Privacy Policy

1. Overview

Covra ("we", "us") provides a customer relationship management tool ("Service") designed for licensed life insurance agents. This policy explains what information we collect, how we use it, and the choices you have. By using Covra you agree to the practices described here.

2. Information we collect

We collect three categories of data:

• Account data — your name, email, password hash, and billing details.
• Lead data you upload — contact information for the prospects you import or enter (name, age, city, phone, email, notes, call history, pipeline stage).
• Usage data — basic logs, device and browser metadata, and error reports used to keep the Service running.

3. How lead data is stored

Lead data you import is stored in encrypted Postgres databases hosted by our infrastructure provider. Data is encrypted in transit (TLS) and at rest. Access is scoped to your account through row-level security — other Covra users cannot see your leads. We never sell, rent, or share your lead data with third parties for marketing.

4. Third-party services

Covra relies on a small number of subprocessors to operate:

• Supabase — database, authentication, and file storage.
• Stripe — subscription billing and card processing. Covra never sees your full card number.
• Cloudflare — content delivery and DDoS protection.

Each subprocessor is bound by a data processing agreement and processes data only on our instructions.

5. Your rights

You can export, correct, or delete your data at any time from your account settings. Deleting your account permanently removes your lead data within 30 days, except where retention is required by law (for example, billing records).

6. Cookies

We use strictly necessary cookies to keep you signed in. We do not use third-party advertising cookies or cross-site trackers.

7. Contact

Questions or requests? Email support@covra.app.