, analytics cookies, or advertising cookies.
9. Children's Privacy
The Service is designed for licensed financial professionals and is not intended for use by individuals under the age of 18. We do not knowingly collect information from children.
10. Data Breach Notification
In the event of a data breach that compromises personal information, we will:
- Notify affected users by email within 72 hours of discovering the breach
- Describe the nature of the breach and the types of data involved
- Describe the measures taken to address the breach
- Provide recommendations for affected users to protect themselves
- Notify relevant authorities as required by applicable law
11. International Data
The Service is hosted in the United States. If you access the Service from outside the United States, your information will be transferred to and processed in the United States. By using the Service, you consent to this transfer.
12. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify users of material changes by email or by posting a prominent notice on the Service. Your continued use of the Service after changes are posted constitutes acceptance of the updated policy.
13. Contact Us
For privacy-related questions, data access requests, or concerns: