Legal
Privacy Policy
Effective date: July 2026 · Last updated: July 2026
1. Who We Are
Fennel Insure Inc., doing business as Fennel Insurance Services (“Fennel,” “we,” or “us”) operates fennel.insure. We are a licensed commercial insurance broker based in California. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform.
2. Information We Collect
Information you provide directly
- Account information: name, email address, phone number, business name, EIN
- Contract documents: PDFs and Word documents you upload for AI parsing
- Insurance application data: business address, financials, employee count, business start date
- Payment information: handled by Stripe — Fennel does not store raw card data
Information collected automatically
- Usage data: pages visited, features used, timestamps
- Device and browser data: IP address, browser type, operating system
- Authentication tokens: session cookies managed by Supabase Auth
- Analytics and attribution data: events and identifiers collected via our analytics and advertising partners (see Section 6), including how you arrived at the site
3. How We Use Your Information
We use your information to:
- Provide the brokerage service — parse contracts, generate quotes, bind policies, deliver COIs
- Communicate with you about your policies, renewals, and account
- Process subscription billing via Stripe
- Measure and improve the Service, including product analytics and marketing attribution
- Improve the AI contract parser using aggregate, anonymised patterns (never individual documents)
- Comply with legal and regulatory obligations as a licensed insurance broker
- Prevent fraud and enforce our Terms of Service
We do not sell your personal information for money. See Section 11 regarding “sharing” for advertising under California law.
4. How We Share Your Information
Insurance carriers
To bind a policy, we transmit your business information (name, address, financials, contact details, additional insured names) to the insurance carrier (currently Coterie Insurance). This is necessary to provide the Service.
AI processing
Uploaded contract documents are sent to Anthropic's Claude API for text extraction. Anthropic's data processing terms apply. We do not use your documents to train AI models. Documents are processed transiently and are not stored by Anthropic.
Service providers
We use the following sub-processors, each under a data processing agreement:
- Supabase — database, authentication, file storage (US region)
- Vercel — hosting and edge functions
- Stripe — subscription billing
- Resend — transactional email delivery
- Anthropic — AI contract parsing
Analytics and advertising partners
We share limited usage and device data with the analytics and advertising partners listed in Section 6 so we can understand how the Service is used and measure our marketing. Some of these disclosures may be considered “sharing” for cross-context behavioral advertising under California law (see Section 11).
Legal disclosure
We may disclose your information if required by law, court order, or to protect the rights and safety of Fennel, our users, or the public.
5. Contract Documents
Uploaded contracts are stored in Supabase Storage with row-level security — only you can access your own files. Documents are used solely to extract insurance requirements for your benefit. We do not share your contracts with third parties except as described in Section 4.
You may delete your uploaded contracts at any time from your account. Deletion removes the file from storage; AI parse results derived from the document may be retained for audit purposes.
6. Cookies and Tracking Technologies
We use cookies and similar technologies for two purposes: to keep the platform working, and to understand usage and measure marketing.
Strictly necessary
Session cookies managed by Supabase Auth keep you signed in. The platform will not function without these. We do not use them for advertising.
Analytics
We use Amplitude for product analytics (which features are used, and how) and SearchAtlas / OTTO for search-engine optimization. These set cookies or similar identifiers on our public pages.
Advertising and attribution
On our marketing pages we may load advertising and measurement pixels to understand which campaigns bring visitors to Fennel. When configured, these include Google Analytics / Google Ads, the Meta (Facebook) Pixel, the Reddit Pixel, and the LinkedIn Insight Tag. These partners may set their own cookies and receive your device and browsing data, which they may use in accordance with their own privacy policies. These tags are not loaded inside the authenticated dashboard.
You can control cookies through your browser settings and can opt out of many advertising cookies via the partners' own tools or industry opt-outs (e.g., the Digital Advertising Alliance). California residents may also opt out of “sharing” as described in Section 11.
7. Automated Decision-Making and AI
Fennel uses AI to read your contracts and suggest insurance requirements, and to help generate quotes. These outputs are recommendations that support—but do not replace—your decisions and human review. We do not use AI to make legally or similarly significant decisions about you without a person in the loop, and binding a policy always requires your explicit confirmation. You can contact us to ask about how a particular automated output was produced.
8. Marketing Communications
With your consent where required, we may send you product updates and marketing emails. You can unsubscribe at any time using the link in those emails or by contacting us; opting out of marketing does not stop transactional messages about your account, policies, or renewals. If you opt in to text messages, you can reply STOP to stop them (see the Terms of Service).
9. Data Retention
We retain your account information and policy records for as long as your account is active and for a reasonable period afterward as required by insurance regulations (typically 5 years for brokerage records under California law). You may request deletion of your account; we will comply except where retention is required by law.
10. Security
We use industry-standard security measures including TLS encryption in transit, encrypted storage at rest, and row-level security on all database tables. Access to production systems is restricted to authorised personnel. We are hosted on SOC 2-compliant infrastructure (Supabase, Vercel).
No system is completely secure. In the event of a data breach affecting your personal information, we will notify you as required by applicable law.
11. California Privacy Rights (CCPA / CPRA)
California residents have the right to know what personal information is collected, to access and delete it, to correct inaccurate information, and to opt out of the “sale” or “sharing” of personal information. Fennel does not sell your personal information for money. However, our use of advertising and analytics partners (Section 6) may constitute “sharing” for cross-context behavioral advertising under the CPRA.
Categories of personal information we collect
- Identifiers (name, email, phone, IP address)
- Commercial and business information (business name, EIN, financials, policies)
- Internet or network activity (usage, device, and analytics data)
- Contract documents you upload and the requirements extracted from them
How to opt out of sharing
You may opt out of “sharing” for advertising by emailing privacy@fennel.insure or by using browser privacy controls. We honor Global Privacy Control (GPC) signals sent by your browser as a valid opt-out of sharing on that browser and device. You may also authorize an agent to make a request on your behalf, and we will not discriminate against you for exercising any of these rights.
12. Your Rights
Depending on your jurisdiction, you may have the right to:
- Access the personal information we hold about you
- Correct inaccurate information
- Delete your account and associated data (subject to legal retention requirements)
- Export your data in a portable format
- Opt out of non-essential communications and advertising
To exercise these rights, email privacy@fennel.insure. We will verify your request and respond within the timeframe required by applicable law.
13. International Data Transfers
Fennel is operated from the United States and our infrastructure and sub-processors are primarily located in the U.S. If you access the Service from outside the United States, you understand that your information will be transferred to, stored, and processed in the U.S., where data-protection laws may differ from those in your country. Where required, we rely on appropriate safeguards for such transfers.
14. Children
The Service is not directed to children under 18. We do not knowingly collect personal information from minors. If you believe a minor has provided us information, contact us and we will delete it.
15. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you by email or platform notice before material changes take effect. Continued use of the Service after the effective date constitutes acceptance of the updated policy.
16. Contact
Privacy questions or requests: privacy@fennel.insure
Fennel Insure Inc. dba Fennel Insurance Services, San Francisco, CA