Privacy Policy

1. Introduction Welcome to QuickInsight. This Privacy Policy explains how QuickInsight LLC, a Delaware limited liability company (“QuickInsight”, “we”, “us”, “our”), handles your personal information in a responsible, transparent way.

This Privacy Policy explains how we collect, use, store and share information about you when you:

- Visit our website (including quickinsight.co and any subpages). - Use our AI assistant. - Purchase, request or receive paid written products, including decision memos, lens memos or similar written deliverables. - Book or participate in human informational sessions. - Interact with us via forms, email, scheduling links, intake forms, payment links or other channels.

This Privacy Policy explains how we collect, use, store and share personal information in connection with our website and services.

2. Who we are QuickInsight LLC, a Delaware limited liability company, operates the QuickInsight website and services. For the purposes of data protection laws, QuickInsight LLC is the controller of your personal data, meaning we decide why and how it is processed.

3. Information we collect

We collect three main categories of information:

3.1 Information you provide directly

- **Contact details**: such as your name and email address when you contact us, request a session, subscribe to updates or ask to receive your action plan by email. - **Account details (if enabled)**: if we enable sign-in (for example, Google sign-in), we may process your account identifier, email address and basic profile information provided by the sign-in provider. - **Booking and order details**: information you provide when booking a human informational session, purchasing a written product, or requesting a paid deliverable, such as preferred time, time zone, product selected, delivery email, and a short description of your situation. - **Case content**: the text you enter into the AI assistant, intake forms, written-product request forms, email, or human sessions, which may include context about your work, business, finances, relationships, workplace conflict, career decisions or other sensitive professional situations. - **Feedback**: any feedback, testimonials or support requests you send to us.

We ask you **not** to share more personally identifiable information (PII) than is necessary for the purpose at hand (for example, avoid full legal names of third parties, detailed financial account numbers or sensitive health data).

For most QuickInsight products, we ask only for the information we need to deliver the service, typically a delivery email and the context of your situation. Payment providers will require additional details such as your name and billing email to process payments. You can describe people, employers, and third parties in your case using non-identifying language where possible.

3.2 Payment information

We use Stripe to process payments. We may also use other payment processors, such as PayPal, as fallback or optional processors. They act as our payment processor and handle payment collection on our behalf. We do **not** collect or store your full payment card details.

- We may receive limited information from the payment provider, such as your email address, transaction ID, amount paid, currency, payment status, refund status, and chargeback/dispute metadata. - The processing of your payment information is governed by the payment processor’s own privacy policy.

Payment providers may show us the name, email address, billing details or other account information associated with your payment account. We use that information only to confirm, deliver, refund, support, account for or resolve issues related to the transaction. We do not require you to provide additional identifying information to QuickInsight unless it is necessary for the specific service or legally required.

3.3 Information collected automatically

When you visit our website, we may automatically collect certain information, for example:

- IP address, device identifiers (where available), browser type, operating system, and approximate location (derived from IP). - The pages you visit and the time spent on them. - Referring URLs and other usage statistics.

This data may be collected using cookies or similar technologies (or via cookie-less analytics) and is generally used in aggregated form for analytics and security purposes. Where possible, we prefer to use privacy-friendly, cookie-less analytics solutions that do not rely on invasive tracking.

4. How we use your information

We use the information we collect for the following purposes:

- **To provide and operate our services**: - Delivering the AI assistant experience. - Preparing and delivering paid written products, decision memos, lens memos or similar written deliverables. - Enabling you to book and attend human informational sessions. - Recording acceptance of our Terms and key disclosures (for example, the version accepted, timestamp, and technical identifiers such as IP address and user agent) to help administer the service and reduce fraud/chargebacks. - Sending you your action plan or related follow‑up where requested (for example, via an “Email my plan” feature). Where we use automation tools (such as Make or Zapier) for this purpose, we configure them to process and deliver the email without keeping long‑lived logs of the email content beyond what is operationally or legally necessary. - Limiting the use of identifying details to what is needed to understand your case, deliver the requested product or session, provide support, prevent abuse, handle payment issues, and comply with legal obligations.

- **To communicate with you**: - Responding to inquiries or support requests. - Sending confirmations, reminders, or relevant information about booked sessions.

- **To process payments**: - Facilitating payments through third‑party payment providers. - Recording transactions for internal accounting.

