Lyfe AI Platform - HIPAA Privacy Notice & Consumer Privacy Policy
Lyfe AI Platform - HIPAA Privacy Notice & Consumer Privacy Policy
Lyfe AI Platform - HIPAA Privacy Notice & Consumer Privacy Policy
Last Updated: 09.12.2025
Effective Date: 09.12.2025
Last Updated: 09.12.2025
Effective Date: 09.12.2025
Last Updated: 09.12.2025
Effective Date: 09.12.2025
INTRODUCTION
INTRODUCTION
INTRODUCTION
Contrary to popular belief, Lorem Ipsum is not simply random text. It has roots in a piece of classical Latin literature from 45 BC, making it over 2000 years old. Richard McClintock, a Latin professor at Hampden-Sydney College in Virginia, looked up one of the more obscure Latin words, consectetur, from a Lorem Ipsum passage, and going through the cites of the word in classical literature, discovered the undoubtable source. Lorem Ipsum comes from sections 1.10.32 and 1.10.33 of "de Finibus Bonorum et Malorum" (The Extremes of Good and Evil) by Cicero, written in 45 BC. This book is a treatise on the theory of ethics, very popular during the Renaissance. The first line of Lorem Ipsum, "Lorem ipsum dolor sit amet..", comes from a line in section 1.10.32.
The standard chunk of Lorem Ipsum used since the 1500s is reproduced below for those interested. Sections 1.10.32 and 1.10.33 from "de Finibus Bonorum et Malorum" by Cicero are also reproduced in their exact original form, accompanied by English versions from the 1914 translation by H. Rackham.
Contrary to popular belief, Lorem Ipsum is not simply random text. It has roots in a piece of classical Latin literature from 45 BC, making it over 2000 years old. Richard McClintock, a Latin professor at Hampden-Sydney College in Virginia, looked up one of the more obscure Latin words, consectetur, from a Lorem Ipsum passage, and going through the cites of the word in classical literature, discovered the undoubtable source. Lorem Ipsum comes from sections 1.10.32 and 1.10.33 of "de Finibus Bonorum et Malorum" (The Extremes of Good and Evil) by Cicero, written in 45 BC. This book is a treatise on the theory of ethics, very popular during the Renaissance. The first line of Lorem Ipsum, "Lorem ipsum dolor sit amet..", comes from a line in section 1.10.32.
The standard chunk of Lorem Ipsum used since the 1500s is reproduced below for those interested. Sections 1.10.32 and 1.10.33 from "de Finibus Bonorum et Malorum" by Cicero are also reproduced in their exact original form, accompanied by English versions from the 1914 translation by H. Rackham.
Contrary to popular belief, Lorem Ipsum is not simply random text. It has roots in a piece of classical Latin literature from 45 BC, making it over 2000 years old. Richard McClintock, a Latin professor at Hampden-Sydney College in Virginia, looked up one of the more obscure Latin words, consectetur, from a Lorem Ipsum passage, and going through the cites of the word in classical literature, discovered the undoubtable source. Lorem Ipsum comes from sections 1.10.32 and 1.10.33 of "de Finibus Bonorum et Malorum" (The Extremes of Good and Evil) by Cicero, written in 45 BC. This book is a treatise on the theory of ethics, very popular during the Renaissance. The first line of Lorem Ipsum, "Lorem ipsum dolor sit amet..", comes from a line in section 1.10.32.
The standard chunk of Lorem Ipsum used since the 1500s is reproduced below for those interested. Sections 1.10.32 and 1.10.33 from "de Finibus Bonorum et Malorum" by Cicero are also reproduced in their exact original form, accompanied by English versions from the 1914 translation by H. Rackham.
Why do we use it?
Why do we use it?
Why do we use it?
LyfeVault LLC, d.b.a. Lyfe AI ("Lyfe AI," "we," "us," "our") is committed to protecting your privacy and the security of your health information. This Privacy Policy serves as both our HIPAA Notice of Privacy Practices and our consumer privacy policy, explaining how we collect, use, share, and protect your personal and health information when you use our cloud-based Lyfe AI Platform ("Platform" or "Service") as a patient or authorized caregiver.
Effective Date: 09.12.2025
Privacy Officer Contact: support@lyfeco.ai | [Phone_Number]
IMPORTANT: Your healthcare provider is a "Covered Entity" under HIPAA, and Lyfe AI is their "Business Associate." This means your health information is protected by both HIPAA regulations and this Privacy Policy.
LyfeVault LLC, d.b.a. Lyfe AI ("Lyfe AI," "we," "us," "our") is committed to protecting your privacy and the security of your health information. This Privacy Policy serves as both our HIPAA Notice of Privacy Practices and our consumer privacy policy, explaining how we collect, use, share, and protect your personal and health information when you use our cloud-based Lyfe AI Platform ("Platform" or "Service") as a patient or authorized caregiver.
