Privacy Policy — Carebind

Your privacy is critically important to us. At Carebind, we understand that you trust us with sensitive health information about your loved ones. This policy explains how we collect, use, store, and protect that information.

1. Information We Collect

Account Information

Name, email address, and phone number
Password (stored encrypted, never in plain text)
Profile photo (optional)
Family role (primary caregiver, helper, distant family)

Care Recipient Information

Name and date of birth
Medical conditions and diagnoses
Medication names, dosages, and schedules
Doctor and healthcare provider details
Appointment dates and notes
Care journal entries and family chat messages

Usage Data

App usage patterns (features used, session duration)
Device information (model, OS version)
Crash reports and performance data

2. How We Use Your Information

We use the information we collect to:

Provide and maintain the Carebind service
Send medication reminders and care notifications
Facilitate family communication and coordination
Improve our app and develop new features
Provide customer support
Send service-related communications (not marketing)

3. Data Storage & Security

We take the security of your health data extremely seriously:

All data is encrypted in transit (TLS 1.3) and at rest (AES-256)
Health data is stored on HIPAA-compliant infrastructure
We conduct regular security audits and penetration testing
Access to production data is strictly limited and logged
We never sell your data to third parties — ever

4. Data Sharing

We only share your data in the following circumstances:

Within your care circle: Information you enter is visible to family members you have invited to your care group
Service providers: We use trusted third-party services for hosting, analytics, and notifications (all bound by data processing agreements)
Legal requirements: If required by law, court order, or governmental authority
With your consent: If you explicitly ask us to share data (e.g., with a healthcare provider)

5. Your Rights

You have the right to:

Access all personal data we hold about you
Correct any inaccurate information
Delete your account and all associated data
Export your data in a machine-readable format
Withdraw consent for optional data processing
Object to automated decision-making

6. Data Retention

We retain your data for as long as your account is active. If you delete your account, we will permanently delete all personal data within 30 days. Some anonymised, aggregated data may be retained for service improvement purposes.

7. Children's Privacy

Carebind is designed for adult caregivers. We do not knowingly collect personal information from children under 16. If we become aware of such collection, we will delete it immediately.

8. Cookies & Tracking

Our website uses essential cookies for functionality. We do not use advertising trackers. Analytics cookies are optional and can be disabled in your browser settings.

9. International Data Transfers

Your data is stored in the United Kingdom and European Economic Area. If data is transferred outside these regions, we ensure appropriate safeguards are in place (Standard Contractual Clauses or equivalent).

10. Changes to This Policy

We may update this policy from time to time. We will notify you of significant changes via email or in-app notification at least 30 days before they take effect.

11. Contact Us

If you have questions about this privacy policy or your data, please contact us:

Email: privacy@carebind.app
Post: Carebind Ltd, [Address], United Kingdom
Data Protection Officer: dpo@carebind.app