Back to Policies

App Privacy Policy

Effective Date: January 1, 2025

1. Introduction

Carebrain, Inc. ("Carebrain," "we," "us," or "our") is committed to protecting the privacy of users of our mobile application (the "App"). This Privacy Policy explains how we collect, use, disclose, and safeguard information through the App.

This Privacy Policy applies specifically to the Carebrain mobile application. For information about our website privacy practices, please see our Website Privacy Policy.

2. HIPAA Compliance

The App processes Protected Health Information (PHI) as defined under the Health Insurance Portability and Accountability Act (HIPAA). We maintain HIPAA-compliant policies and procedures to protect PHI. Our handling of PHI is governed by our Business Associate Agreement with your healthcare organization.

PHI processed through the App is subject to HIPAA protections and is not covered by this general Privacy Policy except as otherwise noted. Please contact your healthcare organization's privacy officer for questions about PHI.

3. Information We Collect

3.1 Account Information

When you create an account, we collect:

  • Name and professional credentials
  • Email address and phone number
  • Healthcare organization affiliation
  • National Provider Identifier (NPI) number
  • Professional license information

3.2 Usage Information

We automatically collect information about your use of the App, including:

  • Device information (device type, operating system, unique device identifiers)
  • App usage data (features used, time spent, actions taken)
  • Error logs and diagnostic information
  • Login times and session duration

3.3 Audio and Voice Data

When you use our AI scribe feature, we process audio recordings of your clinical encounters. This audio is used to generate clinical documentation and is processed in accordance with HIPAA requirements.

3.4 Location Information

With your consent, we may collect location information to verify you are in a jurisdiction where you are licensed to practice and for security purposes.

4. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve the App and its features
  • Process and generate clinical documentation
  • Verify your identity and professional credentials
  • Communicate with you about the App and your account
  • Provide customer support
  • Monitor for security threats and unauthorized access
  • Comply with legal obligations and regulatory requirements
  • Conduct research and analytics to improve our services (using de-identified data)

5. Information Sharing

We may share your information with:

  • Your Healthcare Organization: We share necessary information with your employing organization as part of our service delivery
  • Service Providers: We use third-party vendors who help us operate the App (e.g., cloud hosting, analytics), bound by confidentiality agreements
  • EHR Systems: When you use our integration features, information flows to your connected EHR system
  • Legal Requirements: We may disclose information when required by law, subpoena, or legal process
  • Business Transfers: In connection with a merger, acquisition, or sale of assets

We do not sell your personal information or PHI.

6. Data Security

We implement robust technical, administrative, and physical safeguards to protect information processed through the App, including:

  • Encryption of data in transit and at rest using industry-standard protocols
  • Multi-factor authentication requirements
  • Regular security assessments and penetration testing
  • Access controls and audit logging
  • Employee security training and background checks
  • Incident response and breach notification procedures

7. Data Retention

We retain your information for as long as your account is active or as needed to provide services. We may retain certain information as required by law, to resolve disputes, enforce agreements, or for legitimate business purposes. PHI is retained in accordance with HIPAA requirements and our agreements with healthcare organizations.

8. Your Privacy Rights

Depending on your jurisdiction, you may have rights to:

  • Access the personal information we hold about you
  • Request correction of inaccurate information
  • Request deletion of your personal information (subject to legal retention requirements)
  • Object to or restrict certain processing activities
  • Data portability

For rights related to PHI, please contact your healthcare organization's privacy officer. For other privacy requests, contact us at privacy@carebrain.com.

9. California Privacy Rights

California residents have additional rights under the California Consumer Privacy Act (CCPA), including the right to know, delete, and opt-out of sale (we do not sell personal information). To exercise these rights, contact us at privacy@carebrain.com.

10. Children's Privacy

The App is intended for use by healthcare professionals and is not directed to individuals under 18 years of age. We do not knowingly collect personal information from children under 18.

11. Changes to This Privacy Policy

We may update this Privacy Policy periodically. We will notify you of material changes through the App or by email. Your continued use of the App after changes become effective constitutes acceptance of the revised Privacy Policy.

12. Contact Us

If you have questions about this Privacy Policy or our privacy practices, please contact:

Carebrain, Inc.
Privacy Officer
Email: privacy@carebrain.com
Website: www.carebrain.com