logoPrediction Lab

Privacy Policy

Version 1.1

Last revised on: November 7, 2025

Important Information and Who We Are

Prediction Lab, LLC respects your privacy and is committed to protecting your personal data. This privacy policy outlines how we collect, use, and process your personal data when you visit our website or interact with our services. It also explains your privacy rights and how the law protects you.

We regularly review this privacy policy. This version was last updated on November 7, 2025.

This policy complies with applicable United States federal and state privacy laws, including the California Consumer Privacy Act (CCPA) and other state privacy regulations.

Data Controller: Prediction Lab, LLC, a Delaware limited liability company, is the controller of your personal data.

Contact: If you have any questions about this privacy policy or how we handle your personal data, please contact us at: support@predictionlab.ai

Right to Complain to a Regulator: If you have concerns about how we process your personal data, you have the right to lodge a complaint with the relevant supervisory authority. Depending on your location, this may be your state's Attorney General or other applicable data protection authority.

The Data We Collect About You

We may collect, use, store, and transfer various types of personal data, including:

Identity data: First and last name, company name, job title.

Contact data: Email address.

Authentication data: Managed by our third-party authentication provider, WorkOS, including email and password (securely hashed and not accessible to us).

Technical data: IP address, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access our website.

Usage data: Information about how you use our website and services, including features accessed, time spent on pages, and interaction patterns.

Marketing and communications data: Your preferences in receiving marketing materials and communication preferences.

Customer data: Contact details and business information related to providing our services.

Business contact data: Information relating to representatives of our clients, partners, and other business contacts.

User-uploaded data: Insurance data and other information you upload to our platform for analysis. You retain full ownership of this data, and we process it solely to provide our services to you as outlined in your Subscription and Service Agreement.

Sensitive Data: We do not knowingly collect special categories of sensitive personal data (e.g., race, religion, health data) unless explicitly required for legal reasons or with explicit consent.

CCPA Notice: In compliance with the CCPA, we do not sell personal information. We only collect personal data for business or legal purposes as specified in this policy.

How We Collect Your Personal Data

Direct interactions: You provide data by filling out forms on our website, creating an account, corresponding with us via email or other channels, or during our service delivery.

Automated technologies: We automatically collect technical and usage data about your device and browsing activities via cookies and similar technologies. See Section 5 below for more information about cookies.

Third-party authentication: When you create an account, authentication data is collected and managed by WorkOS, our third-party authentication provider.

Business contacts: We collect business data through direct communication with customers and partners in relation to our services.

Legal Bases for Processing Your Personal Data

We only process your personal data when legally permitted to do so. The legal bases for processing include:

Consent: Where you have provided your explicit consent (e.g., for marketing communications or optional data collection).

Contractual Necessity: Where processing is necessary to fulfill a contract with you or to take steps before entering into a contract (e.g., providing our prediction modeling services to customers).

Legitimate Interests: For our legitimate business interests (e.g., analyzing website traffic, improving our services, maintaining business relationships, or ensuring security), unless these interests are overridden by your rights and interests.

Legal Obligation: Where we need to comply with a legal or regulatory obligation (e.g., data retention requirements, responding to legal requests).

CCPA Notice of Collection: Under CCPA, we only use your data for specific business purposes and retain it for as long as needed to fulfill those purposes.

Cookies and Tracking Technologies

We use cookies and similar tracking technologies to collect technical and usage data when you visit our website. Cookies are small data files placed on your device that help us understand how you use our site and improve your experience.

Types of cookies we use:

Analytics cookies: We use Google Analytics and Vercel Analytics to understand how visitors interact with our website, which pages are most popular, and how we can improve user experience. These tools collect information such as pages visited, time spent on the site, and navigation patterns.

Functional cookies: These cookies enable basic website functionality and remember your preferences.

You can control and manage cookies through your browser settings. Most browsers allow you to refuse or accept cookies, delete existing cookies, or be notified when new cookies are sent to your device. Please note that disabling cookies may affect the functionality of our website.

For more information about the cookies we use and how to manage them, please refer to our Cookie Policy or contact us at support@predictionlab.ai.

How We Use Your Personal Data

We use your data in the following ways:

  • To create and manage your account and authenticate your access to our services
  • To provide and maintain our prediction modeling services
  • To process and analyze data you upload in accordance with your Subscription and Service Agreement
  • To respond to your inquiries and requests
  • To send you service-related communications (e.g., account updates, security alerts, technical notices)
  • To send you marketing communications with your consent
  • To analyze website performance, usage patterns, and improve user experience
  • To ensure the security and integrity of our platform
  • To comply with legal obligations (e.g., data retention, responding to legal requests)
  • To maintain business relationships with clients and partners

Marketing:

We may use your contact details to send you marketing communications (such as newsletters, product updates, or event invitations) related to our products and services.

