Privacy Policy
1. INTRODUCTION
Welcome to Corresi Inc. ("Corresi," "we," "us," or "our"). This Privacy Policy describes how we collect, use, disclose, and protect your personal information when you access Corresi Services via our website at www.corresi.com (the "Website") or use of our Corresi mobile applications (the “App”) for class action discovery and claim-filing services (the "Services"). By accessing or using our Services, you consent to the collection, use, and sharing of your information as described in this Privacy Policy. If you do not agree with these terms, please discontinue use of our Services immediately.
Corresi Inc. provides a platform that streamlines class-action settlement identification and claim management for consumers and law firms. Our services include a mobile application for consumers, an enterprise-grade CRM and targeting suite for law firms and settlement administrators, and APIs that connect to financial and social-media data sources to identify potential class-action claims. We are headquartered in Los Angeles, California and operate within the United States. This Privacy Policy explains how we collect, use, disclose and protect personal information when individuals access our websites, mobile applications, or other products and services (collectively, the Services).
We are not a "covered entity" under HIPAA, but we handle sensitive health-related data. As such, we follow the FTC’s Health Breach Notification Rule for vendors of personal health records and other applicable federal and state privacy laws. Our use of artificial intelligence (AI) and automated decision-making technology is governed by emerging state laws in California, Colorado and Texas, which impose duties such as risk assessments, transparency, consumer rights and anti-discrimination safeguards. Because privacy laws vary by jurisdiction, additional notices may supplement this policy for residents of certain states.
By using the Services, you consent to the practices described in this Privacy Policy. If you do not agree with these terms, please discontinue use of the Services. If you have questions or wish to exercise your privacy rights, please contact us using the details in the Contact Us section.
2. INFORMATION WE COLLECT
We collect information directly from you, automatically through your use of our Services, and from third-party sources to provide and improve our Services. When you create an account, submit a claim, or interact with our Services, we may collect your contact information (e.g., name, email address, mailing address, phone number); claim information (e.g., date of birth, purchase history, or other details required for class action claim forms); and payment information (e.g., credit/debit card details, billing address) if you subscribe to our paid plans.
When you visit our Website, we may collect device & browser data (e.g., IP address, device type, browser type, operating system); usage data (e.g., pages visited, time spent, links clicked); and cookies & tracking technologies (e.g., cookies, web beacons, pixels) to enhance user experience and analyze trends.
We use third-party services to measure engagement, detect technical issues, and optimize marketing. These may include Google Analytics, TikTok Pixel, and ActiveCampaign. Each provider operates under its own privacy policy, which we encourage you to review.
We collect personal information from multiple sources, including information you provide directly, information generated automatically through your use of the Services, information obtained from third-party data providers and publicly available sources. Corresi builds data infrastructure to power efficient class-action identification, plaintiff discovery and settlement payout management. For consumers, our mobile app identifies potential class-action settlements, auto-fills and submits claim forms, and tracks payouts. For law firms and administrators, our platform provides targeted claimant discovery, CRM integration and automated claim submission. Our AI-driven recommendation engine analyzes financial transactions, purchase histories, social-media signals and other data to match consumers to relevant settlements. We collect financial aggregation data such as transaction histories and account details through Plaid or similar APIs, used to identify purchases relevant to class-action settlements. We collect enrichment data such as demographic and professional details from services like Clearbit that help match users to potential claims. Social-media and public data, including posts or complaints on platforms like X (formerly Twitter), Facebook, TikTok, YouTube and LinkedIn, may also be processed for this purpose. We only collect publicly available content and honor each platform’s terms of service. We collect public data from court filings, regulatory settlements, product recalls and other records using responsible and legal scraping practices. We do not bypass access restrictions and use licensed data brokers when required. We may also receive data from business customers, including law firms and settlement administrators, about potential claimants they invite to the Services. Some of the data we collect may be considered sensitive personal information under privacy laws. This includes health data, precise geolocation, financial account information, government-issued identification numbers, racial or ethnic origin, sexual orientation, union membership, biometric data, and medical information. We only collect and use such data where reasonably necessary and proportionate for the Services.
