Privacy Policy

The BrokerStack platform is operated by Eastlink LLC. References to “we”, “us”, or “our” in this policy refer to Eastlink LLC.

This policy describes how we collect, use, store, and protect information when brokers and their staff (“users”) use the BrokerStack platform to compare insurance quotes for their clients.

We collect and process the following categories of information:

• Account information: Name, email address, and role provided at registration.
• Client and insured data: Business names, contact details, Federal Employer Identification Numbers (FEINs), and other identifying information entered or uploaded by users on behalf of their clients.
• Quote documents: PDFs, carrier quotes, policies, endorsements, and other insurance documents uploaded by users for comparison.
• Extracted data: Structured data extracted from uploaded documents by AI systems, including coverage details, limits, deductibles, premiums, forms, and exclusions.
• Usage data: Actions taken within the platform (field edits, status changes, document approvals) logged for audit and operational purposes.

We use the information collected solely to:

• Provide the quote-comparison services you have engaged us for
• Extract and structure insurance data from uploaded documents
• Generate side-by-side comparisons and branded comparison PDFs
• Maintain audit trails and source provenance for E&O compliance
• Diagnose and resolve platform errors
• Improve platform accuracy and reliability

We do not sell, rent, or share your data or your clients' data with third parties for marketing, advertising, or any purpose unrelated to providing the platform.

Documents uploaded to the platform may be processed by configured third-party AI services, including Anthropic Claude, Google Gemini, and OpenAI models, for data extraction purposes.

Before any document text is transmitted to an AI provider, personally identifiable information is redacted at the application layer. Raw document files are not transmitted to AI providers by default; this must be explicitly enabled per installation.

We maintain data processing relationships with AI providers consistent with their enterprise API terms, and we do not use your documents or client data to train AI models. Users with specific requirements regarding AI training opt-outs should contact us to discuss available options.

All production data is stored on infrastructure located in the United States. Documents are stored on Amazon Web Services S3 with server-side encryption (AES-256) and private access controls. Sensitive identifiers (such as FEINs) are additionally encrypted at the application layer.

Access to data is restricted to authenticated users with appropriate role permissions. All data access and modification events are logged with user identity and timestamp. Sessions expire after 30 minutes of inactivity.

A full description of our technical security controls is available on our Security page.

We retain data in accordance with our Data Retention Policy. In summary:

• Client records and quote documents: relationship duration + 7 years
• Audit logs: 7 years
• User account data: account duration + 1 year post-closure

Brokers may request deletion of client data at any time. Hard deletion permanently removes data from all storage systems. Soft deletion removes data from user-facing views while preserving it for audit purposes.

Depending on applicable law, you or your clients may have rights including:

• The right to access data we hold about you
• The right to request correction of inaccurate data
• The right to request deletion of data
• The right to a copy of your data (data portability)

To exercise any of these rights, contact us using the details in Section 9. We will respond within 30 days. Self-serve data export is on our product roadmap and not yet available.

We use the following third-party sub-processors in the delivery of our services:

For privacy enquiries, data requests, or to exercise your rights under applicable law, contact us at:

Eastlink LLC
Email: privacy@brokerstack.net

We may update this policy from time to time. Material changes will be communicated to users via the platform or by email. Continued use of the platform after changes are posted constitutes acceptance of the updated policy.

Last updated: March 2026