- **To improve and protect our services**: - Analysing how visitors use the site and the AI assistant to improve the experience. - Reviewing internal session logs (for example, in Google Sheets during the MVP stage) to identify recurring decision types, improve prompts, and prepare manual human-session handoffs. - Monitoring for abuse, misuse, security incidents or rate‑limit violations. - Enforcing our policies (for example, restricting or redirecting requests that appear to seek regulated professional advice).

- **To comply with legal obligations**: - Keeping certain records for tax, accounting or regulatory purposes. - Responding to lawful requests from authorities where required.

We do not sell your personal data to third parties.

We do not share your case content, intake details, chat content or written-product requests with your employer, colleagues, counterparties, family members, or other people involved in your situation unless you explicitly ask us to do so or we are legally required to disclose the information. We do not use payment-account names or other identifiers to contact third parties or verify your story with them.

We maintain separation between the content of your decision context (case content, AI chat, intake forms) and your payment information. Payment providers see what you bought and your billing details, but do not receive your case content. Our case-content systems do not require or store your full payment details.

5. Legal basis for processing (where applicable)

Where data protection laws require a legal basis (for example, in the EU/EEA or UK), our legal basis depends on the context and may include:

- **Performance of a contract**: when we provide the AI assistant or a booked human informational session that you requested. - **Legitimate interests**: for improving our services, preventing abuse, and maintaining security, provided these interests are not overridden by your rights and interests. - **Consent**: for certain optional uses, such as sending you your plan via email or any future newsletter you choose to subscribe to. - **Legal obligations**: for keeping certain records required by law.

6. How we share your information

We may share limited information with third‑party service providers (“processors”) that help us deliver, secure and operate the services. We aim to share only what is reasonably necessary for the specific function. These providers include:

6.1 AI providers

- Large Language Model (LLM) providers such as **OpenAI**, **Anthropic**, or **Google (Gemini)**, which process the text you submit to the AI assistant in order to generate responses. - Where possible and supported by the provider, we use privacy‑protective settings (for example, limiting use of submitted content for model training), subject to the options they make available and the specific product plan we use.

6.2 Payment processors

- **Stripe** and other third‑party payment providers, which handle payment collection and related communications. Stripe is our primary payment processor for U.S. checkout. PayPal or similar services may be used as a fallback where available. - They receive the information necessary to process your payment, prevent fraud, handle refunds or disputes, and comply with their own legal obligations. They may also provide us with payment-account information such as name, email address, transaction ID, amount, status, and billing details.

6.3 Scheduling and calendar tools

- **Cal.com** or similar platforms, which handle slot selection, booking confirmations and calendar invitations. - They may receive your name, email and any short description you provide when scheduling.

6.4 Automation and integrations

- Tools such as **Make** or **Zapier**, which we may use to connect services (for example, to log AI session metadata/content, payments and bookings into Google Sheets, or to send a summary email). Where these tools are used to send you a copy of your plan or similar emails, we aim to configure them so that they process the message and do not retain detailed logs of the email content longer than needed.

6.5 Google and analytics

- **Google Workspace** tools (such as Google Sheets or Google Calendar) for internal operations and simple logging (e.g. AI session logs, payment records and bookings). - Analytics tools (preferably privacy‑friendly, cookie-less solutions such as Cloudflare Web Analytics or Vercel Analytics) to understand aggregate usage of the site. If we ever use cookie-based analytics tools such as Google Analytics, we will implement any legally required consent mechanisms, especially for users in regions like the EU/EEA.

6.6 Hosting and infrastructure We use hosting and infrastructure providers (for example, Vercel, Cloudflare, Supabase or similar services) to run and secure the website and application. These providers may process technical logs and limited personal data as needed to deliver the infrastructure.

6.7 Legal and safety

We may disclose information where we believe it is reasonably necessary to:

- Comply with applicable law, regulation or legal process. - Protect the rights, property or safety of QuickInsight, our users or the public. - Detect, prevent or address fraud, security or technical issues.

Except for the situations described in this Privacy Policy, we do not intentionally disclose your personal decision context, workplace situation, written-product intake, AI chat content, or human-session details to third parties in a way that identifies you or the people involved.

We do not authorise third‑party processors to use your personal data for their own marketing purposes.

We do not sell your personal information to third parties, nor do we share your personal information with third parties for their own advertising or marketing purposes. We do not engage in cross-context behavioral advertising as defined under California or other US state privacy laws.

7. Data retention We retain personal information only for as long as reasonably necessary for the purposes described in this Privacy Policy (including legal, accounting, security and dispute-resolution needs).