Furthermore, If a person becomes aware that Corresi has inadvertently collected data of someone under the age of 18, they should notify Corresi immediately and Corresi will remove the data as soon as reasonably possible.
2.1 APP STORE NOTICE
When you download our mobile application from a third-party app store (such as the Apple App Store or Google Play), please be aware that the app store provider may independently collect certain information, including your device ID, usage statistics, and crash logs. These providers operate under their own privacy policies and terms of service, which we encourage you to review. Corresi does not control and is not responsible for the data collection, use, or disclosure practices of these third-party platforms.
3. CORRESI MOBILE APP DOWNLOADS
When you download our mobile application from a third-party app store (such as the Apple App Store or Google Play), please be aware that the app store provider may independently collect certain information, including your device ID, usage statistics, and crash logs. These providers operate under their own privacy policies and terms of service, which we encourage you to review. Corresi does not control and is not responsible for the data collection, use, or disclosure practices of these third-party platforms.
4. MOBILE APP PERMISSIONS
Our mobile application may request access to certain features or data on your device, such as location services, camera, microphone, contacts, or storage. These permissions are used to enhance your experience and enable specific functionalities within the app. You can manage or revoke these permissions at any time through your device settings. Please note that disabling certain permissions may limit the functionality of the app. For detailed instructions on how to adjust app permissions, refer to your device’s user manual or operating system support resources.
5. HOW WE USE PERSONAL INFORMATION
We use personal information to provide and improve the Services, including matching consumers to eligible class actions, auto-filling claim forms, managing user accounts, delivering settlement notifications, and facilitating settlement payouts. Our machine-learning systems are trained on financial transactions, social signals, and public data to assist in plaintiff discovery, recommendation generation, and service optimization. We perform risk assessments, monitor for algorithmic bias, and ensure human oversight to comply with applicable AI laws. We communicate with users to respond to inquiries, send transactional updates, alert users about new settlements or claim statuses, and provide relevant legal information. Where permitted, we also use personal information for direct marketing, behavioral advertising, and analytics. Our systems respect privacy preferences and opt-out signals, and our analytics data is typically aggregated or de-identified.
We use personal information for legal compliance, including compliance with applicable data protection laws and FTC regulations, responding to court orders and regulatory inquiries, enforcing our policies, preventing fraud, and protecting our legal rights. We maintain the integrity and security of our systems and monitor for unauthorized activity.
We do not use automated decision-making technology to make decisions with legal or similarly significant effects without meaningful human involvement. When high-impact automated decisions are necessary, such as ranking claimants for limited funds, we provide advance notice and allow individuals to request human review.
6. LEGAL BASIS AND COMPLIANCE FRAMEWORK
Corresi complies with the California Consumer Privacy Act (CCPA/CPRA), Colorado’s Artificial Intelligence Act (CAIA), Texas’s Responsible Artificial Intelligence Governance Act (TRAIGA), the FTC’s Health Breach Notification Rule (HBNR), and other applicable state and federal laws. We offer users rights of access, correction, deletion, opt-out, and human review under these frameworks. Corresi’s privacy and data protection measures are implemented across our systems, product design, and internal practices.
7. HOW WE SHARE AND DISCLOSE PERSONAL INFORMATION
We may share personal information in the following circumstances: with class-action administrators and law firms when you request us to file a claim or when a law firm partners with us to identify claimants; with service providers and contractors who host our systems, process payments, provide analytics, send communications, detect fraud, and perform other functions subject to contractual obligations and security safeguards; with analytics and advertising partners under privacy-compliant conditions; with professional advisors such as auditors or lawyers; with government authorities when required by law or for safety reasons; and during business transfers in the context of mergers or acquisitions. We do not sell personal information under CCPA definitions.
