Privacy Policy

01Definitions

This Data Processing Agreement ("DPA") is entered into by and between the client identified in the applicable service agreement ("Controller" or "Client") and Aiden Risk Inc., a Delaware corporation ("Processor" or "Aiden"). This DPA supplements and forms part of the Master Service Agreement or Terms of Service (the "Agreement") between the parties.

• "Personal Data" means any information relating to an identified or identifiable natural person.
• "Processing" means any operation performed on Personal Data, including collection, storage, use, disclosure, or destruction.
• "Sub-Processor" means any third party engaged by Processor to process Personal Data on behalf of Controller.
• "Data Breach" means any unauthorized access, acquisition, use, or disclosure of Personal Data.
• "Applicable Data Protection Law" means all applicable laws relating to data protection and privacy, including the CCPA/CPRA, state insurance data security laws, and the GLBA.

02Scope & Purpose of Processing

Processor shall process Personal Data only to the extent necessary to provide insurance brokerage, risk analysis, and related services.

03Obligations of the Processor

Processor shall:

1. Process Personal Data only on documented instructions from the Controller.
2. Ensure all personnel are bound by appropriate confidentiality obligations.
3. Implement and maintain the security measures described in Section 04.
4. Assist Controller in responding to data subject requests.
5. Assist Controller in compliance with security, breach notification, and impact assessment obligations.
6. Make available all information necessary to demonstrate compliance.
7. Not process Personal Data for any purpose other than providing the Services.

04Data Security

Processor shall implement appropriate measures including:

• Encryption at rest (AES-256) and in transit (TLS 1.3)
• SOC 2 Type II certified infrastructure
• Multi-factor authentication and role-based access controls
• Regular vulnerability scanning and annual penetration testing
• Intrusion detection and prevention systems
• Centralized, immutable audit logging (12-month minimum)
• Quarterly employee security awareness training
• Documented incident response procedures tested annually
• Business continuity and disaster recovery plans

05Sub-Processors

Controller provides general written authorization for Processor to engage Sub-Processors with 30 days advance notice for additions or replacements.

Current Sub-Processors

06Data Subject Rights

Processor shall assist Controller in fulfilling obligations to respond to data subject requests. When Processor receives a request directly, it shall promptly redirect the individual to Controller.

07Data Breach Notification

In the event of a Data Breach, Processor shall:

1. Notify Controller within 48 hours of becoming aware of the breach.
2. Provide information on the nature, consequences, and measures taken.
3. Cooperate in investigation, remediation, and mitigation.
4. Not notify third parties without Controller's prior written consent (unless required by law).

08Data Transfers

Personal Data is stored and processed within the United States. Processor shall not transfer Personal Data outside the US without Controller's prior written consent.

09Audit Rights

Controller may verify compliance through SOC 2 reports, on-site audits (once per year, 30 days notice), and security questionnaires (15-day response).

10Term, Termination & Data Return

Upon termination, Processor shall return or delete all Personal Data within 90 days, except where regulatory retention requirements apply.

For questions about this DPA, contact us at legal@aidenrisk.com.

01Acceptance of Terms

These Terms of Service ("Terms") constitute a legally binding agreement between you and Aiden Risk Inc., a Delaware corporation ("Aiden"). By accessing or using our website, platform, or services (the "Services"), you agree to be bound by these Terms.

If you are entering into these Terms on behalf of a business, you represent that you have authority to bind that entity. You must be at least 18 years of age to use the Services.

02Description of Services

Aiden provides an AI-powered commercial insurance brokerage platform enabling businesses to obtain quotes, receive AI risk analysis, bind and manage policies, access certificates, and receive advisory services. Aiden acts as a licensed insurance broker — we do not underwrite or issue policies.

03User Accounts

When registering, you agree to provide accurate information, maintain confidentiality of credentials, notify us of unauthorized access, and accept responsibility for all account activity.

04Permitted Use & Restrictions

You agree not to: use the Services unlawfully; reverse engineer any part; copy or distribute content; use bots or scraping tools; interfere with system integrity; provide fraudulent information; resell access; or circumvent security measures.