Effective Date: 09.12.2025
Privacy Officer Contact: support@lyfeco.ai | [Phone_Number]
IMPORTANT: Your healthcare provider is a "Covered Entity" under HIPAA, and Lyfe AI is their "Business Associate." This means your health information is protected by both HIPAA regulations and this Privacy Policy.
LyfeVault LLC, d.b.a. Lyfe AI ("Lyfe AI," "we," "us," "our") is committed to protecting your privacy and the security of your health information. This Privacy Policy serves as both our HIPAA Notice of Privacy Practices and our consumer privacy policy, explaining how we collect, use, share, and protect your personal and health information when you use our cloud-based Lyfe AI Platform ("Platform" or "Service") as a patient or authorized caregiver.
Effective Date: 09.12.2025
Privacy Officer Contact: support@lyfeco.ai | [Phone_Number]
IMPORTANT: Your healthcare provider is a "Covered Entity" under HIPAA, and Lyfe AI is their "Business Associate." This means your health information is protected by both HIPAA regulations and this Privacy Policy.
1. SCOPE AND APPLICABILITY
1. SCOPE AND APPLICABILITY
1. SCOPE AND APPLICABILITY
1.1 Who This Applies To:
1.1 Who This Applies To:
1.1 Who This Applies To:
• Patients using the Lyfe AI Platform
• Authorized caregivers with Platform access
• Legal guardians managing accounts for minors
• Healthcare providers accessing the Platform
• Visitors to our websites (www.lyfeco.ai and related domains)
• Users of our mobile applications and APIs
• Patients using the Lyfe AI Platform
• Authorized caregivers with Platform access
• Legal guardians managing accounts for minors
• Healthcare providers accessing the Platform
• Visitors to our websites (www.lyfeco.ai and related domains)
• Users of our mobile applications and APIs
• Patients using the Lyfe AI Platform
• Authorized caregivers with Platform access
• Legal guardians managing accounts for minors
• Healthcare providers accessing the Platform
• Visitors to our websites (www.lyfeco.ai and related domains)
• Users of our mobile applications and APIs
1.2 Information Covered:
1.2 Information Covered:
1.2 Information Covered:
• Protected Health Information (PHI) under HIPAA
• Personal information and account details
• Platform usage information
• Communications and messages
• Protected Health Information (PHI) under HIPAA
• Personal information and account details
• Platform usage information
• Communications and messages
• Protected Health Information (PHI) under HIPAA
• Personal information and account details
• Platform usage information
• Communications and messages
1.3 Healthcare Provider Relationship:
1.3 Healthcare Provider Relationship:
1.3 Healthcare Provider Relationship:
Your healthcare provider remains the primary controller of your medical records. Lyfe AI operates as a Business Associate under HIPAA, processing your health information on behalf of your healthcare provider through our secure, cloud-based platform.
Your healthcare provider remains the primary controller of your medical records. Lyfe AI operates as a Business Associate under HIPAA, processing your health information on behalf of your healthcare provider through our secure, cloud-based platform.
Your healthcare provider remains the primary controller of your medical records. Lyfe AI operates as a Business Associate under HIPAA, processing your health information on behalf of your healthcare provider through our secure, cloud-based platform.
2. INFORMATION WE COLLECT
2. INFORMATION WE COLLECT
2. INFORMATION WE COLLECT
2.1 Health Information (PHI)
2.1 Health Information (PHI)
2.1 Health Information (PHI)
We collect health information that you or your healthcare provider provide, including:
• Medical history and conditions
• Treatment plans and care instructions
• Test results and medical reports
• Medication information
• Appointment and visit records
• Health documents you upload
• Communications with your healthcare provider
We collect health information that you or your healthcare provider provide, including:
• Medical history and conditions
• Treatment plans and care instructions
• Test results and medical reports
• Medication information
• Appointment and visit records
• Health documents you upload
• Communications with your healthcare provider
We collect health information that you or your healthcare provider provide, including:
• Medical history and conditions
• Treatment plans and care instructions
• Test results and medical reports
• Medication information
• Appointment and visit records
• Health documents you upload
• Communications with your healthcare provider
2.2 Personal Information
2.2 Personal Information
2.2 Personal Information
We collect personal information necessary to provide our services:
• Name, date of birth, and contact information
• Insurance information (when applicable)
• Emergency contact details
• Account credentials and preferences
• Demographic information for healthcare purposes
We collect personal information necessary to provide our services:
• Name, date of birth, and contact information
• Insurance information (when applicable)
• Emergency contact details
• Account credentials and preferences
• Demographic information for healthcare purposes
We collect personal information necessary to provide our services:
• Name, date of birth, and contact information
• Insurance information (when applicable)
• Emergency contact details
• Account credentials and preferences
• Demographic information for healthcare purposes
2.3 Technical Information
2.3 Technical Information
2.3 Technical Information
We automatically collect technical information when you use our cloud-based Platform:
• Device information (type, operating system, browser, unique device identifiers)
• IP address and approximate location (city/state level)
• Platform usage analytics (features used, time spent, click patterns)
• Performance metrics and error logs for service improvement
• Session cookies and authentication tokens
• API usage and integration data
• Mobile app analytics (crash reports, performance data)
We automatically collect technical information when you use our cloud-based Platform:
• Device information (type, operating system, browser, unique device identifiers)
• IP address and approximate location (city/state level)
• Platform usage analytics (features used, time spent, click patterns)
• Performance metrics and error logs for service improvement
