Privacy Policy

Effective Date: 2026-05-12 Last Updated: 2026-05-12

1. Introduction

This Privacy Policy explains how Jason Chad Baar ("Jason," "we," "us," or "our") collects, uses, shares, and protects personal information when you visit JasonKnowsMedicare.com (the "Site") or use the services offered through it (the "Services"). Jason Chad Baar operates as a sole proprietor in Florida (United States) under Florida Unaffiliated Insurance Agent License W149493 (Type 2-15) and National Producer Number (NPN) 2033715.

By using the Site or our Services, you acknowledge that you have read and understood this Privacy Policy.

If you do not agree with our practices, please do not use the Site or our Services.

2. Information We Collect

2.1 Information You Provide Directly

  • Contact form submissions: name, email address, U.S. state of residence, county of residence, and the contents of the message you send us.
  • Scheduling and booking data: information you provide when booking a consultation through our third-party scheduling platform (currently Calendly). This may include name, email, phone number, state, county, and answers to intake questions.
  • Payment information (when paid Services are launched): when you purchase a paid Service, our payment processor (Stripe and/or PayPal) collects your payment-card or account information directly through their secure payment forms. We do not store full payment-card details on our systems; we receive only the confirmation that payment was successful and the last four digits of the card or the account identifier needed for our records.
  • Communications: the content of emails, voicemails, text messages, phone conversations, and consultation discussions with Jason, where you provide such content.
  • Newsletters and downloadable content (future): if and when we offer newsletters, free downloadable guides, or other content delivered via email, your email address and any preferences you select.

2.2 Information Collected Automatically (Cookies and Similar Technologies)

When you use the Site, we and our service providers may collect certain information automatically through cookies, web beacons, pixel tags, and similar technologies. This includes:

  • Essential cookies (Shopify): required for the Site to function — session management, security, shopping-cart state for paid Services, and similar.
  • Analytics cookies (planned — Google Analytics 4): when Google Analytics 4 is deployed, it will collect aggregated usage data including pages viewed, time on site, device type, browser type, approximate location based on IP address, and referral source.
  • Advertising cookies and pixels (planned — multiple platforms): when our paid-advertising program launches, conversion-tracking and remarketing tags from one or more advertising platforms may be placed on the Site. Platforms may include Google Ads, Meta (Facebook/Instagram) Ads, LinkedIn Ads, Pinterest Ads, AI-powered search and advertising platforms (including those that emerge as search shifts toward AI assistants), and other social-media or search platforms we elect to use. These tags allow the respective platforms to (a) measure the effectiveness of our ads, (b) build remarketing audiences so we may show ads to past visitors of the Site, and (c) attribute conversions to specific ad campaigns. Note that for California residents, this activity may constitute "sharing" of personal information for cross-context behavioral advertising under the CCPA/CPRA — see Section 6 for your opt-out rights.
  • Cookie consent: we plan to deploy a cookie-consent banner before launching analytics or advertising cookies. You will be able to accept, reject, or customize cookie categories.

2.3 Information from Third Parties

  • Calendly: booking data, calendar availability, and any data you provide in the Calendly intake form (state, county, phone, message).
  • Google (Calendar integration): when bookings are made through Calendly, Google Calendar receives event details for your scheduled appointment.
  • Stripe / PayPal (future): payment confirmation data, fraud-prevention signals, and chargeback notifications.
  • Advertising platforms (planned): Google Ads, Meta (Facebook/Instagram) Ads, LinkedIn Ads, and other social-media, search, or AI-powered advertising platforms we may use — receive aggregated campaign performance and conversion-attribution data, and (where you have not opted out) cross-context behavioral advertising signals.
  • DocuSign (or similar e-signature service): when you sign an engagement agreement for paid Services, the e-signature provider processes your name, email, signature image, IP address used to sign, and similar identity-verification data on our behalf.
  • CRM platform (planned): when we adopt a customer-relationship-management tool (e.g., HubSpot, Pipedrive, Salesforce, or similar), client engagement records — including contact information and engagement history — will be stored and processed within that platform under reasonable security and confidentiality practices.
  • Service providers and contractors Jason may engage from time to time (e.g., a compliance lawyer, accountant, or virtual assistant) who handle limited information under confidentiality obligations.

2.4 Call Recordings and Transcripts (When Applicable)

From time to time, Jason may record consultation calls or use AI transcription services to capture meeting content for accuracy of advisory records.

When Jason records a call, he will inform you at the start of the call and obtain your verbal consent. If you do not consent to recording, the call will proceed without recording. Florida is a two-party consent state, and Jason complies with applicable state and federal recording-consent laws.

When recordings or transcripts are made:

  • They are retained as part of your engagement records (see Section 8 — Data Retention).
  • They may be processed by an AI transcription service provider to generate written transcripts. We do not name a specific AI transcription provider in this Policy because we may use different tools at different times; any provider used will be a reputable service with reasonable security practices.
  • They are subject to the same security, retention, and sharing rules described elsewhere in this Policy.