05Insurance Brokerage Relationship

• Broker Role — Aiden acts as your broker, not as a carrier or underwriter.
• No Guarantee — We do not guarantee coverage acceptance or claims payment.
• Accuracy — You are responsible for providing accurate application information.
• Duty to Review — You must review all policy documents for accuracy.
• AI Recommendations — Our AI recommendations are informational tools, not insurance or legal advice.

06Intellectual Property

The Services and all Aiden IP are our exclusive property. You retain ownership of your Client Data and grant us a limited license to use it for providing the Services.

07Fees & Payment

See our Compensation Disclosure for details. Direct fees will be disclosed in advance. Late payments may incur 1.5% monthly interest.

08Disclaimers

THE SERVICES ARE PROVIDED "AS IS" WITHOUT WARRANTIES OF ANY KIND. AIDEN DOES NOT PROVIDE LEGAL, TAX, OR FINANCIAL ADVICE.

09Limitation of Liability

AIDEN'S TOTAL LIABILITY SHALL NOT EXCEED THE GREATER OF FEES PAID IN THE PRIOR 12 MONTHS OR $1,000. AIDEN IS NOT LIABLE FOR CARRIER ACTS OR OMISSIONS.

10Indemnification

You agree to indemnify Aiden from claims arising from your misuse, misrepresentation, or violation of these Terms or applicable law.

11Dispute Resolution

Mandatory Arbitration: Disputes shall be resolved by binding arbitration administered by the AAA in San Francisco, California. Class Action Waiver: All claims shall be resolved individually, not on a class basis.

12Termination

You may close your account by contacting legal@aidenrisk.com. We may suspend or terminate access for breach with immediate notice, or for any reason with 30 days notice.

13General Provisions

Governed by California law. These Terms plus our Privacy Policy and DPA constitute the entire agreement. Severability, no-waiver, assignment restrictions, force majeure, and written notice provisions apply. Notices to legal@aidenrisk.com.

14Contact

Aiden Risk Inc.
Attn: Legal Department
535 Mission St, 14th Floor
San Francisco, CA 94105
Email: legal@aidenrisk.com

01Consent to Use Electronic Signatures

By clicking "I Agree," "Accept," "Sign," or similar action on our platform, you consent to the use of electronic signatures and electronic records in connection with your insurance brokerage relationship with Aiden Risk Inc. This consent applies to all transactions conducted through our platform.

02Scope of Electronic Records

Documents that may be provided, executed, and retained electronically include: insurance documents (applications, quotes, binders, policies, certificates), brokerage agreements, compliance documents, claims documents, account management records, and communications.

03Hardware & Software Requirements

04How to Sign Electronically

You may sign by clicking a button, drawing your signature, typing your name, or applying a saved signature. Each signature is associated with a timestamp, IP address, and account identity.

05Withdrawing Consent

You may withdraw consent at any time by contacting legal@aidenrisk.com. Withdrawal does not affect prior signatures and may result in paper-based processing delays.

06Requesting Paper Copies

Contact legal@aidenrisk.com to request paper copies. Insurance documents are free; administrative documents may incur a reasonable fee.

07Updating Contact Information

Keep your email and contact information current via your account profile or by contacting legal@aidenrisk.com.

08Legal Effect & Enforceability

Under the ESIGN Act and state UETA laws, electronic signatures carry the same legal weight as handwritten signatures. Certain documents (wills, UCC documents, court orders) may be excluded.

09Record Retention

We recommend downloading copies of signed documents. Electronic copies remain in your account for the duration of your relationship and at least seven (7) years per regulatory requirements.

10Contact Us

Aiden Risk Inc.
535 Mission St, 14th Floor
San Francisco, CA 94105
Email: legal@aidenrisk.com

01What Are Cookies

Cookies are small text files stored on your device when you visit a website. We also use similar technologies such as pixel tags, local storage, and device fingerprinting (collectively "Cookies").

Cookies can be first-party (set by us) or third-party (set by partners). They can be session cookies (deleted when you close your browser) or persistent cookies (remaining until expiry or deletion).