• Session cookies and authentication tokens
• API usage and integration data
• Mobile app analytics (crash reports, performance data)
We automatically collect technical information when you use our cloud-based Platform:
• Device information (type, operating system, browser, unique device identifiers)
• IP address and approximate location (city/state level)
• Platform usage analytics (features used, time spent, click patterns)
• Performance metrics and error logs for service improvement
• Session cookies and authentication tokens
• API usage and integration data
• Mobile app analytics (crash reports, performance data)
2.4 Communication Data
2.4 Communication Data
2.4 Communication Data
We collect information from your Platform communications:
• Messages with your healthcare provider
• Support requests and feedback
• Survey responses and reviews
• Educational content interactions
We collect information from your Platform communications:
• Messages with your healthcare provider
• Support requests and feedback
• Survey responses and reviews
• Educational content interactions
We collect information from your Platform communications:
• Messages with your healthcare provider
• Support requests and feedback
• Survey responses and reviews
• Educational content interactions
3. HOW WE USE YOUR INFORMATION
3. HOW WE USE YOUR INFORMATION
3. HOW WE USE YOUR INFORMATION
3.1 Healthcare SaaS Services
3.1 Healthcare SaaS Services
3.1 Healthcare SaaS Services
We use your information to deliver our cloud-based healthcare technology services:
• Facilitate secure, HIPAA-compliant communication with your healthcare provider
• Process and analyze health documents using AI/ML models (with de-identification where appropriate)
• Provide real-time care coordination and workflow automation
• Generate predictive health insights and population health analytics
• Send automated appointment reminders and personalized health notifications
• Support evidence-based care plan implementation and tracking
• Enable interoperability through FHIR-compliant data exchange
• Provide clinical decision support tools to your healthcare team
We use your information to deliver our cloud-based healthcare technology services:
• Facilitate secure, HIPAA-compliant communication with your healthcare provider
• Process and analyze health documents using AI/ML models (with de-identification where appropriate)
• Provide real-time care coordination and workflow automation
• Generate predictive health insights and population health analytics
• Send automated appointment reminders and personalized health notifications
• Support evidence-based care plan implementation and tracking
• Enable interoperability through FHIR-compliant data exchange
• Provide clinical decision support tools to your healthcare team
We use your information to deliver our cloud-based healthcare technology services:
• Facilitate secure, HIPAA-compliant communication with your healthcare provider
• Process and analyze health documents using AI/ML models (with de-identification where appropriate)
• Provide real-time care coordination and workflow automation
• Generate predictive health insights and population health analytics
• Send automated appointment reminders and personalized health notifications
• Support evidence-based care plan implementation and tracking
• Enable interoperability through FHIR-compliant data exchange
• Provide clinical decision support tools to your healthcare team
3.2 Platform Operations
3.2 Platform Operations
3.2 Platform Operations
We use information to operate and improve the Platform:
• Maintain your account and provide customer support
• Ensure Platform security and prevent fraud
• Perform system maintenance and updates
• Analyze usage patterns to improve functionality
• Develop new features and services
We use information to operate and improve the Platform:
• Maintain your account and provide customer support
• Ensure Platform security and prevent fraud
• Perform system maintenance and updates
• Analyze usage patterns to improve functionality
• Develop new features and services
We use information to operate and improve the Platform:
• Maintain your account and provide customer support
• Ensure Platform security and prevent fraud
• Perform system maintenance and updates
• Analyze usage patterns to improve functionality
• Develop new features and services
3.3 Legal and Compliance
3.3 Legal and Compliance
3.3 Legal and Compliance
We may use information as required by law:
• Comply with HIPAA and healthcare regulations
• Respond to legal requests and court orders
• Protect rights and safety of users
• Enforce our Terms of Service
• Conduct audits and regulatory compliance
We may use information as required by law:
• Comply with HIPAA and healthcare regulations
• Respond to legal requests and court orders
• Protect rights and safety of users
• Enforce our Terms of Service
• Conduct audits and regulatory compliance
We may use information as required by law:
• Comply with HIPAA and healthcare regulations
• Respond to legal requests and court orders
• Protect rights and safety of users
• Enforce our Terms of Service
• Conduct audits and regulatory compliance
3.4 Research and Analytics (De-identified Only)
3.4 Research and Analytics (De-identified Only)
3.4 Research and Analytics (De-identified Only)
We may use de-identified health information for:
• Healthcare research and population health studies
• Platform improvement and AI model training
• Quality measure development
• Public health purposes (with appropriate approvals)
We may use de-identified health information for:
• Healthcare research and population health studies
• Platform improvement and AI model training
• Quality measure development
• Public health purposes (with appropriate approvals)
We may use de-identified health information for:
• Healthcare research and population health studies
• Platform improvement and AI model training
• Quality measure development
• Public health purposes (with appropriate approvals)
4. HOW WE SHARE YOUR INFORMATION
4. HOW WE SHARE YOUR INFORMATION
4. HOW WE SHARE YOUR INFORMATION
4.1 Your Healthcare Provider
4.1 Your Healthcare Provider
4.1 Your Healthcare Provider
We share your information with your healthcare provider as necessary to provide healthcare services. This is the primary purpose of the Platform.
