Welcome to Ensuram Privacy Policy

1. Introduction

Welcome to ENSURAM. The Ensuram website and mobile application is provided by Ensuram Inc ("Ensuram").

At Ensuram, we value your privacy, and we are committed to safeguarding your personal information. All personal information that you provide us will be protected and kept confidential among our affiliates, representatives, and privies.

Throughout the website, the terms "we", "us" and "our" refer to Ensuram.

This Privacy Policy explains how we collect, use, share and protect your personal information in connection with your relationship with us as a user or potential user. It applies to all our clients, potential clients, partners, healthcare providers, third party insurers and every other person we hold information about.

This policy also sets out your rights and who you may contact for further information.

You agree to this Privacy Policy by visiting our website and when you use our services.

Your use of our services, and any dispute over privacy is subject to this Policy and our Terms of Use, including its applicable limitations on damages and the resolution of disputes. Our Terms of Service are incorporated by reference into this Policy.

Our website and services are not directed at you if we are prohibited by any law of any jurisdiction from making the information on our website available to you and is not intended for any use that would be contrary to local law or regulation.

2. Age Restriction

Our services are intended for individuals who are 18 years of age and older. We do not knowingly collect personal information from children under the age of 18. You affirm that you are over the age of majority and have the right to contract in your own name, and that you have read the above authorisation and fully understand its contents.

3. Applicability

This Privacy Policy applies to all users of our website, including visitors, registered users, health insurance providers, hospitals, and pharmacies. It covers all personal information collected through our website, mobile applications, or other online services that link to this policy. However, this privacy policy does not apply to HIPAA regulated data or the practices of our partners. In such situations, please refer to their individual privacy policies.

4. Sources of Personal Information

We collect personal information from our Users and visitors to our website. As described below, some information is automatically collected when you visit our website, and some you provide to us when filling out a form or communicating with us:

1. Directly from You: We collect personal information you provide to us when you use our website or services. For example, when you fill out a form to request a quote or register for an account, you may provide us with personal information, such as your name, contact details, date of birth, and limited health information and any other information you provide to us.
2. Automatically from Your Device: We may automatically collect non-personal information about your device and your usage of our website or services, including IP address, browser type, device type, operating system, page views, links clicked, and other usage information. This information is collected using cookies or similar tracking technologies.
3. From Third Parties: We may receive non-personal information about you from third-party sources, such as insurance providers, pharmacies, hospitals, data aggregators, and publicly available sources. This may include demographic data, interest-based data, and internet browsing behavior.
4. From Health Insurance Providers: If you choose to request a quote or apply for insurance through our website, we may receive information from the health insurance providers about your quotes, applications, policies, and claims.
5. From Hospitals or pharmacies: If you choose to purchase health insurance via our platform and to create a health saving wallet, we will use some of the information provided to connect with hospitals and pharmacies to enable you to pay a bill to these entities. We will not collect information about your diagnosis or medical treatment at the hospital or pharmacy.

Please be aware that the personal information you provide to us or that we collect from you will be used in accordance with this Privacy Policy.

5. The Personal Data We Collect

The type of personal data we collect, and process depends on how you interact with our website and services. As described above, some information is automatically collected when you visit our website, and some you provide to us when filling out a form or communicating with us. Below are details about some of the categories of personal data we may collect.