02How We Use Cookies

• Essential Operations — Authentication, session management, security, load balancing.
• Preferences — Settings, language, display customizations.
• Analytics and Performance — Understanding visitor behavior and measuring effectiveness.
• Marketing — Delivering relevant content and measuring campaign effectiveness.

03Types of Cookies We Use

04Third-Party Cookies

05Managing Your Cookie Preferences

• Cookie consent banner — Choose which optional cookies to accept when you first visit.
• Browser settings — Block or delete cookies through your browser. May impair functionality.
• Opt-out links — Install the Google Analytics Opt-Out Add-on.

06Do Not Track Signals

We do not currently respond to DNT signals but limit tracking to the purposes described in this policy.

07Changes to This Policy

We may update this Cookie Policy from time to time. Material changes will reset your cookie preferences.

08Contact Us

Aiden Risk Inc.
535 Mission St, 14th Floor
San Francisco, CA 94105
Email: privacy@aidenrisk.com

01Our Role as Your Broker

Aiden Risk Inc. is a licensed insurance broker operating across all 50 states and the District of Columbia. We act on your behalf to identify, recommend, and place commercial insurance coverage. We are not an insurance carrier or underwriter.

02Overview of Compensation

1. Commissions — Paid by insurance carriers when we place or renew a policy
2. Direct Brokerage Fees — Fees for specific services, disclosed in advance
3. Platform & Technology Fees — Subscription or access fees for our AI-powered platform
4. Contingent Compensation — Performance-based compensation from carriers

03Commissions from Insurance Carriers

Commissions are typically 5–20% of the policy premium, built into the premium you pay. Rates vary by carrier and line of business. Our recommendations are based on coverage quality, not commission rates.

04Direct Brokerage Fees

May include brokerage service fees, policy service fees, and consulting fees. All disclosed in writing before incurred.

05Platform & Technology Fees

May be structured as monthly/annual subscriptions, per-transaction fees, or tiered pricing. Independent of premiums and commissions.

06Contingent Compensation & Volume Bonuses

Based on volume, profitability, or growth metrics. Paid by carriers, not by you.

Our fiduciary duty is to you. We recommend coverage based on your needs, not on compensation we may receive.

07How Compensation May Affect Recommendations

We mitigate conflicts through a multi-carrier approach, AI-driven analysis on objective criteria, disclosure upon request, and a best interest standard.

08Your Right to Information

You may request a detailed breakdown of compensation for any specific policy. Contact legal@aidenrisk.com or your account representative.

09Contact Us

Aiden Risk Inc.
535 Mission St, 14th Floor
San Francisco, CA 94105
Email: legal@aidenrisk.com

01Our Commitment

Aiden Risk Inc. is committed to ensuring that our website and AI-powered insurance platform are accessible to all users, including people with disabilities.

02Conformance Standard

We target WCAG 2.1, Level AA conformance across four principles: Perceivable, Operable, Understandable, and Robust. We also comply with the ADA Title III, California's Unruh Civil Rights Act, and Section 508.

03Measures We Take

• Accessibility in development — Built into our design system and workflow from the start.
• Automated testing — Part of our CI pipeline.
• Manual testing — Regular audits with screen readers and keyboard navigation.
• Third-party audits — Independent consultants conduct periodic WCAG audits.
• Staff training — Design and engineering teams receive accessibility training.
• Feedback integration — User feedback incorporated into our product roadmap.

04Assistive Technologies Supported

05Known Limitations

• Third-party content — Carrier-provided PDFs may not be fully accessible. We provide alternatives when possible.
• Data visualizations — Some interactive charts have limited accessibility; tabular alternatives are provided.
• Legacy documents — Older uploads may not meet all WCAG criteria.

06Feedback & Accommodation Requests

Aiden Risk Inc.
Attn: Accessibility Team
535 Mission St, 14th Floor
San Francisco, CA 94105
Email: accessibility@aidenrisk.com

Response times: Acknowledgment within 2 business days, alternative access within 5 business days, remediation within 30 days.

07Enforcement & Complaints

You may file complaints with the U.S. Department of Justice or the California DFEH.

This Accessibility Statement was last reviewed on February 19, 2026.