Last Updated: 23 March 2026

Privacy Policy

1. Information We Collect

We collect different types of information to provide and improve our services, including:

  • Personal Information: Name, contact details (email, phone number), date of birth, and any other details you provide to help match you with a Medicare Advantage plan.
  • Health and Insurance Information: Details about your prescription drugs, healthcare needs, and insurance preferences to generate plan recommendations.
  • Technical Data: IP address, browser type, operating system, and usage details to improve website performance and security.
  • Communication Preferences: Your choices regarding how we contact you and the messages you receive from us or licensed agents.
  • Payment Information: If you make a payment or purchase on our website, your payment details (such as credit or debit card number, billing address, and related data) are collected and processed securely by our third-party payment processor, Stripe. We do not store or have direct access to your full payment card details.

2. How We Use Your Information

We use your information for the following purposes:

  • To match you with potential Medicare plans based on your needs.
  • To facilitate communication with licensed insurance agents who can assist with enrollment.
  • To personalize your experience on our website.
  • To improve our recommendation system.
  • To comply with legal requirements and protect against fraud.
  • To process payments, manage subscriptions, and handle billing through our payment processor, Stripe.

3. Sharing Your Information

We do not sell your personal information. However, we may share it with:

  • Licensed Insurance Agents: To assist you in choosing and enrolling in a Medicare plan.
  • Service Providers: Trusted third parties who help us operate our website and services, including Stripe, Inc., which processes payments on our behalf. Stripe's use of your payment information is governed by their Privacy Policy, available at https://stripe.com/privacy.
  • Legal and Compliance Requirements: If required by law or to protect our rights and users.

4. Use of AI and Machine Learning

Our website may use artificial intelligence (AI) and machine learning (ML) technologies to analyze the information you provide and generate plan recommendations. While AI enhances accuracy and efficiency, it does not replace professional advice from a licensed agent. You should always verify plan details with an agent before making a final decision.

5. Data Security

We implement robust security measures to protect your personal information from unauthorized access, alteration, or disclosure, including end-to-end encryption for all data in transit and at rest. Our infrastructure is hosted on AWS, which holds SOC 2 certification, ensuring our cloud environment meets rigorous standards for security, availability, and confidentiality. We also adhere to HIPAA-compliant data protection and handling practices, and honor your rights under the California Consumer Privacy Act (CCPA) and its amendment, the CPRA. All payment transactions are processed by Stripe, which complies with the Payment Card Industry Data Security Standard (PCI-DSS). We do not store your complete payment card details on our servers.

However, no online platform can guarantee complete security, and we encourage you to take precautions such as keeping your login credentials secure.

6. Your Privacy Rights and Choices

You have control over your personal information, including:

  • Access and Updates: You can request to review or update the personal information we have about you.
  • Communication Preferences: You can manage or opt out of communications from One & Done Smart Bids and your assigned agent at any time.
  • Data Deletion: You may request the deletion of your personal data, subject to legal and operational requirements.

Please note that we may be required to retain certain transaction and billing records, even if you request deletion of your personal information, in order to comply with tax, legal, and accounting obligations.

7. Data Collection Technologies

We use the following technologies to operate and improve our platform:

  • First-Party Cookies (Google Analytics): We use Google Analytics to collect anonymized, aggregated data about how visitors use our platform, such as pages visited and time spent. This data helps us improve our services. We do not use third-party advertising cookies or cross-site tracking cookies. You may opt out of Google Analytics tracking using the Google Analytics Opt-out Browser Add-on.
  • Session Storage: We use browser session storage to temporarily hold non-personally identifiable data to improve platform performance. This data exists only for the duration of your browser session and is automatically cleared when you close your browser tab.

We do not use third-party cookies, advertising trackers, or any tracking technologies that require explicit consent under applicable privacy laws.

8. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices of these external sites and encourage you to review their policies.

9. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page, and continued use of our services means you accept the updated terms.

10. Contact Us

If you have any questions about this Privacy Policy, please contact us through our website.