Privacy Policy

Effective Date: January 1, 2026  |  Last Updated: January 1, 2026

Bedrock Insurance Advisors, LLC ("Bedrock," "we," "us," or "our") is committed to protecting the privacy and security of the personal information entrusted to us by our clients, prospective clients, and visitors to our website. This Privacy Policy describes how we collect, use, disclose, and safeguard your information when you visit our website, use our client portal, submit a quote request, or otherwise interact with our brokerage services.

As a licensed insurance brokerage operating in the State of New York and regulated by the New York State Department of Financial Services (NYDFS), we adhere to all applicable federal and state privacy laws, including the New York Information Security Breach and Notification Act (General Business Law § 899-aa) and the NYDFS Cybersecurity Regulation (23 NYCRR 500).

1. Information We Collect

We may collect the following categories of personal information in connection with the insurance services we provide:

Information You Provide Directly:

• Full name, business name, and job title
• Email address, phone number, and mailing address
• Business information including trade type, number of employees, annual revenue, and years in operation
• Details submitted through our quote request forms, including project descriptions and coverage requirements
• Federal Employer Identification Number (FEIN) for policy underwriting purposes
• Workers' compensation payroll and classification data
• Loss history and prior insurance information
• Client portal login credentials

Information Collected Automatically:

• IP address, browser type, and operating system
• Pages visited, time spent on pages, and referring URLs
• Device identifiers and general geolocation data
• Cookies and similar tracking technologies (see Section 6 below)

2. How We Use Your Information

We use the personal information we collect for the following business purposes:

• Processing insurance quote requests and submitting applications to carriers on your behalf
• Placing, binding, and servicing insurance policies
• Issuing and managing Certificates of Insurance (COIs) and endorsements
• Communicating with you regarding policy renewals, endorsements, audits, and claims
• Managing your account through our client portal
• Responding to your inquiries and providing customer support
• Complying with legal and regulatory obligations, including those imposed by NYDFS
• Improving our website, services, and internal business operations
• Detecting and preventing fraud or other unlawful activity

3. Information Sharing and Disclosure

We do not sell your personal information. We may share your information with the following parties and only to the extent necessary to fulfill the purposes described in this Policy:

Insurance Carriers and Underwriters: We share application data, loss runs, payroll information, and other relevant details with insurance carriers and their underwriters for the purpose of obtaining quotes, binding coverage, and servicing your policies. This is a core and necessary function of our role as your insurance broker.

Premium Finance Companies: If you elect to finance your insurance premiums, we will share relevant policy and contact information with the premium finance company you select.

Third-Party Service Providers: We engage trusted service providers who assist us with website hosting, email delivery, data analytics, and agency management systems. These providers are contractually obligated to protect your data and use it only for the purposes we specify.

Legal and Regulatory Authorities: We may disclose your information when required by law, regulation, subpoena, court order, or at the request of regulatory bodies such as the New York State Department of Financial Services.

With Your Consent: We may share information in other circumstances with your explicit consent.

4. Data Security

We implement and maintain reasonable administrative, technical, and physical safeguards designed to protect personal information from unauthorized access, disclosure, alteration, or destruction. Our security program is aligned with the requirements of the NYDFS Cybersecurity Regulation (23 NYCRR 500) and includes:

• Encryption of sensitive data in transit and at rest
• Multi-factor authentication for portal and system access
• Regular risk assessments and penetration testing
• Employee cybersecurity training and awareness programs
• Written incident response and data breach notification procedures

While we take appropriate measures to safeguard your information, no method of electronic transmission or storage is completely secure. We cannot guarantee absolute security of your data.

5. Data Retention

We retain personal information for as long as necessary to fulfill the purposes for which it was collected, service your account, comply with our legal and regulatory obligations, and resolve disputes. Insurance records are generally retained for a minimum of six (6) years following the expiration or cancellation of a policy, consistent with New York State record retention requirements.

6. Cookies and Analytics

Our website uses cookies and similar technologies to enhance your browsing experience and analyze site usage. Cookies are small text files stored on your device when you visit our website.

Essential Cookies: Required for the website and client portal to function properly, including session management and security.

Analytics Cookies: We may use third-party analytics services (such as Google Analytics) to collect anonymized data about website traffic, page views, and user behavior. This data helps us improve our website and services.

You may disable cookies through your browser settings. However, disabling certain cookies may affect the functionality of our website and client portal.

7. Third-Party Links

Our website may contain links to third-party websites, including insurance carrier portals, industry resources, and regulatory agency sites. We are not responsible for the privacy practices or content of those third-party sites. We encourage you to review the privacy policies of any external site you visit.

8. Your Rights

Depending on your jurisdiction and applicable law, you may have certain rights regarding your personal information, including:

• Right of Access: You may request a copy of the personal information we hold about you.
• Right to Correction: You may request that we correct inaccurate or incomplete personal information.
• Right to Deletion: You may request that we delete your personal information, subject to certain exceptions required by law or regulatory retention obligations.
• Right to Opt Out: You may opt out of receiving marketing communications from us at any time by contacting us or using the unsubscribe mechanism in our emails.

Please note that certain information may be exempt from such requests under applicable law. For example, we may need to retain information necessary for completing insurance transactions, complying with regulatory requirements, or exercising legal claims.

To exercise any of these rights, please contact our privacy team using the information provided in Section 10 below.

9. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or business operations. When we make material changes, we will update the "Last Updated" date at the top of this page. We encourage you to review this Policy periodically.

10. Contact Us

If you have questions about this Privacy Policy, wish to exercise your privacy rights, or have concerns about how your information is handled, please contact us:

Bedrock Insurance Advisors, LLC
Attn: Privacy Officer
1 Liberty Plaza, 32nd Floor
New York, NY 10006
Email: certificates@bedrock-insurance.com
Phone: (315) 355-6521

New York Residents: If you believe your privacy rights under New York law have been violated, you may also file a complaint with the New York State Department of Financial Services (NYDFS) at www.dfs.ny.gov or by calling the DFS Consumer Hotline at 1-800-342-3736.