Since we operate on a business-to-business (B2B) basis, we may send marketing communications to individuals acting in a professional capacity based on our legitimate business interests, provided that such communications are relevant to your role or business. However, we will only do so if you have opted in to receive such communications during account creation or through other explicit consent mechanisms.

You can unsubscribe from marketing communications at any time by clicking the "unsubscribe" link in our emails or by contacting us at support@predictionlab.ai.

We do not sell or share your personal data with third parties for their own direct marketing purposes.

Event Photography and Videography

Prediction Lab may take photographs and videos during events we organize or participate in, such as conferences, seminars, workshops, trade shows, and internal company events. These images and videos may feature attendees, speakers, employees, clients, partners, and other participants.

We use such photographs and videos for the following purposes:

  • Internal communications: To document company activities, share highlights with our team, and maintain records of our events.
  • External communications: To promote our brand, showcase our participation in industry events, and share content on our website, social media channels, marketing materials, and press releases.

Legal basis: We process this data based on our legitimate interest in promoting our business activities and engaging with our professional community. We balance this interest against the rights and expectations of individuals, ensuring that event photography is conducted transparently and respectfully.

Your rights: You have the right to object to the processing of your personal data, including images or videos in which you appear. If you do not wish to be photographed or filmed during an event, please inform our staff at the event or contact us at support@predictionlab.ai. If you appear in a photograph or video that has already been published and wish to have it removed, please contact us, and we will assess your request in accordance with applicable data protection laws.

We will not use event photographs or videos in a manner that could be considered intrusive, inappropriate, or damaging to your reputation. Where we share event content with third parties (such as event organizers or media partners), we ensure they process it in compliance with data protection laws.

Recipients of Personal Data

We may share your personal data with:

Third-party service providers: Who provide services on our behalf, including:

  • WorkOS: Authentication and identity management services
  • AWS (Amazon Web Services): Cloud hosting and infrastructure
  • Vercel: Website hosting and deployment
  • Neon: Database services
  • Google Workspace and Gmail: Email and productivity services
  • Google Analytics: Website analytics
  • Slack: Internal team communications
  • Linear: Project management
  • GitHub: Code repository and development tools
  • Mercury: Banking and financial services

Professional advisors: Including lawyers, accountants, and other professional consultants who assist us with business operations.

Regulators and authorities: Where required by law or to protect our legal rights.

Where we share your data with third parties, we ensure they process it based on our instructions and in compliance with applicable data protection laws. We enter into data processing agreements with service providers to ensure appropriate security and confidentiality measures are in place.

User-uploaded data: We do not share, sell, or use the insurance data or other information you upload to our platform for any purpose other than providing our services to you. This data remains your property and is processed solely in accordance with your Subscription and Service Agreement.

International Transfers

Your personal data is primarily stored and processed in the United States, specifically in the AWS us-east-1 region (though this may change as our infrastructure evolves).

If you are located outside the United States and choose to use our services, please be aware that your data will be transferred to, stored, and processed in the United States. We take appropriate measures to ensure that your personal data receives an adequate level of protection and that transfers are conducted in compliance with applicable data protection laws.

For users in California and other states with specific privacy laws, we follow data protection measures consistent with those regulations.

Data Security

We have implemented appropriate technical and organizational security measures to protect your personal data from unauthorized access, loss, alteration, disclosure, or misuse. These measures include:

  • Encryption of data in transit using industry-standard protocols (TLS/SSL)
  • Encryption of data at rest
  • Secure authentication mechanisms through WorkOS
  • Access controls limiting data access to authorized employees and service providers only
  • Regular security assessments and monitoring
  • Secure cloud infrastructure through AWS

Access to your personal data is restricted to employees, agents, contractors, and third parties who have a legitimate business need to access the data to fulfill their duties and provide services to you.

In the event of a data breach that affects your personal data, we will notify affected individuals and regulatory bodies as required by applicable law.

While we strive to protect your personal data, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security but are committed to maintaining industry-standard security practices.

Data Retention

We retain your personal data only as long as necessary to fulfill the purposes we collected it for, including satisfying legal, accounting, regulatory, or reporting requirements.