8. DATA SECURITY AND RETENTION
We implement administrative, technical, and physical safeguards designed to protect personal information against loss, theft, unauthorized access, disclosure, alteration, and destruction. These measures include encryption in transit and at rest, role-based access controls, intrusion detection, regular security assessments, anonymization or pseudonymization of data where practical, and staff training on data protection. We retain personal information for as long as needed to fulfill the purposes described in this policy, comply with legal obligations (e.g., record-keeping for tax or regulatory requirements), resolve disputes, and enforce our agreements. When personal information is no longer required, we will delete or de-identify it in accordance with our data retention schedule and applicable laws. Aggregated or de-identified data may be retained indefinitely for analytics and research.
9. YOUR PRIVACY RIGHTS AND CHOICES
Colorado, Connecticut, Virginia, and Utah each provide their state residents with rights to:
Access and delete certain personal information.
Confirm whether we process their personal information.
Data portability.
Opt-out of personal data processing for targeted advertising and sales.
Colorado, Connecticut, and Virginia also provide their state residents with rights to:
Correct inaccuracies in their personal information, taking into account the nature of the personal data and the purposes of the processing of the consumer’s personal data.
Opt-out of profiling in furtherance of decisions that produce legal or similarly significant effects.
Nevada provides its residents with a limited right to opt-out of certain personal information sales. Residents who wish to exercise this sale opt-out rights may submit a request to this designated address: hello@corresi.com. However, please know we do not currently sell data triggering that statute's opt-out requirements.
We do not use sensitive personal information in ways that require us to offer a “limit use” option under current laws.
How to Make a Privacy Request
You can ask to access, correct, or delete your personal information by:
Emailing us: hello@corresi.com
To protect your privacy, we’ll need to verify your identity before we can process your request. We may ask for your name, email, and details about your last interaction with us.
You can also appoint someone (an “authorized agent”) to make a request on your behalf. If you do, we’ll need proof that they have your permission.
10. CALIFORNIA ADDENDUM - CALIFORNIA CONSUMER PRIVACY RIGHTS
If you are a California consumer, the following provisions apply to our processing of information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with you or your household (“California Personal Information”). For California consumers, the provisions of this California Addendum prevail over any conflicting provisions in other sections of this Privacy Policy. We do not sell, and in the past 12 months we have not sold, California Personal Information. Additionally, we do not sell or share, and in the past 12 months we have not sold or shared, California Personal Information of individuals we know to be under 16 years of age. We use for internal business purposes customer records information, commercial information, Internet or other network activity information, and geolocation data.
We have collected the following categories of California Personal Information within the last 12 months from the sources listed below:
Identifiers such as name, alias, postal address, unique personal identifier, online identifier, IP address, email address, account name, social security number, driver’s license number, passport number, or other similar identifiers.
Internet or other similar network activity, including, but not limited to, browsing history, search history, browser settings like language preference, and information regarding a consumer’s interaction with a website, application, or advertisement. This category of information is collected from you and your devices. Customer records information (such as name, signature, social security number, physical characteristics or description, address, telephone number, passport number, driver’s license or state identification card number, insurance policy number, education, employment, employment history, bank account number, credit/debit card number, other financial information, medical or health insurance information). Characteristics of protected classifications (such as race, religion, sexual orientation, gender identity, gender expression, age). Commercial information (such as records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories, or tendencies).
Geolocation data. Inferences to a consumer’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes.
We retain each category of California Personal Information as described in this Privacy Policy. For each of the above categories, we use the California Personal Information for a variety of business purposes such as:
Auditing related to counting ad impressions to unique visitors, verifying positioning and quality of ad impressions, and auditing compliance with this specification and other standards; Helping to ensure security and integrity to the extent the use of a consumer's personal information is reasonably necessary and proportionate for these purposes;
Debugging to identify and repair errors in our systems; Short-term, transient use including contextual non-personalized advertising shown as part of a consumer’s current interaction with us; Providing services on our behalf or on behalf of another, including maintaining or servicing accounts, providing customer service, fulfilling transactions, verifying identity information, processing payments, and other services; Conducting internal research to develop and demonstrate technology; Conducting activity to verify, enhance, and maintain the quality or safety of services or devices which we may own, control, or provide; Other business purposes described in the “How We May Use The Information We Collect” Section.