3. How We Use Information

We use information to:

  • Respond to inquiries and provide the information or scheduling you request.
  • Provide and improve our advisory Services.
  • Process payments for paid Services.
  • Comply with insurance-regulatory recordkeeping obligations in our licensed states.
  • (With your consent, where required by law) send service updates, educational content, and newsletters.
  • (Future) Measure the effectiveness of our advertising and improve our marketing.
  • Detect, prevent, and address fraud, security incidents, or illegal activity.
  • Comply with legal obligations (tax filings, court orders, regulatory audits, etc.).
  • Enforce our Terms of Service and other policies.

4. Cookies and Tracking Technologies

We use cookies and similar technologies to operate, analyze, and (in the future) advertise on the Site. You can control cookies through several mechanisms:

  • Our cookie consent banner (once deployed): accept, reject, or customize cookie categories.
  • Your browser settings: most browsers allow you to refuse cookies entirely or alert you when one is set.
  • Industry opt-out tools:
  • Network Advertising Initiative — https://optout.networkadvertising.org/
  • Digital Advertising Alliance — https://optout.aboutads.info/
  • Your Ad Choices — https://youradchoices.com/
  • Google-specific opt-outs:
  • Google Ads Personalization — https://adssettings.google.com/
  • Google Analytics Opt-Out Browser Add-on — https://tools.google.com/dlpage/gaoptout

Some Site functionality may be limited if you disable certain cookies. Essential cookies (required to operate the Site) cannot be disabled without making the Site non-functional.

5. How We Share Information

We share personal information only with:

  • Service providers who help operate the Site or deliver Services on our behalf, including providers of hosting, scheduling, payment processing, email, analytics, and advertising. Such providers handle personal information only as needed to perform their services.
  • Third-party software providers, including providers of AI-based research, drafting, and analysis tools.
  • Professional advisors to Jason (compliance lawyer, accountant, designer, virtual assistant), under confidentiality obligations, when their work requires access to specific information.
  • Government agencies or regulatory bodies as required by law, including state insurance departments for audit purposes.
  • Courts or law-enforcement in response to subpoenas, court orders, or other valid legal process.
  • To protect rights, property, or safety of Jason, you, or others.

5.1 Sale of Personal Information

We do not sell personal information for money. Under the California Consumer Privacy Act (CCPA/CPRA) and similar state laws, the term "sale" is defined broadly and can include sharing of certain data for cross-context behavioral advertising. When we deploy advertising technology (such as Google Ads remarketing), this activity may be characterized as "sharing" under California law. You have the right to opt out — see Section 6.

6. Your Privacy Rights

Depending on your state or country of residence, you may have rights regarding your personal information, including:

6.1 California Residents (CCPA / CPRA)

You have the right to:

  • Know what categories of personal information we collect, the sources of that information, the business purposes for collecting it, and the categories of third parties with whom we share it.
  • Access the specific pieces of personal information we have collected about you in the prior 12 months.
  • Delete personal information we have collected about you, subject to legal exceptions (e.g., insurance-regulatory recordkeeping).
  • Correct inaccurate personal information we hold about you.
  • Opt out of sale or sharing of personal information for cross-context behavioral advertising (this includes Google Ads remarketing once deployed). When our cookie consent banner is live, you may exercise this right through the banner. You may also email us via the contact form, or write to the address in Section 13. We plan to add a "Do Not Sell or Share My Personal Information" link in the Site footer when advertising activity goes live.
  • Limit use of sensitive personal information (we do not collect or use sensitive personal information for purposes beyond providing the requested Services).
  • Non-discrimination: we will not discriminate against you for exercising any of these rights.

To submit a request, contact us via the contact form on the Site or by mail at the address in Section 13. We will verify your identity (typically by confirming information you have provided to us). Authorized agents may submit requests on your behalf with verifiable authorization.

6.2 Florida Residents (FIPA)

We comply with the Florida Information Protection Act requirements regarding security of personal information and breach notification. You may contact us to inquire about our practices.

6.3 Residents of Other U.S. States with Comprehensive Privacy Laws

If you reside in a U.S. state with a comprehensive privacy law, you may have rights similar to those described above. Rights and exemptions vary by state. Contact us to exercise your rights.

6.4 European Union / United Kingdom Residents (GDPR / UK GDPR)

The Site is intended primarily for U.S. residents. If you are in the EU or the UK, you may have rights under the General Data Protection Regulation, including access, rectification, erasure, restriction of processing, portability, and objection. The lawful bases on which we would process your data include consent, performance of a contract, compliance with legal obligations, and legitimate interests.

We do not currently target the EU or UK markets, and most of our paid Services are limited to U.S. states where Jason holds an active insurance license.

6.5 Limits on Our Ability to Delete

Some information cannot be deleted on request because we are required to retain it under insurance-regulatory or tax-recordkeeping obligations. In such cases, we will inform you of the legal basis for retaining the information.

