Public policy

Privacy Policy

This policy explains how insia handles account details, insurance policy records, uploaded documents, renewal metadata, AI context, broker workflows, and support requests.

Last updated: 3 June 2026.

Who we are

insia is an Australian-first insurance policy organisation app and broker workflow platform. For privacy, support, security, and product questions, contact hello@insia.com.au.

• Privacy contact: hello@insia.com.au
• Support: hello@insia.com.au
• Primary launch market: Australia

What this policy covers

This policy covers the iOS app, web and broker portal, document upload and extraction features, responsible AI explanations, broker/client workflows, inbound policy email import, and support or privacy request channels.

Information we may collect

We may collect account and contact details, authentication metadata, policy records, uploaded policy documents, extracted text, claim notes, broker workflow activity, inbound email metadata and attachments, AI prompts/responses, device and operational logs, and support correspondence you provide or authorise.

Sensitive information

Insurance documents and claim records may contain sensitive personal information, including health, financial, identity, family, home, vehicle, or business details. Do not upload documents you are not authorised to provide.

How we use information

We use information to create and protect accounts, store and display policy records, process documents, generate optional general-information AI explanations, track renewal reminders, support broker workflows you authorise, process inbound policy emails, send service messages, provide support, monitor reliability and security, and comply with law.

We do not sell uploaded policy documents to data brokers or use uploaded policy documents for advertising.

AI processing

AI features are optional. When used, selected policy text, policy context, and your question may be sent to an AI provider to generate a response. AI responses are general information only, may be incomplete or wrong, and must be checked against original policy wording.

Uploaded policy documents are not used to train AI models. AI assistance is used to explain the information you provide for the requested insia feature.

Broker access

Broker access is consent-based and should be scoped to the policy records, documents, requests, notes, or action items you approve. Revocation does not necessarily delete information already lawfully received by a broker outside insia.

Security

insia is designed around authenticated access, row-level security, private storage paths, encrypted private document storage, signed/private document access, server-side provider calls, and server-side secrets. Production services that handle policy records and broker workflows use Australian-hosted AWS and Supabase infrastructure. No internet service is completely secure.

insia may use analytics and error-monitoring tools to understand reliability, performance, security and product usage. These tools should not be used to store uploaded policy document content.

Retention and deletion

Records are retained for as long as needed to provide the service, comply with law, resolve disputes, maintain security, and support operational needs. Deletion, backup retention, audit log retention, and broker access retention may vary where legal, security, dispute, or broker record-keeping obligations apply.

Your requests and complaints

You may request access, correction, export, or deletion by contacting hello@insia.com.au. We may need to verify your identity before acting on a request. Australian users may be able to complain to the Office of the Australian Information Commissioner if a privacy complaint is not resolved.

Changes

We may update this policy as the service changes. We will update the last-updated date and take reasonable steps to notify users where changes are material.