Privacy Policy

1. What we collect

When you create a Conceptual Health account, we collect the information you provide (name, date of birth, contact information), the health information you connect (records, wearable data, lab results), the actions you take in our products (appointments, messages, axis ratings), and standard technical telemetry (device type, IP address for fraud detection, crash reports). We do not collect biometric identifiers we have not asked for, and we do not buy data about you from third parties.

2. How it's stored

All health information (records, lab results, imaging, charts, notes, axis history) is encrypted at rest with a key derived from a passkey held on your device. We cannot decrypt this data without your active grant. Account information (login, contact details) is encrypted with our keys for operational reasons but is never sold or shared except as described in §4.

3. How it's used

We use your data to provide the products you signed up for, calculate your CH score and axis breakdown, route care, settle payments, prevent fraud, and meet our regulatory obligations. We use de-identified, aggregated patterns (with no path back to you) to improve our models. We do not use your data to train third-party AI.

4. When we share

We share your data when you tell us to (granting a clinician access, joining the HCC research marketplace), when required by law (court orders, mandatory reporting), and with our subcontractors who need access to operate the service (payment processors, infrastructure providers — all bound by BAAs). We do not sell your data and we do not share it for advertising.

5. HCC research participation

HCC is opt-in. If you choose to participate, your de-identified clinical signal is licensed to vetted research partners under a published consent. You earn HCC for the participation, you can revoke consent at any time, and revocation prevents future use (we cannot retroactively unlearn what's already been published, but we can stop new use immediately).

6. Your rights

You have the right to access your data, export it in a standard format (FHIR for clinical, CSV for behavioral), correct it, delete it, and revoke past consents. You exercise these rights from inside the patient app — no support ticket required. For GDPR users, you also have the right to data portability and to lodge a complaint with your local data protection authority.

7. Retention

Active health records are retained as long as your account is open. Closed accounts have records retained per HIPAA-mandated minimums (typically 6 years for adults, longer for minors). You can request hard deletion at any time, subject to those minimums and any active legal hold.

8. Children's privacy

Patients under 18 register through a guardian flow. The guardian holds the keys until the patient transitions to majority, at which point ownership transfers under our published transition protocol.

9. Contact

Questions about this policy: privacy@conceptualhealth.com. Data subject requests: from inside the app, or privacy@conceptualhealth.com. EU residents may also contact our Data Protection Officer at dpo@conceptualhealth.com.

10. Changes

We post material changes 30 days before they take effect, in-app and via email. Non-material changes (clarifications, typo fixes) take effect on posting.