1. Identifying Details: We collect personal information that helps us identify you and communicate with you. This could include your name, postal address, email address, phone number, date of birth, gender, and national identification number or social security number, online IDs, IP addresses. For your beneficiaries, we also collect similar or related information.
2. Customer Account Information: When you register for an account on our website, we collect the information you provide in the registration form. This includes your username, password, email address, payment information, and any other information you choose to provide in your profile. We use this information to set up your account, provide services, communicate with you, and personalize your experience.
3. Limited Health Information for Insurance Policies: When you request a quote or apply for a policy, we may collect additional information needed to determine your eligibility and calculate your insurance premiums. This could include your health information, lifestyle habits (like smoking or alcohol consumption), family health history, and other risk-related factors. We might also collect information about any current or previous insurance policies you hold, including policy numbers, coverage details, and claims history. We will not collect information about your medical records, diagnosis or medical treatment at the hospital or pharmacy. However, some information may be shared directly by the Healthcare Provider with Users as a summary of the services offered.
4. Digital Activity Information: As you interact with our website and services, we automatically collect information about your digital activities. This includes details like the pages you visit, the links you click, the duration of your visits, your browsing history, your search queries, and other actions you take while using our services. We also collect data about your device, such as the type of device, operating system, browser, IP address, and device identifiers. We use this information to improve our services, personalize your experience, analyze user behavior, and maintain the security of our website.
5. Geolocation Data: Our services may collect information about your geographical location. Depending on the permissions you've given us, this could range from broad location data (like the city or country you're accessing our services from) to more precise location data (like your exact GPS coordinates). We use geolocation data to provide location-based services, analyze usage trends, improve our services, and comply with legal requirements.
6. Audio, Visual, Electronic, or Similar Data: If you communicate with us via voice call, video call, or electronic messaging, we may collect and store audio, visual, and electronic data related to these communications. For instance, we might record customer service calls for quality assurance purposes, or we may store email or chat messages for record-keeping purposes. Any such data collection will be done in accordance with applicable laws and regulations, and we will inform you if your call or video conference is being recorded.
7. Employment and Professional Data: If you provide us with information about your employment or professional status – for example, when you apply for a policy that requires such information or if you apply for a job with us – we collect and use that information for the purposes you provided it. This could include your job title, employer name, work history, professional qualifications, and income details.
8. Inferred Data: Inferred data refers to information that we derive or predict based on other data we collect about you. For instance, based on your browsing behavior, past purchases, or interactions with our website, we may make certain assumptions or predictions about your preferences, potential needs, or future behavior. This could involve segmenting you into certain categories, predicting your interest in certain types of insurance policies, or estimating your risk level. We use inferred data to personalize our services, offer you relevant products, enhance our marketing efforts, and improve your overall experience. However, we always strive to use this information responsibly and in accordance with your preferences and our legal obligations.

Please note that we only collect this information when it's necessary to fulfill our services or comply with legal requirements. We strive to limit the amount of personal data we collect and use, and we take steps to protect the information we hold.

6. The Usage of Your Personal Data at ENSURAM

"Personal Data" means any information that (a) identifies or can be used to identify, contact, or locate the person to whom such information pertains, or (b) from which identification or contact information of an individual person can be derived.

We primarily collect your information to ensure that we provide the most efficient service to you, monitor the use and improve our website and other legitimate interests. Your information will solely be used and disclosed for the following purposes:

1. Fulfilling Contractual Obligations: We collect your personal data to help carry out our obligations ensuing from any contracts entered into between you and us including providing you with the products, services and information you request from us and for our billing and account purposes.
2. Nurturing Seamless Exchanges: We make every effort to ensure smooth interactions between you and our platform. This includes supporting your use of our website, helping you compare insurance policies, providing detailed information, maintaining your account, and addressing any queries, requests, or complaints you might have.
3. In-House Business Needs: We use personal data to further our internal business goals. These include, but are not limited to, analyzing, and auditing the performance of our services, enhancing our technology, developing new products, processing customer feedback, conducting research for future developments, and maintaining accurate business records.
4. Compliance and Security Concerns: We may leverage personal data to fulfill legal and regulatory obligations, verify your identity, ensure our security, to help prevent and detect fraud or loss, safeguard the rights of our users, and protect our property. This includes using personal data to detect, prevent, and respond to potential security threats or unauthorized activities.
5. Marketing Activities: We may utilize your personal data to market our services. This could include sending you promotional material, inviting you to participate in surveys, customizing advertisements based on your preferences, and running targeted marketing campaigns. Additionally, we may analyze the effectiveness of our advertising efforts to better understand and serve our customer base.
6. Supplementary Usage: Apart from the mentioned uses, we may also leverage personal data for any other purposes disclosed at the time of collection or as required by law. Plus, we may use personal data for any other purposes provided we have your explicit consent.

Please refer to the 'Your Rights and Choices' section of this privacy policy for more information on how you can control the use of your personal data.

7. Who Gains Access to Your Personal Information at ENSURAM

At ENSURAM, we are committed to the responsible handling of your personal data. It's important to understand who might have access to your personal information:

