Privacy Policy

Last Updated: [DATE]

Available Health, Inc. ("we," "us," or "our") operates Available Health (the "App") and the associated website. This Privacy Policy describes how we collect, use, and protect your information when you use our services.

By using Available Health, you agree to the collection and use of information in accordance with this policy.

1. Information We Collect

A. Health Data (Stored Locally on Your Device)

Available Health allows you to import, store, and manage personal health records. All health data you import into Available Health is stored locally on your Mac. We do not store your health records on our servers.

When you interact with AI features, portions of your health data may be sent to third-party AI providers (see Section 3). Before transmission, we apply de-identification processes designed to remove or obscure personally identifiable information such as names, dates of birth, addresses, and insurance identifiers. However, we cannot guarantee that all personal information will be successfully de-identified in every case.

B. Account Information (Stored in the Cloud)

When you create an account using Sign in with Apple or Sign in with Google, we collect and store the following information on our servers:

  • Your email address
  • Your name (as provided by the authentication service)

This account information is stored in Google Cloud Platform (Firestore) and is used to manage your account and subscription.

C. Payment Information

If you subscribe to a paid plan, your payment information is collected and processed by Stripe, our third-party payment processor. We do not store your credit card details on our servers. Please review Stripe's Privacy Policy for information on how they handle your payment data.

D. Usage Analytics

We collect anonymized usage analytics from both the App and our website to understand how our services are used and to improve the user experience. This analytics data does not include your health information.

2. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve Available Health
  • Process your subscription and payments
  • Communicate with you about your account or our services
  • Analyze usage patterns to improve the App (using non-health analytics data)
  • Comply with legal obligations

3. Third-Party Services

Available Health integrates with third-party services to provide AI-powered features. When you use these features, de-identified portions of your health data may be transmitted to:

A. Free Plan

If you use the free plan with your own OpenAI API key, your de-identified health data is sent to OpenAI's standard API services. This data is subject to OpenAI's Privacy Policy.

B. Paid Plan

Paid subscribers benefit from a HIPAA-compliant AI infrastructure hosted on Microsoft Azure with a zero-data-retention policy. Data sent to this service is processed and returned to your device without being retained in the cloud.

Data import features (available on paid plans) are processed through Google Cloud Platform (Vertex AI) under a HIPAA Business Associate Agreement.

C. Other Third-Party Services

  • Google Cloud Platform (Firestore): Stores account information
  • Stripe: Processes payments
  • Analytics providers: Collect anonymized usage data

4. Data Security

Your health data is stored locally on your Mac. The security of this data depends on the security measures you have enabled on your device, such as FileVault disk encryption, password protection, and other macOS security features.

We do not add additional encryption layers on top of your Mac's native security. You are responsible for securing your device and ensuring appropriate security measures are in place.

Account information stored on our servers is protected using industry-standard security measures provided by Google Cloud Platform.

5. Data Retention and Deletion

Health data: Since your health data is stored locally on your Mac, you have full control over it. You can delete it at any time through the App or by removing the App from your device.

Account data: If you wish to delete your account and associated data from our servers, please send a written request to support@available.health. We will delete your account information within 30 days of receiving your request.

6. We Do Not Sell Your Data

We do not sell, rent, or trade your personal information or health data to third parties for marketing or advertising purposes.

7. Legal Disclosure

We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., a court or government agency).

8. Children's Privacy

Available Health is intended for users who are 18 years of age or older. We do not knowingly collect personal information from anyone under the age of 18. If we become aware that we have collected personal information from someone under 18, we will take steps to delete that information.

9. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you by email and update the "Last Updated" date at the top of this policy. Material changes will take effect 30 days after notice is provided. Your continued use of Available Health after changes become effective constitutes acceptance of the revised policy.

10. Contact Us

If you have any questions about this Privacy Policy, please contact us at: support@available.health