Privacy Policy

Covenant, Inc. ("Covenant", "we", "us") operates covenantcoverage.ai. This policy explains what information we collect, how we use it, and your rights. We collect only what is necessary to operate the waitlist and, when coverage becomes available, to underwrite and service policies.

Waitlist registration. When you join the waitlist, we collect your work email address, company name, and the number of AI agents you have in production. This is used to contact you about onboarding and to prioritize cohorts.

Agent trace data. During onboarding and for active policies, we request read-only access to your agent runtime logs, the records of what your agents did, what tools they called, and what outcomes they produced. We do not modify your systems. We do not store credentials. You can revoke access at any time.

Usage and analytics. We collect standard web analytics (page views, referral source, device type) to understand how people find and use this site. We do not sell this data.

• To contact you about your waitlist position and onboarding scheduling
• To underwrite coverage based on your agents' actual behavior
• To validate claims and trigger parametric payouts when a covered event occurs
• To reprice premiums monthly based on updated agent traces
• To improve our underwriting models and product

We do not sell your data. We do not use your agent traces to train AI models for any purpose other than underwriting your specific policy.

Waitlist data is retained until you request removal or until 24 months have passed without activity. Agent trace data collected during active policies is retained for the duration of your policy plus 7 years, consistent with standard insurance recordkeeping requirements. You may request deletion of waitlist data at any time by emailing us.

We share data only as required to operate the product:

• Carrier partners. To bind and service coverage, we share relevant underwriting data with our insurance carrier partners. These partners are bound by their own regulatory and privacy obligations.
• Infrastructure providers. We use Supabase for data storage and Vercel for hosting. Both are SOC 2 compliant.
• Legal obligation. We may disclose data if required by law, regulation, or valid legal process.

We do not share, sell, or rent your information to third parties for marketing purposes.

Agent trace data is encrypted in transit and at rest. Access is restricted to Covenant personnel who need it for underwriting or claims purposes. We use read-only API access, we cannot modify your agent systems. You can revoke access at any time without affecting your policy status.

You may request access to, correction of, or deletion of your personal data at any time. To make a request, email us at privacy@covenantcoverage.ai. We will respond within 30 days. For active policies, some data may be subject to regulatory retention requirements that limit our ability to delete.

We use minimal cookies for site functionality and analytics. We do not use cookies for advertising or cross-site tracking. You can disable cookies in your browser settings without affecting your ability to use this site.

We may update this policy as the product evolves. Material changes will be communicated to waitlist members by email. Continued use of the site after changes constitutes acceptance of the updated policy.

Questions about this policy: privacy@covenantcoverage.ai