Privacy Policy

Effective Date: March 1, 2025
Last Updated: October 5, 2025

1) Who We Are

This Privacy Policy explains how Insurance Buyers United (“The IBU,” “we,” “us,” or “our”) collects, uses, discloses, and safeguards information when you visit www.theibu.org (the “Site”) or interact with our services (together, the “Services”).

If you have questions or requests, contact us at [[email protected]] or by mail at [Address, City, State/Province, Country, ZIP].

2) Scope

This Policy applies to information we collect online through the Site and related Services. It does not cover third-party websites, apps, or services that we do not control.

3) Information We Collect

We collect information in three ways: (a) you provide it, (b) it’s collected automatically, and (c) it’s provided by third parties.

a) Information You Provide

Contact and account info (e.g., name, email, password, organization, role).

Communications (e.g., messages, forms, survey responses).

Donations/purchases/registrations (e.g., billing and shipping info processed via our payment processor; we do not store full payment card numbers).

User content (e.g., comments, uploads).

Job applications/volunteer forms (e.g., resume/CV, background info) [if applicable].

b) Information Collected Automatically

When you use the Site, we and our service providers may automatically collect:

Device and usage data (IP address, browser type, device IDs, pages viewed, links clicked, referring/exit pages, timestamps).

Cookies and similar technologies (pixels, local storage, SDKs) to enable core features, analytics, and—if enabled—advertising/retargeting. See Cookies & Tracking below.

c) Information from Third Parties

We may receive information about you from service providers (e.g., analytics, payment processors, email platforms) and partners (e.g., event platforms, social networks) consistent with their privacy policies and your settings.

4) How We Use Information

We use information to:

Provide, operate, secure, and troubleshoot the Site and Services.

Process registrations, donations, and transactions.

Communicate with you (service messages, responses to inquiries, newsletters/updates if you opt in).

Personalize content and measure engagement and audience.

Conduct research, analytics, and improve our Services.

Comply with legal obligations and enforce our terms, protect against fraud, and ensure safety.

[If GDPR/UK applies:] Our legal bases include contract, legitimate interests (e.g., Site security, analytics, improvement), consent (for certain cookies/marketing), and legal obligation.

5) When We Disclose Information

We disclose information to:

Service Providers/Processors who perform services on our behalf (e.g., Google Analytics, GoDaddy, StreamCore, Stripe, NexLevel Business Hub). They are contractually required to protect information and use it only for our instructions.

Partners when you ask us to or consent (e.g., event co-hosts, collaborations).

Legal/Compliance recipients when required by law, to protect rights and safety, or in connection with a corporate transaction (e.g., merger, reorganization).
We do not sell personal information for money. [If applicable, add:] We may “share” personal information for cross-context behavioral advertising as defined by California law. See Your Privacy Rights for opt-out choices.

6) Cookies & Tracking Technologies

We use:

Strictly necessary cookies (security, load balancing, session management).

Analytics cookies (to understand Site usage and improve content).

[If used] Advertising/retargeting cookies (to show ads and measure effectiveness).

You can manage cookies via your browser settings. If in EU/UK we present a cookie banner/consent tool for non-essential cookies. Learn more or change preferences at link to Cookie Settings.

7) Analytics, Ads, and Social Tools

We may use tools such as Google Analytics, Meta Pixel, YouTube embeds, reCAPTCHA, and similar services. These providers may set cookies or collect data directly under their own policies.

Google Analytics opt-out: https://tools.google.com/dlpage/gaoptout

Your ad choices (U.S.): http://www.aboutads.info/choices and http://www.youronlinechoices.com

8) Data Retention

We retain personal information only as long as necessary for the purposes described in this Policy, including to meet legal, accounting, or reporting requirements. Example defaults (customize):

Account and contact records: [24 months after last interaction]

Analytics data: [26 months]

Transaction records: [7 years] (for tax/financial compliance)

9) Security

We use administrative, technical, and physical safeguards appropriate to the nature of the data. No method of transmission or storage is 100% secure. If we experience a data incident, we will notify you and regulators as required by law.

10) Children’s Privacy

Our Services are not directed to children under 13 (or 16 in the EU/UK). We do not knowingly collect personal information from children. If you believe a child provided information, contact us and we will delete it.

11) International Data Transfers

[If applicable] We may process and store information in the United States and other countries, which may have different data protection laws than your country.

EU/UK users: Where we transfer your personal data outside the EEA/UK, we rely on appropriate safeguards (e.g., Standard Contractual Clauses and necessary supplementary measures).

12) Your Privacy Rights

Your rights depend on your location. U.S. State Rights (e.g., CA, CO, CT, UT, VA)

Residents of certain states may have rights to:

Access/know categories and specific pieces of personal information we collected about you;

Delete personal information;

Correct inaccuracies;

Opt out of sale or sharing of personal information and targeted advertising;

Limit the use/disclosure of sensitive personal information (if we process any).

We do not sell personal information for money. We may share personal information for cross-context behavioral advertising.

You can opt out via “Do Not Sell or Share My Personal Information” at [email protected] or by using a browser that transmits a recognized opt-out preference signal (e.g., GPC), which we honor.

Submit a request at [email protected]. We will verify and respond as required by applicable law. Authorized agents may act on your behalf subject to verification. We will not discriminate against you for exercising your rights.

EU/UK Rights (GDPR/UK GDPR)

If GDPR/UK GDPR applies, you may have rights to access, rectify, erase, restrict, object, port your data, and withdraw consent at any time (without affecting prior processing). You may lodge a complaint with your local data protection authority. Our contact details are above.

13) Do Not Track

Some browsers send “Do Not Track” signals. We do not respond to DNT at this time.

14) Third-Party Links and Features

The Site may contain links to third-party websites and features. Their privacy practices are governed by their own policies. We are not responsible for their practices.

15) Changes to This Policy

We may update this policy from time to time. The “Effective Date” shows when it last changed. Material changes will be posted on the Site and, where required, we’ll notify you by email or prominent notice.

16) Contact Us

Questions, requests, or complaints about this policy or our practices can be sent to:
Email: [email protected]
Mail: Insurance Buyers United, 1413 Parade Street, Erie, Pennsylvania, USA