Privacy Policy
How AskSasson.com collects, uses, and protects your information, and the privacy rights you hold in Nevada, Texas, Florida, Arizona, and Virginia.
Last updated: May 15, 2026
Looking for state-specific privacy rights or the AI assistant disclaimer? Visit the Disclosure Center for state disclosure hubs (Nevada, Texas, Florida, Arizona), educational content disclaimers, and terms of use.
The Short Version
We collect only what you submit. We do not sell your information. If you request follow-up, we use your details to respond to you. If you become a client, additional disclosures may apply.
What We Collect
When you fill out a form on this site, we may collect:
- Contact information: name, email, and/or phone number
- Preferences: what you asked about and how you want to be contacted
- State of residence: to apply the correct licensing and disclosures
- Optional details: notes you choose to provide
- Consent record: your permission to contact you, the date and time it was given, and the exact consent language you agreed to
- Technical identifiers: IP address and browser information, retained solely as proof of consent for TCPA compliance
We do not request Social Security numbers, medical records, banking information, or other highly sensitive data through this website.
How We Use Your Information
- To respond to your request and provide educational information
- To contact you only if you gave permission
- To maintain a consent audit trail as required by federal and state law
- To improve the clarity and quality of our communication
Where Your Information Goes
Form data is handled only for the purpose of responding to your request. We do not sell, rent, or share your information with third parties for their marketing.
Your information is stored in a secure database and may also be recorded in a private spreadsheet used solely by Sasson Emambakhsh for follow-up purposes. If you decide to work with us, your information may be recorded in secure client management systems and handled consistent with applicable law and the requirements of the issuing carrier(s).
Data Retention
Inquiry records submitted through this website are retained for five (5) years from the date of submission. After this period, records are automatically and permanently deleted from our systems.
If you become a client, records are retained in accordance with applicable state insurance regulations and issuing-carrier requirements, which may require longer retention periods.
Your Rights and Choices
- Opt out anytime: Tell us to stop contacting you and we will honor that request immediately
- Request deletion: You may request that your inquiry record be permanently deleted. We will process deletion requests within 30 days. Note: if you have become a client, certain records may be subject to mandatory regulatory retention requirements
- Request your data: You may request a copy of the information we hold about you
- Don't submit: You choose what to send; you are never required to submit a form
To exercise any of these rights, contact Sasson Emambakhsh directly. See the main page for contact details.
Data Security
We use reasonable safeguards to protect your information, including HTTPS encryption for all data in transit (enforced via Cloudflare) and access controls on our database systems. No internet transmission is 100% secure, so we cannot guarantee absolute security. We comply with the FTC Safeguards Rule applicable to insurance producers.
Gramm-Leach-Bliley Act (GLBA) Annual Privacy Notice
As a licensed insurance producer, Sasson Emambakhsh is subject to the federal Gramm-Leach-Bliley Act (GLBA). This notice describes our privacy practices for customers and former customers.
What information we collect and why
We collect nonpublic personal information about you from the following sources:
- Information you provide on applications or other forms (name, address, phone, email, age, beneficiaries)
- Information about your transactions with us, our affiliates, or others (policy numbers, premiums, payment history)
- Information from consumer reporting agencies or other third parties, if you become a client and an application is submitted (credit information, medical information where permitted)
How we share your information
| Reasons we can share your personal information | Do we share? | Can you limit this sharing? |
|---|---|---|
| For our everyday business purposes, such as to process your transactions, maintain your account(s), respond to court orders and legal investigations, or report to credit bureaus | Yes | No |
| For our marketing purposes, to offer our products and services to you | Yes | No |
| For joint marketing with other financial companies | No | We don't share |
| For our affiliates' everyday business purposes, information about your transactions and experiences | Yes | No |
| For our affiliates' everyday business purposes, information about your creditworthiness | No | We don't share |
| For our affiliates to market to you | No | We don't share |
| For nonaffiliates to market to you | No | We don't share |
"Affiliates" means companies related by common ownership or control, as an independent insurance practice, we have no corporate affiliates. "Nonaffiliates" means companies not related by common ownership or control; we do not share your information with nonaffiliates for their marketing. "Joint marketing" means a formal agreement between nonaffiliated financial companies to market financial products or services to you; we do not engage in joint marketing arrangements.
If you become a client, you will receive a separate GLBA privacy notice from the issuing insurance carrier that covers that relationship in full.
Information Protection & Security Program
We are committed to protecting the security and confidentiality of your nonpublic personal information. Our information protection program includes the following safeguards:
- Encryption: All data transmitted through this website is encrypted in transit using TLS/HTTPS, enforced via Cloudflare. Data at rest in our systems is stored with industry-standard encryption.