1. Internal Teams: Different departments within ENSURAM, such as the customer service, technical, or marketing teams, may have access to your personal information as needed to provide you with our services, resolve issues, improve our offerings, or communicate updates.
2. Affiliated Entities: As part of a larger business group, ENSURAM may share your information with our subsidiaries, or other affiliated entities for internal administrative purposes and provide you with seamless service across our brand.
3. Service Providers: We may work with third-party service providers who assist us with a variety of tasks, such as data analysis, payment processing, marketing efforts, and customer support. These providers only have access to your information as necessary to perform their services and are contractually obligated to handle it with the same level of care and security that we do.
4. Insurance Companies: To provide our price comparison services, we share your information with insurance companies. This enables them to generate accurate insurance quotes for you.
5. Hospitals and Pharmacies: To enable you to pay bills, we share some information about your coverage and availability for funds in your account with hospitals and pharmacies.
6. Legal and Regulatory Bodies: If required by law, or to protect our rights and the safety of our users or the public, we may disclose your personal information to law enforcement, regulators, or legal entities.
7. Business Partners: We may share your information with trusted business partners for the purposes of collaborative marketing or promotional efforts or banking connectivity. Any information shared will be subject to the partner's privacy policy.
8. Potential Buyers or Successors: In the event that ENSURAM is involved in a merger, acquisition, restructuring, or sale of assets, your personal information may be transferred as part of the transaction, subject to applicable laws and regulations.
9. Consensual Sharing: With your approval, we might share de-identified, anonymized, or aggregated personal data with third parties.

We want to reassure you that we only share your information as necessary and within legal bounds to deliver our services, enhance your user experience, and ensure ENSURAM's operations. Your privacy is our priority. We have measures in place to ensure that your data is always handled securely and responsibly.

8. Disclosures

1. As a User, your information will be shared with Providers on the Platform as directed and consented by you. We will not make your personal data or health information available to Providers other than those with whom you have requested that we share your information with.
2. We will not sell, publish, or disclose to third parties your personally identifiable information or personal health information collected on our website, through our servers or otherwise obtained by us, other than to provide our services and as set forth in this privacy policy. We may share generic aggregated demographic information not linked to any personally identifiable information regarding visitors and Users with our business partners, trusted affiliates, professional advisers and advertisers for the purposes outlined above. We may share your information with these third parties for those limited purposes if you have given us your permission and in compliance with the Nigeria Data Protection Act 2023 (NDPA), the European Union General Data Protection Regulation (GDPR) and other applicable data protection laws in countries of operation.
3. We may request and provide information about you from and to third parties to provide our services.
4. We will notify you as soon as we become aware of a harmful data breach which may result in a risk of your rights and freedom.
5. You have the right to request an erasure of your data at any time.
6. We will notify you if we are transferring your data.
7. You may request at any time that we halt further dissemination of your data or cease to use your data.
8. If you submit content in a public forum or a social media post, or use a similar feature on our website, that content is publicly visible.
9. We may disclose your personal data if required to do so by law or in the good faith belief that such action is necessary to (a) conform with the requirements of the law or comply with legal process served on us, or (b) act in urgent circumstances to protect the personal safety of users of our service or members of the public.
10. To the extent practicable and legally permitted, we will attempt to advise you prior to any such disclosure, so that you may seek a protective order or other relief limiting such disclosure.

9. International Transfers

Your personal data may be stored or processed on servers located in countries other than your country of residence. In accordance with the NDPA, GDPR and other applicable data protection laws, such cross-border transfers will only occur where:

1. The recipient country or organisation ensures a level of protection adequate under the NDPA and GDPR, through applicable laws, binding corporate rules, standard contractual clauses, approved codes of conduct, or recognised certification mechanisms; or
2. If adequacy is not established, we implement appropriate safeguards, such as standard contractual clauses or binding corporate rules; or
3. In the absence of the above, a lawful exception applies, such as your explicit consent (which you may withdraw at any time), the necessity for performing a contract with you, public interest, or the protection of your vital interests.
4. We will document the transfer basis, apply robust security measures, and ensure our service providers comply with NDPA and GDPR requirements.

10. Your Rights

Subject to certain limitations and exceptions, you are entitled to the following principal rights under the NDPA and GDPR:

1. You have the right to be notified if we are transferring your personal information.
2. You have the right to request an erasure of your personal information at any time.
3. You have the right to request that we rectify inaccurate personal information.
4. You may request at any time that we halt further dissemination of your data or cease to use your personal information.
5. You have the right to request for copies of your personal information.

11. Website Security

We are committed to ensuring that your information is secure. In order to prevent unauthorised access or disclosure, we have put in place suitable physical, electronic and managerial procedures such as secure sockets layer (SSL) to safeguard and secure the information we collect online. We use encryption tools when accepting and transmitting delicate visitor information through our website.