7. How to Exercise Your Rights

To exercise any privacy right described in this Policy, contact us via:

  • Web form: the contact form on the Site
  • Mail: Jason Chad Baar, 382 NE 191st Street STE 54441, Miami, FL 33179

We will respond within 30 days (or such longer period as may be permitted by applicable law).

8. Data Retention

We retain personal information only as long as necessary to:

  • Provide Services and respond to inquiries.
  • Meet insurance-regulatory recordkeeping requirements (typically 5–7 years from the end of an engagement, per state insurance department requirements).
  • Resolve disputes and enforce agreements.
  • Comply with tax and other legal obligations.

General retention period. Jason retains personal information for up to 7 years from the most recent interaction with you or the end of your engagement, whichever is later. Two categories of exceptions apply:

Service-provider limits. Where a third-party service provider sets its own shorter retention period, that limit applies. Examples include but are not limited to:

  • Google Analytics (14-month maximum)
  • Calendly (per Calendly's retention policies)
  • Email marketing platforms (varies by provider — e.g., Mailchimp, ConvertKit, Klaviyo)
  • Advertising platforms — Google Ads, Meta (Facebook/Instagram) Ads, LinkedIn Ads, and other social-media, search, or AI-powered ad platforms (each sets its own retention)
  • AI transcription services
  • DocuSign (signed-document retention per their terms)
  • CRM platforms (when adopted)
  • Stripe and/or PayPal (payment-platform retention per their terms)

Legal deletion requirements. Where applicable law requires earlier deletion — for example, a verified privacy-law request from a resident of California, Florida, Virginia, Colorado, or another state with comprehensive privacy rights, AND insurance-regulatory recordkeeping does not require continued retention — we will comply with the legal requirement.

Email subscriber lists (when applicable): retained until you unsubscribe, with reasonable suppression-list retention thereafter to honor your unsubscribe request, all subject to the 7-year general maximum.

9. Data Security

We implement reasonable technical and organizational measures to protect personal information, including HTTPS-encrypted transmission, PCI-DSS-compliant payment processing, limited internal access governed by confidentiality obligations, and multi-factor authentication on operational accounts. No transmission over the internet or method of electronic storage is 100% secure; we cannot guarantee absolute security. If a security breach affecting your personal information occurs, we will notify you and applicable authorities as required by law.

10. Children's Privacy

The Site and Services are not directed at children under 18. We do not knowingly collect personal information from minors. The Medicare audience is, by definition, adults aged 65 and older or younger adults with qualifying disabilities. If we learn we have collected personal information from a child under 18, we will delete it promptly. If you believe a minor has provided us personal information, contact us at the address in Section 13.

11. International Visitors

The Site is operated from the United States. By using the Site, you acknowledge that your information will be processed in the United States. We do not currently provide Services to residents outside the United States, and our advisory Services are limited to U.S. states where Jason holds an active insurance license.

12. Third-Party Links

The Site may contain links to third-party websites (for example, Medicare.gov, the Centers for Medicare and Medicaid Services (CMS), KFF, state insurance department websites, and Apple, Google, or Microsoft for ecosystem-related services). Those sites are not operated by us, and we are not responsible for their privacy practices. Please review their privacy policies before providing any personal information.

13. Contact Us

For questions about this Privacy Policy or our privacy practices:

By web form: the contact form on the Site

By mail: Jason Chad Baar 382 NE 191st Street STE 54441 Miami, FL 33179

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, in the technology we use, in applicable law, or for other operational reasons. The "Last Updated" date at the top of this Policy reflects the most recent revision. Material changes will be communicated through a prominent notice on the Site for a reasonable period.

Your continued use of the Site after the effective date of a revision constitutes acceptance of the revised Policy.

15. Medicare-Specific Disclosures

The following disclosures are required by federal Medicare regulations and are repeated here for clarity:

  • Not connected with or endorsed by the U.S. Government or the federal Medicare program (Section 1140 of the Social Security Act).
  • Jason Chad Baar is not a Third Party Marketing Organization (TPMO) under 42 C.F.R. § 422.2260. Jason does not market specific insurance plans on behalf of any insurance carrier, does not sell insurance products, and does not earn commissions from any insurance carrier.
  • No sale, sharing, or transfer of client contact information. Jason does not sell, share, or transfer client contact information to insurance carriers, commissioned insurance agents, lead-generation companies, or third-party marketing organizations for solicitation, marketing, or any other purpose. Jason does not earn referral fees, finder's fees, commissions, or any other compensation from insurance carriers, commissioned insurance agents, or other parties based on referrals or introductions of clients.
  • State-licensed advisor. Jason holds the Florida Unaffiliated Insurance Agent License W149493 (Type 2-15) and is licensed in additional states as listed on the Licenses page of the Site. National Producer Number (NPN): 2033715.

This Privacy Policy is provided as a starting point. It should be reviewed by qualified legal counsel before publication, particularly the insurance-regulatory provisions and any provisions affected by recent changes in U.S. state privacy laws.