Compliance & Security

Built to protect commercial data responsibly for LTDI insurance professionals.

1. Security Overview

IntentMatch is designed with security-first principles appropriate for handling commercial LTDI demand intelligence. While no system can guarantee absolute security, IntentMatch maintains controls intended to reduce risk, prevent unauthorized access, and protect data integrity.

Infrastructure & Access Controls

IntentMatch employs layered access controls, including:

• Role-based access control (RBAC)
• Least-privilege access policies
• Restricted administrative access
• Segmentation between operational environments
• Authentication and authorization enforcement

Data Protection Measures

• Encryption in transit using industry-standard protocols (e.g., TLS)
• Encryption at rest where supported by infrastructure
• Secure credential storage and key management practices
• Controlled data export pathways

Monitoring & Incident Awareness

• System monitoring for availability and abnormal activity
• Logging of sensitive actions
• Alerting for suspicious access patterns

2. Acceptable Use Policy (AUP)

This Acceptable Use Policy governs how LTDI insurance brokers may use IntentMatch data and services.

Permitted Uses

Customers may use IntentMatch for lawful business purposes, including:

• Identifying market demand for LTDI and life insurance
• Prioritizing outreach timing for disability insurance prospects
• Business development and sales research
• Advertising and marketing planning (where lawful)

Prohibited Uses

IntentMatch may not be used for:

• Illegal, deceptive, or fraudulent activity
• Harassment, intimidation, or abusive outreach
• Targeting or inferring sensitive personal attributes
• Discriminatory practices
• Non-compliant robocalling, SMS, or telemarketing
• Use cases prohibited by applicable law or regulation

Misuse & Enforcement

IntentMatch reserves the right to investigate suspected misuse, suspend or terminate access, and restrict access to certain data fields. Access may be revoked without refund for material violations.

3. Data Processing & Privacy Summary

IntentMatch acts as a data provider for LTDI demand intelligence. We do not create personal data; we work with commercial data providers and systems of record.

Data Categories

IntentMatch may process and deliver for LTDI prospects:

• Contact identifiers (name, email, phone where available)
• Business affiliation and role information
• Location data (city/state)
• Demand and intent metadata (category, stage, recency, confidence)

Sensitive personal data is intentionally excluded.

Data Sources

Data may originate from:

• Publicly available records
• Licensed data providers
• Publisher and co-registration networks
• Business directories and websites
• Other lawful commercial data sources

Data Subject Rights

Where required by law, IntentMatch supports reasonable requests related to access, suppression, and deletion.

Requests can be submitted to: [email protected]

4. Permitted Use of Data

Contractual Use Framework: Subject to applicable agreements, customers are granted a limited, non-exclusive, non-transferable right to use IntentMatch LTDI data solely for lawful internal business purposes.

Customer Responsibilities

• Maintain data security and confidentiality
• Comply with applicable laws including TCPA, CAN-SPAM, and state consumer privacy laws
• Process data only for permitted business purposes
• Honor consumer opt-out and suppression requests
• Refrain from reselling or redistributing data without authorization

5. Transparency Statement

IntentMatch is committed to transparency in how we collect, process, and deliver demand intelligence. We believe in ethical data practices and compliance with applicable laws.

Our methodology combines publicly observable behavioral signals, licensed commercial data, and proprietary analytics. We do not infer or include protected characteristics.

For questions about this compliance statement, contact: [email protected]