We share your information with your healthcare provider as necessary to provide healthcare services. This is the primary purpose of the Platform.
We share your information with your healthcare provider as necessary to provide healthcare services. This is the primary purpose of the Platform.
4.2 Authorized Caregivers
4.2 Authorized Caregivers
4.2 Authorized Caregivers
We share your information with caregivers you have explicitly authorized, including:
• Family members you designate
• Professional caregivers with your consent
• Legal guardians (for minors or incapacitated individuals)
We share your information with caregivers you have explicitly authorized, including:
• Family members you designate
• Professional caregivers with your consent
• Legal guardians (for minors or incapacitated individuals)
We share your information with caregivers you have explicitly authorized, including:
• Family members you designate
• Professional caregivers with your consent
• Legal guardians (for minors or incapacitated individuals)
4.3 Service Providers (Business Associates)
4.3 Service Providers (Business Associates)
4.3 Service Providers (Business Associates)
We share information only with HIPAA-compliant service providers who help operate our SaaS Platform:
• Cloud Infrastructure: AWS, Microsoft Azure, Google Cloud (HIPAA-eligible services)
• AI/ML Services: OpenAI (de-identified data only), Google Cloud AI
• Communication: Twilio (HIPAA-compliant), SendGrid (encrypted email)
• Authentication: Auth0, Okta (HIPAA Business Associates)
• Monitoring: Datadog, New Relic (with PHI masking)
• Support: Zendesk (HIPAA-compliant instance)
We share information only with HIPAA-compliant service providers who help operate our SaaS Platform:
• Cloud Infrastructure: AWS, Microsoft Azure, Google Cloud (HIPAA-eligible services)
• AI/ML Services: OpenAI (de-identified data only), Google Cloud AI
• Communication: Twilio (HIPAA-compliant), SendGrid (encrypted email)
• Authentication: Auth0, Okta (HIPAA Business Associates)
• Monitoring: Datadog, New Relic (with PHI masking)
• Support: Zendesk (HIPAA-compliant instance)
We share information only with HIPAA-compliant service providers who help operate our SaaS Platform:
• Cloud Infrastructure: AWS, Microsoft Azure, Google Cloud (HIPAA-eligible services)
• AI/ML Services: OpenAI (de-identified data only), Google Cloud AI
• Communication: Twilio (HIPAA-compliant), SendGrid (encrypted email)
• Authentication: Auth0, Okta (HIPAA Business Associates)
• Monitoring: Datadog, New Relic (with PHI masking)
• Support: Zendesk (HIPAA-compliant instance)
All service providers:
All service providers:
All service providers:
• Sign HIPAA Business Associate Agreements
• Undergo security assessments
• Can be provided upon written request
• Cannot use your data for their own purposes
• Sign HIPAA Business Associate Agreements
• Undergo security assessments
• Can be provided upon written request
• Cannot use your data for their own purposes
• Sign HIPAA Business Associate Agreements
• Undergo security assessments
• Can be provided upon written request
• Cannot use your data for their own purposes
4.4 Legal Requirements
4.4 Legal Requirements
4.4 Legal Requirements
We may share information when legally required:
• Court orders and legal process
• Law enforcement requests (with appropriate warrants)
• Public health authorities (for disease reporting)
• Medical emergencies requiring immediate action
• Regulatory agencies for compliance purposes
We may share information when legally required:
• Court orders and legal process
• Law enforcement requests (with appropriate warrants)
• Public health authorities (for disease reporting)
• Medical emergencies requiring immediate action
• Regulatory agencies for compliance purposes
We may share information when legally required:
• Court orders and legal process
• Law enforcement requests (with appropriate warrants)
• Public health authorities (for disease reporting)
• Medical emergencies requiring immediate action
• Regulatory agencies for compliance purposes
4.5 Business Transactions
4.5 Business Transactions
4.5 Business Transactions
In the event of a merger, acquisition, or sale of assets, your information may be transferred to the new entity, subject to the same privacy protections.
