Data Minimization
We collect only the information required to deliver diagnostics, fulfill compliance obligations, or maintain client accounts.
Principles
Baseline commitments
Controlled Sharing
We do not sell data. Information is shared only with service providers that support custody, compliance, or infrastructure, and they are bound by confidentiality obligations.
Security Controls
Access to client information is role-based, logged, and reviewed regularly. Sensitive data is encrypted in transit and at rest.
Information we collect
Why we collect it
Identification data, contact information, diagnostic inputs (statements, holdings, goals), compliance documentation, and communications. We use this data to deliver services, satisfy regulations, and maintain security.
Your rights
Control your information
- Request a copy of the information we maintain about you.
- Ask us to correct inaccurate data or update contact information.
- Opt out of non-essential communications.
- Request that we limit sharing with unaffiliated third parties where permitted by law.
Contact privacy@insightadvisors.co to exercise any of these rights. We respond within 30 days.
Data retention
SEC Rule 204-2 compliant
Diagnostics and advisory records are retained as required by SEC Rule 204-2 and other applicable regulations, generally for at least five years after the end of the relationship.