Skip to main content
Skip to main content

Last updated 2026-05-19

Privacy Policy

Brokers handle sensitive employer and member information every day. You should know exactly what dlgt.ai does with that information. This page is the plain-language version. If you want details, the security posture page goes deeper, and you can always email legal@dlgt.ai.

What we collect

We collect the things we need to run the product and the things you actively put into it. In practice that means:

  • Account information. Your name, work email, agency name, and role. The same data you would put on a business card.
  • Authentication signals. Sign-in events, IP address at sign-in, device and browser information, and the one-time codes we send to verify it's you. We use Auth0 for the actual sign-in step.
  • Meeting recordings and transcripts. When you press record, we capture audio and produce a transcript. Audio files are stored encrypted at rest in Cloudflare R2. Transcripts and any notes derived from them live in our application database.
  • Employer and book data. Employer records you add, contacts you store, renewal dates, census information you upload, and any other broker-side content you put into the app.
  • Product usage. Which pages you visited, which features you used, and basic performance and error logs so we can fix bugs and improve the product.

What we do with it

We use the data above to run the service you signed up for. That means transcribing meetings, extracting entities, drafting follow-up emails on your behalf, surfacing signals from your book, and keeping the app running and secure. We also use it to answer your support questions and to send you product updates you can unsubscribe from.

We do not sell your data. We do not rent it. We do not let third-party AI vendors train their general-purpose models on your meetings or your book. If a feature needs to send your data to an AI provider to compute a result, we send the minimum amount required and we contract with that provider in a way that forbids them from retaining or training on it.

Who else touches it

We run dlgt.ai on top of a small set of vendors. Each one processes data for a specific purpose and is bound by a data processing agreement.

  • Auth0 handles sign-in and identity. Stores email and authentication metadata.
  • Render hosts the backend application and the primary database. All data at rest is encrypted.
  • Vercel hosts the frontend. Receives request logs but not durable application data.
  • Cloudflare serves traffic, blocks abuse, and stores audio recordings in Cloudflare R2 with encryption at rest.
  • Resend sends transactional and product email on our behalf.
  • AI inference providers run the language models behind transcription and drafting. Calls are server-side, the data is sent over TLS, and we require zero-retention terms.

If we add or change a sub-processor, we will update this list and update the "last updated" date at the top.

Your choices

You can edit or delete most of your data from inside the product. If you want a full export or a full deletion, email privacy@dlgt.ai and we will handle it within 30 days. If you are in a jurisdiction that gives you specific rights of access, correction, portability, or erasure, that same email is how you exercise them.

You can also turn off product emails at any time from the account settings page. Transactional email tied to sign-in and billing keeps going because those messages are not optional.

How long we keep it

While your account is active, we keep the data above for as long as you keep it in the product. When you delete a record, we delete it. When you close your account, we delete your active data within 30 days and let the backup copies age out over the following 90 days. We may keep a small amount of billing and legal record-keeping data for as long as the law requires.

Security

Traffic to dlgt.ai uses HTTPS end to end. Data at rest is encrypted in our database and in object storage. Access to production systems is restricted to a short list of named employees and requires multi-factor authentication. Audio recordings are stored in a separate bucket with its own access controls.

No system is perfect. If we discover a breach that affects you, we will notify you within 72 hours of confirming it.

Children

dlgt.ai is a tool for licensed benefits brokers and the people who work with them. It is not intended for anyone under 18 and we do not knowingly collect data from anyone under 18.

Changes

We may update this policy. If we change something material, we will email account owners and post the change here with a new "last updated" date.

Contact us

Email privacy@dlgt.ai for anything related to your data or this policy. For product help, email hello@dlgt.ai.

You're offline. Your work is saved on this device.