In the event of a merger, acquisition, or sale of assets, your information may be transferred to the new entity, subject to the same privacy protections.
In the event of a merger, acquisition, or sale of assets, your information may be transferred to the new entity, subject to the same privacy protections.
4.6 With Your Consent
4.6 With Your Consent
4.6 With Your Consent
We may share information in other circumstances with your explicit written consent.
We may share information in other circumstances with your explicit written consent.
We may share information in other circumstances with your explicit written consent.
5. YOUR HIPAA RIGHTS
5. YOUR HIPAA RIGHTS
5. YOUR HIPAA RIGHTS
Under HIPAA, you have important rights regarding your health information:
Under HIPAA, you have important rights regarding your health information:
Under HIPAA, you have important rights regarding your health information:
5.1 Right to Access
5.1 Right to Access
5.1 Right to Access
• You have the right to request access to your PHI
• We will provide access within 30 days of your request
• You may request electronic copies of your information
• Reasonable fees may apply for copies
• You have the right to request access to your PHI
• We will provide access within 30 days of your request
• You may request electronic copies of your information
• Reasonable fees may apply for copies
• You have the right to request access to your PHI
• We will provide access within 30 days of your request
• You may request electronic copies of your information
• Reasonable fees may apply for copies
5.2 Right to Amendment
5.2 Right to Amendment
5.2 Right to Amendment
• You may request corrections to your PHI
• We will forward amendment requests to your healthcare provider
• You will be notified of the decision within 60 days
• You may file a statement if amendments are denied
• You may request corrections to your PHI
• We will forward amendment requests to your healthcare provider
• You will be notified of the decision within 60 days
• You may file a statement if amendments are denied
• You may request corrections to your PHI
• We will forward amendment requests to your healthcare provider
• You will be notified of the decision within 60 days
• You may file a statement if amendments are denied
5.3 Right to Accounting
5.3 Right to Accounting
5.3 Right to Accounting
• You may request an accounting of PHI disclosures
• The accounting covers the past 6 years (excluding routine disclosures)
• First accounting request per year is free
• Additional requests may incur reasonable fees
• You may request an accounting of PHI disclosures
• The accounting covers the past 6 years (excluding routine disclosures)
• First accounting request per year is free
• Additional requests may incur reasonable fees
• You may request an accounting of PHI disclosures
• The accounting covers the past 6 years (excluding routine disclosures)
• First accounting request per year is free
• Additional requests may incur reasonable fees
5.4 Right to Restrictions
5.4 Right to Restrictions
5.4 Right to Restrictions
• You may request restrictions on PHI use and disclosure
• We are not required to agree to all restrictions
• If we agree, we must follow the restriction (except in emergencies)
• You may request restrictions on sharing with family members
• You may request restrictions on PHI use and disclosure
• We are not required to agree to all restrictions
• If we agree, we must follow the restriction (except in emergencies)
• You may request restrictions on sharing with family members
• You may request restrictions on PHI use and disclosure
• We are not required to agree to all restrictions
• If we agree, we must follow the restriction (except in emergencies)
• You may request restrictions on sharing with family members
5.5 Right to Confidential Communications
5.5 Right to Confidential Communications
5.5 Right to Confidential Communications
• You may request PHI communications through alternative means
• You may request communications at alternative locations
• We will accommodate reasonable requests
• You may request PHI communications through alternative means
• You may request communications at alternative locations
• We will accommodate reasonable requests
• You may request PHI communications through alternative means
• You may request communications at alternative locations
• We will accommodate reasonable requests
5.6 Right to Notification of Breaches
5.6 Right to Notification of Breaches
5.6 Right to Notification of Breaches
• You will be notified if your PHI is breached
• Notification will be provided within 60 days of discovery
• The notification will include required information about the breach
• You will be notified if your PHI is breached
• Notification will be provided within 60 days of discovery
• The notification will include required information about the breach
• You will be notified if your PHI is breached
• Notification will be provided within 60 days of discovery
• The notification will include required information about the breach
6. DATA SECURITY AND PROTECTION
6. DATA SECURITY AND PROTECTION
6. DATA SECURITY AND PROTECTION
6.1 Healthcare Security
6.1 Healthcare Security
6.1 Healthcare Security
We implement comprehensive security measures for our platform:
• Encryption: AES-256 at rest, TLS 1.3+ in transit
• Authentication: Strong authentication with multi-factor authentication
• Infrastructure: HIPAA-compliant cloud infrastructure
• Monitoring: 24/7 security monitoring and threat detection
• Testing: Regular security assessments and vulnerability scanning