12. Understanding how we use Cookies and Automatic Data Collection Tools

At ENSURAM, we harness various tracking technologies to improve user experience, analyze trends, manage our website, and to gather demographic information about our user base as a whole. This technology assists us in understanding your preferences and enhancing the quality of our services. Below is a comprehensive explanation of the tracking technologies we employ:

1. Cookies: Cookies are small files that get saved on your computer or device when you visit our website. These cookies store information such as your preferences and login details, which help us in personalizing your experience. There are two types: session cookies, which are deleted once you close your browser, and persistent cookies, which stay on your device until they are deleted or expire.
2. Pixels, Web Beacons, and Tags: These are tiny, invisible pieces of code or clear graphic images placed on a webpage or in an email. They are used to track user behavior and understand the effectiveness of our marketing efforts. This technology allows us to see if a user has visited a specific webpage or opened an email, enabling us to provide more relevant content and advertisements.
3. Session Replay Tools: These are analytical tools that record how users interact with our website. By capturing mouse movements, clicks, and scrolling behavior, we can gain valuable insights into how our users navigate our platform. This information is crucial in improving the functionality and usability of our website.
4. Embedded Scripts and SDKs: Software Development Kits (SDKs) and embedded scripts are used to integrate third-party functionalities into our website or app. These technologies help us create a richer and more customized user experience. They also help us integrate with third-party services, like social media platforms, payment gateways, and more.

These technologies are a vital part of how our website works and aid us in delivering a seamless and efficient service. By using our website, you agree to the use of these tracking technologies as described. For more information on managing these technologies, please refer to the 'Your Rights' section of our privacy policy.

Here at ENSURAM, we leverage these tracking technologies for several reasons:

1. To Enhance User Experience: We use cookies to remember user preferences and session details, enabling us to provide a personalized browsing experience. This includes remembering login details and providing customized content and features based on your past usage and preferences.
2. For Analytical Purposes: We use pixels, web beacons, session replay tools, and other tracking technologies to monitor user behavior on our website. This helps us understand how our users interact with our services, which in turn allows us to improve our website's functionality, design, and content. Tools like AWS QuickSight and Google Analytics, which uses cookies and tracking technologies, aid in this effort. More on Google Analytics' data practices can be found at www.google.com/policies/privacy/partners and AWS Privacy for Amazon QuickSight.
3. To Improve Performance: By understanding how our website is used, we can identify areas of improvement to enhance our website's performance, speed, and security.
4. For Advertising and Marketing: We use these technologies to show relevant advertisements on our website and third-party platforms. They allow us to measure the effectiveness of our advertising campaigns, making sure we deliver ads that are of interest to our users.
5. To Facilitate Third-party Integrations: With the help of SDKs and embedded scripts, we can seamlessly integrate third-party functionalities into our services, offering users more features and improving their experience.

The application of these technologies is integral to our commitment to providing a robust, user-centric platform that meets and exceeds our users' expectations. It is important to note that while these technologies collect data to offer a better user experience, they do so in line with the privacy measures outlined in our policy.

13. The Data We Retain

We will retain your information for as long as needed to provide you with our services, comply with our legal and statutory obligations or verify your information with a financial institution.

We are statutory obligated to retain the data you provide us with in order to process transactions, ensure settlements, make refunds, identify fraud and in compliance with laws and regulatory guidelines applicable to us, our banking providers and credit card processors.

14. Links to Third Party Websites

1. Our website may contain links to third-party websites or services that are not owned or controlled by us.
2. We have no control over, and assumes no responsibility for, the content, privacy policies, or practices of any third-party websites or services. You further acknowledge and agree that we shall not be responsible or liable, directly or indirectly, for any damage or loss caused or alleged to be caused by or in connection with use of or reliance on any such content, goods or services available on or through any such web sites or services.
3. We strongly advise you to read the terms and conditions and privacy policies of any third-party web sites or services that you visit.

15. Limitation to Liability

We exercise reasonable efforts to safeguard the security and confidentiality of your personal data; however, we will not be liable for unauthorized disclosure of personal data that occurs through no fault of ours.

16. Updates

We reserve the right to amend this Privacy Policy from time to time to reflect changes in legal, regulatory, or operational requirements. Any changes will be posted on our website, and your continued use of our services after such changes signifies your agreement to the updated policy. We encourage you to regularly review this policy to stay informed about our data practices. Should you disagree with any updates to this policy, please discontinue the use of this site.

17. Contact Us

If you have any questions about these Privacy Policy, please contact us:

Ensuram Inc.
Dover, DE, USA
Email: legal@ensuram.com
Website: www.ensuram.com

Effective Date: March 1, 2026

This document was last updated in August 2025.