Privacy Policy

X100 Insurance Services, LLC ("X100", "we", "us") respects your privacy. This Privacy Policy describes how we collect, use, share, and protect personal information when you interact with our website, applications, and services (collectively, the "Services") and explains your rights under the California Consumer Privacy Act / California Privacy Rights Act ("CCPA/CPRA"), the Virginia Consumer Data Protection Act ("VCDPA"), the Colorado Privacy Act ("CPA"), the Gramm-Leach-Bliley Act ("GLBA"), and other applicable U.S. federal and state insurance privacy laws.

• Identifiers and contact data — name, business name, mailing address, email, phone.
• Underwriting information — industry, payroll, revenue, vehicle counts, employee counts, claims history, loss runs.
• Financial information — payment card data is processed by our PCI-DSS Level 1 payment provider; we never store full card numbers.
• Technical data — IP address, browser, device, pages viewed, and cookies for security and analytics.

We use personal information to: (a) provide quotes and bind policies; (b) communicate with you about your coverage; (c) underwrite and rate insurance products with appointed carriers; (d) detect and prevent fraud; (e) comply with state insurance regulations, anti-money-laundering rules, and lawful requests; and (f) improve our Services.

We share information only as needed to provide the Services: with appointed insurance carriers and reinsurers; with regulators and state insurance departments; with our service providers under written confidentiality agreements (e.g., payment processors, cloud hosting, fraud-detection); and as required by law. We do not sell personal information as defined by CCPA/CPRA.

Depending on your state of residence, you may have the right to (a) know what personal information we collect; (b) access or obtain a copy; (c) request deletion; (d) correct inaccurate information; (e) opt out of "targeted advertising" or "profiling"; and (f) appeal a denial of a privacy request. To exercise these rights, email privacy@x100insurance.com.

We use administrative, physical, and technical safeguards designed to protect personal information, including TLS encryption in transit, access controls, vendor due-diligence, and an information-security program aligned with the NAIC Insurance Data Security Model Law and applicable state cybersecurity regulations (e.g., NY DFS Part 500).

We retain underwriting and policy records for the period required by state insurance law (generally 5–10 years after policy termination) and longer where required by litigation hold or regulatory inquiry.

The Services are intended for businesses and individuals 18 years or older. We do not knowingly collect information from children under 13.

We may update this Privacy Policy from time to time. Material changes will be posted on this page with a new "Last updated" date.

Privacy Officer · X100 Insurance Services, LLC · 1100 Market Street, Suite 400, Wilmington, DE 19801 · privacy@x100insurance.com