• Access Control: Role-based access and least-privilege principles
• Employee Security: Background checks, annual HIPAA training
We implement comprehensive security measures for our platform:
• Encryption: AES-256 at rest, TLS 1.3+ in transit
• Authentication: Strong authentication with multi-factor authentication
• Infrastructure: HIPAA-compliant cloud infrastructure
• Monitoring: 24/7 security monitoring and threat detection
• Testing: Regular security assessments and vulnerability scanning
• Access Control: Role-based access and least-privilege principles
• Employee Security: Background checks, annual HIPAA training
We implement comprehensive security measures for our platform:
• Encryption: AES-256 at rest, TLS 1.3+ in transit
• Authentication: Strong authentication with multi-factor authentication
• Infrastructure: HIPAA-compliant cloud infrastructure
• Monitoring: 24/7 security monitoring and threat detection
• Testing: Regular security assessments and vulnerability scanning
• Access Control: Role-based access and least-privilege principles
• Employee Security: Background checks, annual HIPAA training
6.2 Access Controls
6.2 Access Controls
6.2 Access Controls
• Role-based access controls limit who can view your information
• Audit logs track all access to your PHI
• Regular access reviews ensure appropriate permissions
• Automatic logoff prevents unauthorized access
• Role-based access controls limit who can view your information
• Audit logs track all access to your PHI
• Regular access reviews ensure appropriate permissions
• Automatic logoff prevents unauthorized access
• Role-based access controls limit who can view your information
• Audit logs track all access to your PHI
• Regular access reviews ensure appropriate permissions
• Automatic logoff prevents unauthorized access
6.3 Data Breach Response
6.3 Data Breach Response
6.3 Data Breach Response
In the event of a potential data breach:
• We will investigate and contain the incident immediately
• Affected individuals will be notified within 60 days
• Regulatory authorities will be notified as required
• We will take steps to prevent future incidents
In the event of a potential data breach:
• We will investigate and contain the incident immediately
• Affected individuals will be notified within 60 days
• Regulatory authorities will be notified as required
• We will take steps to prevent future incidents
In the event of a potential data breach:
• We will investigate and contain the incident immediately
• Affected individuals will be notified within 60 days
• Regulatory authorities will be notified as required
• We will take steps to prevent future incidents
6.4 Data Retention
6.4 Data Retention
6.4 Data Retention
• Health information is retained according to healthcare record requirements
• Personal information is deleted when no longer needed
• Account data is retained for 7 years after account closure
• De-identified data may be retained indefinitely for research
• Health information is retained according to healthcare record requirements
• Personal information is deleted when no longer needed
• Account data is retained for 7 years after account closure
• De-identified data may be retained indefinitely for research
• Health information is retained according to healthcare record requirements
• Personal information is deleted when no longer needed
• Account data is retained for 7 years after account closure
• De-identified data may be retained indefinitely for research
7. COOKIES AND TRACKING TECHNOLOGIES
7. COOKIES AND TRACKING TECHNOLOGIES
7. COOKIES AND TRACKING TECHNOLOGIES
7.1 Cookies We Use
7.1 Cookies We Use
7.1 Cookies We Use
• Essential Cookies: Required for Platform functionality
• Security Cookies: Protect against fraud and unauthorized access
• Preference Cookies: Remember your settings and preferences
• Analytics Cookies: Help us understand Platform usage (de-identified)
• Essential Cookies: Required for Platform functionality
• Security Cookies: Protect against fraud and unauthorized access
• Preference Cookies: Remember your settings and preferences
• Analytics Cookies: Help us understand Platform usage (de-identified)
• Essential Cookies: Required for Platform functionality
• Security Cookies: Protect against fraud and unauthorized access
• Preference Cookies: Remember your settings and preferences
• Analytics Cookies: Help us understand Platform usage (de-identified)
7.2 Managing Cookies
7.2 Managing Cookies
7.2 Managing Cookies
You can control cookies through your browser settings
• Disabling essential cookies may affect Platform functionality
• Third-party cookies are limited and HIPAA-compliant
You can control cookies through your browser settings
• Disabling essential cookies may affect Platform functionality
• Third-party cookies are limited and HIPAA-compliant
You can control cookies through your browser settings
• Disabling essential cookies may affect Platform functionality
• Third-party cookies are limited and HIPAA-compliant
7.3 Third-Party Analytics
7.3 Third-Party Analytics
7.3 Third-Party Analytics
We use limited third-party analytics services with appropriate data processing agreements to understand Platform usage patterns (using de-identified data only).
We use limited third-party analytics services with appropriate data processing agreements to understand Platform usage patterns (using de-identified data only).
We use limited third-party analytics services with appropriate data processing agreements to understand Platform usage patterns (using de-identified data only).