Specific retention periods:

  • Account data: Retained for the duration of your active account and deleted immediately upon account closure or termination of services, unless we are required to retain it for legal or regulatory purposes.
  • User-uploaded data: Deleted immediately upon termination or expiration of your Subscription and Service Agreement, as specified in that agreement.
  • Marketing data: Retained until you withdraw consent or unsubscribe from marketing communications.
  • Technical and usage data: Typically retained for up to 24 months for analytics and service improvement purposes.
  • Business correspondence: Retained for as long as necessary to maintain business relationships and fulfill contractual obligations.

To determine the appropriate retention period, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure, the purposes for which we process the data, whether we can achieve those purposes through other means, and applicable legal requirements.

Your Legal Rights

Depending on your location, you may have certain rights regarding your personal data under applicable privacy laws, including the CCPA and other state privacy regulations.

Your rights may include:

Right to access: Request access to your personal data and receive a copy of the data we hold about you.

Right to rectification: Request correction of inaccurate or incomplete personal data.

Right to erasure (deletion): Request deletion of your personal data in certain circumstances, such as when it is no longer necessary for the purposes for which it was collected.

Right to object: Object to processing of your personal data based on legitimate interests or for direct marketing purposes.

Right to restrict processing: Request restriction of processing under specific conditions.

Right to data portability: Request transfer of your personal data to another party in a structured, commonly used, and machine-readable format.

Right to withdraw consent: Withdraw your consent for data processing at any time where we rely on consent as the legal basis for processing.

Right to opt out of sale: Although we do not sell your personal data, you have the right to request that we do not sell your data.

Right to non-discrimination: You have the right not to receive discriminatory treatment for exercising your privacy rights.

How to exercise your rights:

If you wish to exercise any of these rights, please contact us at support@predictionlab.ai. We will respond to your request within the timeframe required by applicable law (typically 30-45 days).

We may need to verify your identity before processing your request to ensure the security of your personal data. This verification process may require you to provide additional information.

There may be circumstances where we cannot fulfill your request, such as when we are required to retain data for legal or regulatory reasons, or when the request is manifestly unfounded or excessive. We will inform you if this is the case and explain our reasoning.

Privacy Notice for Job Candidates

When you apply for a role at Prediction Lab through our website, LinkedIn, or other channels, we collect and process your personal data in accordance with applicable data protection laws (including the CCPA and other state privacy regulations where applicable). This includes:

  • Contact information (e.g., name, email, phone number)
  • Resume and career data (e.g., education, work experience, skills, qualifications)
  • Interview notes and assessment data
  • Any other data you voluntarily provide during the application process

Purpose and legal basis: Your data is used for recruitment purposes based on our legitimate interest in evaluating candidates and filling open positions, or to take pre-contractual steps at your request. It may also be retained with your consent for consideration for future opportunities.

Data storage and retention: Candidate data is stored securely and retained for up to 2 years from the date of your application, unless you request earlier deletion. If you are hired, your data will be transferred to our employee records and retained in accordance with employment laws and our internal policies.

Access and sharing: We limit access to candidate data to authorized recruitment staff and hiring managers only. We may use third-party services (such as LinkedIn) to facilitate the recruitment process, and these services process data in accordance with their own privacy policies and applicable data protection laws.

Your rights: You have the same rights regarding your candidate data as outlined in Section 12 above, including the right to access, correct, delete, or object to processing of your data. To exercise these rights, please contact us at support@predictionlab.ai.

Children's Privacy

Our services are not directed to individuals under the age of 18, and we do not knowingly collect personal data from children. If we become aware that we have inadvertently collected personal data from a child under 18, we will take steps to delete such information as soon as possible. If you believe we have collected data from a child, please contact us at support@predictionlab.ai.

Changes to This Privacy Policy

We may update this privacy policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. If we make significant changes, we will notify you by posting a notice on our website or by contacting you directly via email.

The "Last Updated" date at the top of this policy indicates when it was most recently revised. We encourage you to review this policy periodically to stay informed about how we protect your personal data.

Your continued use of our website and services after any changes to this privacy policy constitutes your acceptance of the updated policy.

Contact Us

If you have any questions, concerns, or requests regarding this privacy policy or our data practices, please contact us at:

Prediction Lab, LLC

323 Lovers Ln Terrell, TX 75160

Email: support@predictionlab.ai

We will respond to your inquiry as promptly as possible and work to address any concerns you may have about your privacy and personal data.