Privacy Policy
Your privacy matters to us. Learn how we collect, use, and protect your information.
Last Updated: November 3, 2025
Introduction
Welcome to Insight Agent. This Privacy Policy explains how Insight Agent INC ("we," "us," or "our") collects, uses, discloses, and protects your information when you use our website, services, and applications (collectively, the "Service"). By using our Service, you agree to the collection and use of information in accordance with this policy.
Business-to-Business Service
Insight Agent is a business-to-business (B2B) service designed exclusively for businesses and professional users operating e-commerce shops. Our Service is not intended for individual consumers and is therefore not subject to consumer protection laws applicable to business-to-consumer transactions. By using this Service, you represent and warrant that you are accessing and using the Service in a business capacity.
Information We Collect
Personal Information
When you create an account or use our Service, we may collect:
- Email address
- Username and password
- Etsy shop information (shop name, shop URL)
- Payment information (processed securely by third-party payment processors)
- Profile information you choose to provide
Usage Information
We automatically collect information about how you use our Service:
- Device information (IP address, browser type, operating system)
- Log data (access times, pages viewed, time spent on pages)
- Search queries and keywords you research
- Features and tools you use within our Service
- Performance metrics and error reports
Cookies and Tracking Technologies
We use cookies, web beacons, and similar tracking technologies to track activity on our Service and store certain information. For more details, please see our Cookie Policy.
How We Use Your Information
We may use the collected information for any lawful business purpose, including:
- To provide, maintain, improve, and modify our Service at our sole discretion
- To process your transactions and manage your subscription
- To authenticate users and prevent fraudulent activity
- To send you service updates, technical notices, and support messages
- To respond to your comments, questions, and customer service requests
- To analyze usage patterns and optimize user experience
- To develop new features, products, and services
- To send you marketing communications and promotional materials
- To conduct research, analytics, and business intelligence activities
- To comply with legal obligations and protect our rights and property
- For any other purpose disclosed to you at the time of data collection or with your consent
How We Share Your Information
We reserve the right to share your information as we deem necessary or appropriate, including in the following circumstances:
Service Providers
We may share your information with third-party service providers who perform services on our behalf, including:
- Payment processors (Stripe, PayPal)
- Cloud hosting providers (Supabase, DigitalOcean, AWS)
- Analytics providers (Google Analytics, Heap Analytics)
- Email service providers
- Customer support and chat tools (Crisp Chat)
- Marketing and communication platforms
Business Transfers
If we are involved in a merger, acquisition, financing, reorganization, bankruptcy, receivership, sale of assets, or transition of service to another provider, your information may be transferred as part of such transaction. You acknowledge and consent to such transfers and that the acquiring entity may continue to use your information as set forth in this policy.
Legal Requirements and Protection of Rights
We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., a court or government agency), or when we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a government request.
Business Partners and Affiliates
We may share your information with our business partners, affiliates, and subsidiaries for purposes consistent with this Privacy Policy.
Data Security
We implement commercially reasonable technical and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures may include:
- Encryption of data in transit using SSL/TLS protocols
- Encryption of sensitive data at rest
- Regular security audits and vulnerability assessments
- Access controls and authentication mechanisms
- Secure password hashing and storage
- Regular backup procedures
However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security and expressly disclaim any liability for unauthorized access to or use of your information. You acknowledge that you provide your information at your own risk.
Your Data Rights
You have certain rights regarding your personal information:
Access and Portability
You have the right to request a copy of your personal information in a structured, machine-readable format.
Correction
You can update or correct your personal information through your account settings or by contacting us.
Deletion
You can request deletion of your account and personal information. We reserve the right to retain information as required by law, for legitimate business purposes, for compliance and audit purposes, or as otherwise permitted under applicable law. Deletion requests may take up to 90 days to process.
Opt-Out
You can opt out of marketing communications at any time by clicking the unsubscribe link in our emails or adjusting your account settings.
Do Not Track
Your browser may offer you a "Do Not Track" option, which allows you to signal to operators of websites that you do not wish to be tracked. We honor Do Not Track signals.
GDPR Compliance (EU Business Users)
If you are a business entity operating in the European Economic Area (EEA), you may have rights under the General Data Protection Regulation (GDPR). Please note that as a B2B service provider, certain consumer-specific protections under GDPR may not apply. However, we respect the following data rights where applicable:
- Right to be informed about data collection and use
- Right to access your personal data
- Right to rectification of inaccurate data
- Right to erasure ("right to be forgotten"), subject to our data retention requirements
- Right to restrict processing, where applicable
- Right to data portability, in structured format where technically feasible
- Right to object to processing, subject to our legitimate business interests
- Rights related to automated decision-making and profiling
Our legal basis for processing your data includes: consent, contract performance, legal obligations, and legitimate business interests. You may withdraw consent at any time, subject to contractual obligations and our legitimate business needs. We reserve the right to continue processing data where we have a lawful basis to do so.
B2B Service Notice
As our Service is provided on a business-to-business basis, certain consumer protection provisions of GDPR and other data protection laws may not apply. Data processing agreements and specific terms are governed by our Terms of Service and any separate business agreements.
Children's Privacy
Our Service is not intended for children under 13 years of age (or under 16 in the EEA). We do not knowingly collect personal information from children. If you are a parent or guardian and believe your child has provided us with personal information, please contact us so we can delete it.
Data Retention
We retain your personal information for as long as we determine necessary to provide our Service, fulfill the purposes described in this Privacy Policy, and comply with our legal and business obligations. We reserve the right to retain and use your information to the extent necessary or appropriate to comply with legal obligations, resolve disputes, enforce our agreements, for audit purposes, and for any other legitimate business purpose. When you delete your account, we may delete or anonymize your personal information within 90 days, except where we are required or permitted to retain it by law or for legitimate business purposes. We may retain backup copies of data for disaster recovery purposes.
International Data Transfers
Your information may be transferred to and maintained on servers located outside of your state, province, country, or other governmental jurisdiction where data protection laws may differ. We take steps to ensure that your data is treated securely and in accordance with this Privacy Policy and applicable laws. For EEA users, we ensure adequate safeguards are in place for data transfers.
Third-Party Services and Links
Our Service may contain links to third-party websites or services (including Etsy) that are not operated by us. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies before providing any personal information.
We integrate with Etsy's API to provide our services. Your use of Etsy's services is governed by Etsy's Privacy Policy and Terms of Service.
Changes to This Privacy Policy
We reserve the right to modify this Privacy Policy at any time at our sole discretion. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. For material changes, we may provide additional notice such as email notification or prominent notice on our Service. Your continued use of the Service after any changes constitutes your acceptance of the new Privacy Policy. We encourage you to review this Privacy Policy periodically for any changes.
Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
Insight Agent INC
Email: privacy@insightagent.app
Website: https://insightagent.app