8. CHILDREN'S PRIVACY
8. CHILDREN'S PRIVACY
8. CHILDREN'S PRIVACY
8.1 Minors' Information
8.1 Minors' Information
8.1 Minors' Information
• We do not knowingly collect information from children under 18 without parental consent
• Parent or legal guardian must create and manage accounts for minors
• Parents control access to their child's health information
• Adolescent privacy rights are respected according to applicable laws
• We do not knowingly collect information from children under 18 without parental consent
• Parent or legal guardian must create and manage accounts for minors
• Parents control access to their child's health information
• Adolescent privacy rights are respected according to applicable laws
• We do not knowingly collect information from children under 18 without parental consent
• Parent or legal guardian must create and manage accounts for minors
• Parents control access to their child's health information
• Adolescent privacy rights are respected according to applicable laws
8.2 Parental Controls
8.2 Parental Controls
8.2 Parental Controls
Parents and guardians can:
• Access their child's health information
• Control who else can access the information
• Request amendments or restrictions
• Close their child's account at any time
Parents and guardians can:
• Access their child's health information
• Control who else can access the information
• Request amendments or restrictions
• Close their child's account at any time
Parents and guardians can:
• Access their child's health information
• Control who else can access the information
• Request amendments or restrictions
• Close their child's account at any time
9. INTERNATIONAL DATA TRANSFERS
9. INTERNATIONAL DATA TRANSFERS
9. INTERNATIONAL DATA TRANSFERS
9.1 Data Location
9.1 Data Location
9.1 Data Location
Your health information is primarily stored in HIPAA-compliant data centers within the United States.
Your health information is primarily stored in HIPAA-compliant data centers within the United States.
Your health information is primarily stored in HIPAA-compliant data centers within the United States.
9.2 International Transfers
9.2 International Transfers
9.2 International Transfers
If data is transferred internationally:
• Appropriate safeguards are implemented
• Data processing agreements meet healthcare standards
• You will be notified of any significant changes
If data is transferred internationally:
• Appropriate safeguards are implemented
• Data processing agreements meet healthcare standards
• You will be notified of any significant changes
If data is transferred internationally:
• Appropriate safeguards are implemented
• Data processing agreements meet healthcare standards
• You will be notified of any significant changes
10. CALIFORNIA PRIVACY RIGHTS
10. CALIFORNIA PRIVACY RIGHTS
10. CALIFORNIA PRIVACY RIGHTS
10.1 CCPA Rights (California Residents)
10.1 CCPA Rights (California Residents)
10.1 CCPA Rights (California Residents)
Under the California Consumer Privacy Act, you may have additional rights:
• Right to know what personal information is collected
• Right to delete personal information (subject to healthcare retention requirements)
• Right to opt-out of the sale of personal information (we do not sell PHI)
• Right to non-discrimination for exercising CCPA rights
Under the California Consumer Privacy Act, you may have additional rights:
• Right to know what personal information is collected
• Right to delete personal information (subject to healthcare retention requirements)
• Right to opt-out of the sale of personal information (we do not sell PHI)
• Right to non-discrimination for exercising CCPA rights
Under the California Consumer Privacy Act, you may have additional rights:
• Right to know what personal information is collected
• Right to delete personal information (subject to healthcare retention requirements)
• Right to opt-out of the sale of personal information (we do not sell PHI)
• Right to non-discrimination for exercising CCPA rights
10.2 Shine the Light Law
10.2 Shine the Light Law
10.2 Shine the Light Law
California residents may request information about our disclosure of personal information to third parties for direct marketing purposes
California residents may request information about our disclosure of personal information to third parties for direct marketing purposes
California residents may request information about our disclosure of personal information to third parties for direct marketing purposes
11. PRIVACY POLICY CHANGES
11. PRIVACY POLICY CHANGES
11. PRIVACY POLICY CHANGES
11.1 Updates to This Policy
11.1 Updates to This Policy
11.1 Updates to This Policy
• We may update this Privacy Policy periodically
• Material changes will be posted prominently on the Platform
• You will receive direct notification of significant changes
• Continued use after changes constitutes acceptance
• We may update this Privacy Policy periodically
• Material changes will be posted prominently on the Platform
• You will receive direct notification of significant changes
• Continued use after changes constitutes acceptance
• We may update this Privacy Policy periodically
• Material changes will be posted prominently on the Platform
• You will receive direct notification of significant changes
• Continued use after changes constitutes acceptance