- Access controls: Access to client and prospect information is restricted to authorized personnel only. Systems require authentication to access stored data.
- Firewalls and intrusion detection: Our hosting infrastructure employs network firewalls, DDoS protection, and automated threat detection provided by Cloudflare and our hosting provider.
- Employee and service provider oversight: Any vendors or service providers who access client data (e.g., CRM systems, email platforms) are contractually required to maintain appropriate safeguards and are prohibited from using your information for any purpose other than providing the contracted service.
- Physical security: Paper records containing client information are stored securely. We follow industry-standard security and record-retention practices for client files.
- Incident response: In the event of a suspected or confirmed data security incident, we will investigate promptly and notify affected individuals as required by applicable state laws (Nevada NRS 603A, Texas Bus. & Commerce Code § 521.053, Arizona ARS § 18-552, and Florida Fla. Stat. § 501.171).
- Regular review: We review and update our security practices periodically to address new threats and changes in our business operations.
While we implement these safeguards, no system is completely immune from security threats. If you have reason to believe your information may have been compromised, contact us immediately at [email protected] or (702) 970-3811.
State-Specific Privacy Notices
Nevada residents (NRS 603A): You have the right to opt out of the sale of covered personal information. We do not sell personal information. You may submit a verified request to know or delete your data by contacting us directly.
Texas residents (TDPSA): Texas residents have the right to access, correct, delete, and obtain a copy of personal data, and to opt out of the sale of personal data or targeted advertising. We do not sell personal data or use it for targeted advertising. To exercise your rights, contact us directly.
Florida residents: Florida's Digital Bill of Rights may apply to certain large data processors. We are a small independent practice and do not process data at the scale that triggers FDBR obligations, but we honor the same rights, access, correction, and deletion, upon request.
Arizona residents: Arizona requires notification of data breaches involving personal information. In the event of a breach affecting your information, we will notify you as required under ARS § 18-552.
Virginia residents (VCDPA): Under the Virginia Consumer Data Protection Act, Virginia residents have the right to (1) confirm whether we process your personal data; (2) access your personal data; (3) correct inaccuracies in your personal data; (4) delete your personal data; (5) obtain a portable copy of your personal data; and (6) opt out of the processing of your personal data for purposes of targeted advertising or the sale of personal data. We do not sell personal data and do not use it for targeted advertising. To exercise any of these rights, contact us directly at [email protected]. We will respond within 45 days as required by law.
Cookies and Tracking
Strictly necessary cookies are always active: they keep your session secure, protect forms against cross-site request forgery, and remember your cookie choice. These do not require consent.
Analytics cookies are off by default. We load them only after you opt in to the "Analytics" category in the cookie banner. With your consent we use Google Analytics, PostHog, and Ahrefs Web Analytics to understand how visitors use the site in aggregate. We do not use advertising cookies or sell your data, and analytics activity is not linked to your form submission.
You can change or withdraw your choice at any time using the Cookie preferences link in the footer of every page.
Text Messaging (SMS)
If you opt in to receive text messages, the following applies:
- Consent required: We only send text messages if you explicitly opt in by checking the SMS consent box on our form
- One-to-one consent: Your consent is given to Sasson Emambakhsh only and is not shared with or transferred to any other party
- Message frequency: Varies based on your requests and our follow-up schedule
- Message & data rates: Standard carrier rates may apply
- Opt out: Reply STOP to any message to unsubscribe immediately
- Help: Reply HELP for assistance
- Not required: SMS consent is not required to receive our services or schedule a consultation
We record the date, time, IP address, and exact consent language at the time you opt in, as required for TCPA compliance. We do not share your phone number with third parties for their marketing purposes.
Do Not Call
We honor the National Do Not Call Registry. If you have asked us not to contact you, we will respect that request. To opt out of future communications, simply tell us during any conversation, reply STOP to any text message, or contact us directly.
CAN-SPAM (Email)
Any follow-up emails we send comply with the CAN-SPAM Act. Every email includes our physical business address and a clear way to opt out of future emails. We honor opt-out requests promptly.
Personal and Licensing Disclosures
Licensed in: Nevada (#4185790) | Texas (#3460699) | Florida (#G322852) | Arizona (#22097825) | Virginia (#1569892)
Contact Us
Questions about this policy, data requests, or deletion requests? Contact Sasson Emambakhsh, Las Vegas, NV. See the main page for contact details.
Note: Product and carrier privacy notices may apply if you become a client. Refer to the applicable carrier's privacy notices for additional details.
← Back to home | Compliance & Legal
Sasson Emambakhsh is a licensed representative (NV #4185790 | TX #3460699 | FL #G322852 | AZ #22097825 | VA #1569892). This page provides educational information only and does not constitute financial, legal, or tax advice.