Privacy Policy
This Privacy Policy explains what information Benehub collects, how we use it, and the choices you have regarding that information.
On this page
- 1. Scope
- 2. Information we collect
- 3. How we use information
- 4. How we share information
- 5. Sub-processors
- 6. Cookies & tracking
- 7. Data security
- 8. Data retention
- 9. Your rights
- 10. California residents
- 11. Children's privacy
- 12. International transfers
- 13. Third-party links
- 14. Changes to this policy
- 15. Contact
01Scope
This policy applies to information collected by Benehub ("we", "us", "our") when you visit benehub.com, sign up for the Benehub CRM platform, or otherwise interact with our services (collectively, the "Service").
It covers two categories of information: (a) information about you as a Benehub customer (the insurance agent or agency using our platform), and (b) information about your contacts (leads, prospects, and clients) that you input into the Service. Customers act as the data controller for their contacts; Benehub processes that contact data on the customer's behalf.
02Information we collect
Information you give us
- Account information — name, email, phone number, business name, mailing address, and password.
- Billing information — payment card details (processed and stored by Stripe; we do not store full card numbers ourselves), billing address, and tax identification where applicable.
- Profile and configuration — preferences, time zone, integrations you enable, and any content you submit through the Service.
- Customer Data — contacts, conversations, notes, calendars, and any other information you upload, create, or store inside the Service. You are responsible for ensuring you have the right to provide this information to Benehub.
- Communications with us — emails, support tickets, Zoom support sessions, and any other correspondence.
Information collected automatically
- Usage data — pages viewed, features used, click events, search queries, and time stamps.
- Device and technical data — IP address, browser type, operating system, device identifiers, and referring URLs.
- Communications metadata — when you send messages through the Service, we log metadata such as recipient, timestamp, delivery status, and channel (SMS, email, voice).
Information from third parties
- Payment processor — Stripe shares limited transaction information with us (success/failure, last four digits of card, expiration).
- Onboarding partners — when you complete 10DLC phone-number registration, the underlying carrier and registry may return your business verification status to us.
- Marketing analytics — basic aggregate data from advertising platforms (e.g., Facebook, Google) about how visitors arrive at our website.
03How we use information
We use the information described above to:
- Provide, maintain, and improve the Service.
- Authenticate users, secure accounts, and prevent fraud and abuse.
- Process payments and send billing notices, receipts, and renewal reminders.
- Provide customer support, including responding to tickets and conducting Zoom support sessions.
- Deliver onboarding training, product updates, and other transactional communications.
- Send marketing communications about Benehub products and services where you have opted in or where permitted by law. You can opt out at any time.
- Comply with our legal obligations, enforce our Terms, and protect the rights, property, and safety of Benehub, our customers, and others.
- Aggregate and anonymize data for analytics, benchmarking, and research; aggregated data does not identify you.
04How we share information
We do not sell personal information. We share information only in the following limited ways:
- Service providers and sub-processors who help us operate the Service (see Section 5). These parties are contractually limited to processing data only for the purposes we specify.
- Payment processors — Stripe processes payments and stores card information.
- Communication providers — Twilio (SMS and voice) and Mailgun (email) deliver messages you initiate through the Service.
- Legal compliance — when required by law, subpoena, court order, or to respond to legal process; or when we believe disclosure is necessary to protect rights, property, or safety.
- Business transfers — if Benehub is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any change in ownership.
- With your consent — for any other purpose disclosed at the time of collection or with your express permission.
05Sub-processors
The following sub-processors support the Service. This list may change as we add or replace providers; the current list is maintained on this page.
| Provider | Purpose | Region |
|---|---|---|
| GoHighLevel | Underlying CRM platform infrastructure | United States |
| Stripe | Payment processing | United States |
| Twilio | SMS and voice delivery | United States |
| Mailgun | Outbound email delivery | United States |
| Cloudflare | Website hosting, CDN, and DDoS protection | Global edge network |
06Cookies & tracking
We use cookies and similar technologies to keep you signed in, remember your preferences, measure how the Service is used, and support marketing efforts. Categories include:
- Strictly necessary — required for authentication and core functionality.
- Analytics — help us understand usage patterns and improve the Service.
- Marketing — used by us and our advertising partners to measure ad performance and show relevant ads on third-party sites.
You can control cookies through your browser settings. Disabling certain cookies may affect functionality. We honor "Do Not Track" requests where required by applicable law.
07Data security
We use commercially reasonable administrative, technical, and physical safeguards to protect personal information, including encryption in transit (TLS), encryption at rest where supported by our infrastructure providers, role-based access controls, and routine logging.
No method of transmission or storage is completely secure. We cannot guarantee absolute security, and you use the Service at your own risk.
08Data retention
We retain personal information for as long as your account is active and for a reasonable period afterward to comply with legal obligations, resolve disputes, and enforce our agreements.
Customer Data is retained until you delete it or until 30 days after your account is canceled, after which it may be deleted from active systems. Limited backup copies may persist for additional time as part of routine backup procedures.
You may request earlier deletion of your account information by emailing crmsupport@benehub.com.
09Your rights
Depending on your jurisdiction, you may have the right to:
- Access the personal information we hold about you.
- Correct inaccurate or incomplete information.
- Delete personal information, subject to legal exceptions.
- Restrict or object to certain processing.
- Port your information in a machine-readable format.
- Withdraw consent at any time where processing is based on consent.
To exercise these rights, email crmsupport@benehub.com from the address on your account. We will respond within the timeframe required by applicable law.
If your information was provided to us by a Benehub customer (for example, you are a contact in an agent's CRM), please direct your request to that customer. We will assist them in honoring your request as required by law.
10California residents
If you are a California resident, the California Consumer Privacy Act ("CCPA"), as amended by the California Privacy Rights Act ("CPRA"), gives you specific rights regarding your personal information.
You have the right to know what personal information we collect, to request deletion, to correct inaccurate information, to limit our use of sensitive personal information, and to opt out of any "sale" or "sharing" of personal information. We do not sell personal information, and we do not knowingly share personal information with third parties for cross-context behavioral advertising, except as described in our use of advertising cookies (see Section 6).
To exercise your CCPA/CPRA rights, email crmsupport@benehub.com. We will not discriminate against you for exercising any rights under California law.
11Children's privacy
The Service is not directed to individuals under the age of 18, and we do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us and we will delete it.
12International transfers
Benehub is based in the United States, and we and our sub-processors store and process personal information primarily in the United States. If you access the Service from outside the U.S., your information will be transferred to and processed in the United States, which may have data-protection laws different from your country of residence.
13Third-party links
The Service and our website may contain links to third-party websites or services that are not operated by Benehub. We are not responsible for the privacy practices of those third parties. We encourage you to review their privacy policies before sharing information.
14Changes to this policy
We may update this Privacy Policy from time to time. The "Last updated" date at the top reflects the most recent revision. Material changes will be communicated by email or through the Service prior to taking effect.
15Contact
Questions about this Privacy Policy, or requests to exercise your rights, can be sent to crmsupport@benehub.com.