11.2 Version Control
11.2 Version Control
11.2 Version Control
• Current version is always available on our website
• Previous versions are maintained for reference
• Effective date is clearly indicated
• Current version is always available on our website
• Previous versions are maintained for reference
• Effective date is clearly indicated
• Current version is always available on our website
• Previous versions are maintained for reference
• Effective date is clearly indicated
12. CONTACT INFORMATION
12. CONTACT INFORMATION
12. CONTACT INFORMATION
12.1 Privacy Questions
12.1 Privacy Questions
12.1 Privacy Questions
For questions about this Privacy Policy or your privacy rights:
Privacy Officer
Email: privacy@lyfeco.ai
Phone: 1-800-LYFE-PVY (1-800-593-3789)
Mail: LyfeVault LLC, d.b.a. Lyfe AI
Attn: Privacy Officer
[LYFE_AI_ADDRESS]
For questions about this Privacy Policy or your privacy rights:
Privacy Officer
Email: privacy@lyfeco.ai
Phone: 1-800-LYFE-PVY (1-800-593-3789)
Mail: LyfeVault LLC, d.b.a. Lyfe AI
Attn: Privacy Officer
[LYFE_AI_ADDRESS]
For questions about this Privacy Policy or your privacy rights:
Privacy Officer
Email: privacy@lyfeco.ai
Phone: 1-800-LYFE-PVY (1-800-593-3789)
Mail: LyfeVault LLC, d.b.a. Lyfe AI
Attn: Privacy Officer
[LYFE_AI_ADDRESS]
12.2 HIPAA Complaints
12.2 HIPAA Complaints
12.2 HIPAA Complaints
To file a HIPAA complaint:
• Contact our Privacy Officer (information above)
• Contact the U.S. Department of Health and Human Services Office for Civil Rights
• File complaints at www.hhs.gov/ocr/privacy/hipaa/complaints/
To file a HIPAA complaint:
• Contact our Privacy Officer (information above)
• Contact the U.S. Department of Health and Human Services Office for Civil Rights
• File complaints at www.hhs.gov/ocr/privacy/hipaa/complaints/
To file a HIPAA complaint:
• Contact our Privacy Officer (information above)
• Contact the U.S. Department of Health and Human Services Office for Civil Rights
• File complaints at www.hhs.gov/ocr/privacy/hipaa/complaints/
12.3 General Support
12.3 General Support
12.3 General Support
For general Platform support:
Email: support@lyfeco.ai
Phone: 1-800-LYFE-HELP (1-800-593-3435)
Live Chat: Available at www.lyfeco.ai during business hours
Support Portal: support.lyfeco.ai
For general Platform support:
Email: support@lyfeco.ai
Phone: 1-800-LYFE-HELP (1-800-593-3435)
Live Chat: Available at www.lyfeco.ai during business hours
Support Portal: support.lyfeco.ai
For general Platform support:
Email: support@lyfeco.ai
Phone: 1-800-LYFE-HELP (1-800-593-3435)
Live Chat: Available at www.lyfeco.ai during business hours
Support Portal: support.lyfeco.ai
13. YOUR CHOICES AND CONTROLS
13. YOUR CHOICES AND CONTROLS
13. YOUR CHOICES AND CONTROLS
13.1 Account Settings
13.1 Account Settings
13.1 Account Settings
You can control many privacy settings through your account:
• Communication preferences
• Caregiver access permissions
• Notification settings
• Data sharing preferences
You can control many privacy settings through your account:
• Communication preferences
• Caregiver access permissions
• Notification settings
• Data sharing preferences
You can control many privacy settings through your account:
• Communication preferences
• Caregiver access permissions
• Notification settings
• Data sharing preferences
13.2 Opting Out
13.2 Opting Out
13.2 Opting Out
You can opt out of certain communications and features:
• Marketing communications (if any)
• Non-essential notifications
• Certain Platform features
• Data analytics (where technically feasible)
You can opt out of certain communications and features:
• Marketing communications (if any)
• Non-essential notifications
• Certain Platform features
• Data analytics (where technically feasible)
You can opt out of certain communications and features:
• Marketing communications (if any)
• Non-essential notifications
• Certain Platform features
• Data analytics (where technically feasible)
13.3 Account Deletion
13.3 Account Deletion
13.3 Account Deletion
You may request account deletion at any time:
• Some health information may need to be retained for legal compliance
• De-identified information may be retained for research
• Account deletion process typically takes 30 days
ACKNOWLEDGMENT: By using the Lyfe AI Platform, you acknowledge that you have read and understood this Privacy Policy and consent to the collection, use, and disclosure of your information as described herein.
You may request account deletion at any time:
• Some health information may need to be retained for legal compliance
• De-identified information may be retained for research
• Account deletion process typically takes 30 days
ACKNOWLEDGMENT: By using the Lyfe AI Platform, you acknowledge that you have read and understood this Privacy Policy and consent to the collection, use, and disclosure of your information as described herein.
You may request account deletion at any time:
• Some health information may need to be retained for legal compliance
• De-identified information may be retained for research
• Account deletion process typically takes 30 days
ACKNOWLEDGMENT: By using the Lyfe AI Platform, you acknowledge that you have read and understood this Privacy Policy and consent to the collection, use, and disclosure of your information as described herein.