Our current retention approach for the MVP is:

- **Checkout/consent records (Terms acceptance, key disclosures)**: up to 6 years (to help address chargebacks, fraud and legal claims). Checkout/consent records typically include: timestamp of acceptance, version of Terms accepted, transaction ID, and payment status. Where possible, we minimize identifying details retained beyond what is needed for fraud, chargeback, and tax defense purposes. - **Booking and order metadata (name or payment-account name where provided by the payment processor, email, scheduling details, product selected, delivery status)**: up to 24 months after the session or delivery (for support, service quality and dispute resolution), unless a longer period is required by law. - **Payment metadata (transaction IDs, amounts, currency, status, refunds/chargebacks)**: typically 6–10 years (tax/accounting and audit requirements may vary by jurisdiction and provider). - **AI chat content and session text**: typically up to 90 days for service operation, debugging, abuse prevention and quality improvement, after which we delete or de-identify it where reasonably possible. - **Written-product intake content and case descriptions**: typically up to 90 days for service delivery, support, dispute resolution, debugging and quality improvement, after which we delete or de-identify it where reasonably possible, unless a longer period is reasonably necessary for legal, accounting, fraud-prevention or dispute-resolution purposes. - **De-identified patterns / internal case library**: we may retain de-identified, non-attributable patterns and aggregated statistics longer-term to improve the product.

If you request deletion of your personal data (where applicable), we will make reasonable efforts to honour your request, subject to legal retention requirements and legitimate needs such as security and dispute resolution.

8. International data transfers

QuickInsight LLC is organized in Delaware, United States. We and our third‑party processors (for example, OpenAI, Google, Stripe, payment providers, and Cal.com) may process data in the United States and other countries.

By using our services, you acknowledge that your information may be transferred to and processed in countries outside your country of residence, including places that may have different data protection rules. We take reasonable steps to work with reputable providers and, where applicable and available, to rely on appropriate safeguards (for example, contractual protections) for international transfers.

9. Security

We use reasonable technical and organisational measures to protect your personal information against loss, misuse and unauthorised access, disclosure, alteration or destruction.

As part of our MVP architecture, some internal operational logs may be stored in tools such as Google Sheets. We aim to limit access to those logs, avoid unnecessary personal identifiers, and migrate to a more structured system as the product matures.

Because users may describe sensitive professional, workplace or business situations, we try to minimize unnecessary identifiers, limit internal access, and avoid storing more personal detail than we need to provide the service. You should still avoid sharing unnecessary names, account numbers, confidential third-party information or details that would create risk if disclosed.

However, no method of transmission over the internet or electronic storage is completely secure. We cannot guarantee absolute security, and you use the services at your own risk.

10. Children QuickInsight is not intended for children. If you are under 18, you may not use the Services. If we learn that we have collected personal information from a child, we will take reasonable steps to delete it.

11. Your rights and choices

Depending on your location and applicable law, you may have certain rights regarding your personal information, including:

- **Access**: to request a copy of the personal data we hold about you. - **Rectification**: to request correction of inaccurate or incomplete data. - **Deletion**: to request deletion of your personal data, subject to legal retention requirements. - **Restriction**: to request restriction of processing in certain circumstances. - **Objection**: to object to certain types of processing based on legitimate interests. - **Portability**: to request a machine‑readable copy of data you have provided to us, where technically feasible.

To exercise any of these rights, you can contact us using the details in section 12. We may need to verify your identity before responding to your request. We aim to respond within 30 days where required by law, and sooner where reasonably possible.

If you are located in the EU/EEA or another jurisdiction with comprehensive data protection laws, you may also have the right to lodge a complaint with your local data protection authority.

11.1 California Residents If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA), including:

- The right to know what personal information we collect, use, disclose, and sell; - The right to delete personal information we have collected; - The right to opt out of the sale or sharing of personal information (we do not sell or share personal information for cross-context behavioral advertising); - The right to non-discrimination for exercising these rights; - The right to limit the use and disclosure of sensitive personal information.

To exercise these rights, contact us at privacy@quickinsight.co. We will respond within 45 days as required by California law.

12. Contact us If you have any questions, concerns or requests regarding this Privacy Policy or our handling of your personal data, you can contact us at:

QuickInsight LLC Email: privacy@quickinsight.co General inquiries: hello@quickinsight.co

We may update these contact details from time to time on our website.

13. Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our services, legal obligations or practices.

When we do so, we will update the “Last updated” date at the top of this page and, where appropriate, provide additional notice (for example, via the website). Your continued use of the services after any change constitutes your acceptance of the updated Privacy Policy.

← Back to home