We may also use the information we collect for our own or our service providers’ other operational purposes, purposes for which we provide you additional notice, or for purposes compatible with the context in which the California Personal Information was collected. Within the last 12 months, we have disclosed California Personal Information for our business purposes. To learn more about the categories of third parties with whom we share such information, please see the “Information We Share” Section.
Your California Privacy Rights
If you are a California consumer, you have certain rights related to your California Personal Information, including:
The Right to know what California Personal Information we have collected about you, including the categories of personal information, the categories of California Personal Information, the categories of sources from which the California Personal Information is collected, the business or commercial purpose for collecting, selling, or sharing California Personal Information, the categories of third parties to whom we disclose California Personal Information, and the specific pieces of California Personal Information we have collected about you.
The right to correct inaccurate California Personal Information that we have collected about you.
The right to delete California Personal Information that we have collected from you, subject to certain exceptions.
The right to opt out of the sale or the sharing of California Personal Information.
The right to limit the use or disclosure of your sensitive personal information.
We do not use or disclose sensitive personal information for purposes that, under applicable law, require us to support the right to limit the use or disclosure of sensitive personal information.
The right not to receive discriminatory treatment by the business for the exercise of privacy rights conferred by applicable law, including the right not to be retaliated against for the exercise of your rights.
You may request to exercise these rights by:
Emailing us at Hello@corresi.com
As required under applicable law, we will take steps to verify your identity before granting you access to information or acting on your request to exercise your rights. We may require you to provide your first name, last name, email address, the amount of your last transaction and the date of your last transaction to verify your identity in response to exercising requests of the above type. We may limit our response to your exercise of the above rights as permitted under applicable law. When you submit a request to exercise your rights above, we will use the information you provide to process your request and to maintain a record of your request and our response, as permitted under applicable law.
Under California law, you may designate an authorized agent to make a request on your behalf. You may make such a designation by providing the agent with written permission to act on your behalf. We will require the agent to provide proof of that written permission. To the extent permitted by law, we may require you to verify your own identity in response to a request, even if you choose to use an agent.
California Do Not Track
California Business & Professions Code Section 22575(b) (as amended effective January 1, 2014) provides that California residents are entitled to know how we respond to “Do Not Track” browser settings. We do not currently take actions to respond to Do Not Track signals because a uniform technological standard has not yet been developed. However, we respond to the GPC signals as the opt out preference signal. This California-specific addendum was last reviewed and updated as of January 1, 2023.
11. INTERNATIONAL DATA TRANSFERS
Our servers are located in the United States, and our service providers may process personal information in the U.S. or other countries. If you access the Services from outside the United States, your information may be transferred to, stored in and processed in the United States, where data protection laws may differ from those in your jurisdiction. By using the Services, you consent to these transfers. When transferring data internationally, we implement appropriate safeguards, such as standard contractual clauses, to protect your information.
12. THIRD-PARTY LINKS AND SERVICES
The Services may contain links to third-party websites, plug-ins, applications or services. We are not responsible for the privacy practices or the content of those third parties. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We encourage you to read the privacy policies of every website or service you visit.
13. CHANGES TO THIS PRIVACY POLICY
We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, and other factors. We will notify you of material changes by posting an updated version on our Website and indicating the date of the latest revision at the top of this document. In certain cases, we may provide additional notice (such as email notifications or in-app alerts). Your continued use of the Services following any updates constitutes acceptance of the revised Privacy Policy.
14. CONTACT US
If you have any questions, concerns, complaints, or requests related to this Privacy Policy or our data practices, please contact us at:
Corresi Inc.
Email: hello@corresi.com
Website: www.corresi.com
We are committed to addressing your inquiries promptly and protecting your privacy to the best of our ability.