Last Updated: March 21, 2025

1. INTRODUCTION

Caregenda (“we,” “our,” or “us”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, mobile application, and use our care coordination platform (collectively, the “Service”).

We take your privacy seriously. Please read this Privacy Policy carefully. IF YOU DO NOT AGREE WITH THE TERMS OF THIS PRIVACY POLICY, PLEASE DO NOT ACCESS THE SERVICE.

We reserve the right to make changes to this Privacy Policy at any time and for any reason. We will alert you about any changes by updating the “Last Updated” date of this Privacy Policy. You are encouraged to periodically review this Privacy Policy to stay informed of updates. You will be deemed to have been made aware of, will be subject to, and will be deemed to have accepted the changes in any revised Privacy Policy by your continued use of the Service after the date such revised Privacy Policy is posted.

2. INFORMATION WE COLLECT

Personal Data

We may collect personal identification information that you voluntarily provide to us when you:

  • Register for the Service
  • Sign up for our newsletter
  • Request customer support
  • Participate in promotions or surveys

This information may include:

  • Name
  • Email address
  • Phone number
  • Billing information (for paid subscriptions)
  • Account login information (password)
  • Communication preferences

Non-Personal Identifiable Information

We automatically collect certain information when you visit, use, or navigate the Service. This information does not reveal your specific identity but may include:

  • Device and usage information
  • IP address
  • Browser and device characteristics
  • Operating system
  • Language preferences
  • Referring URLs
  • Device name
  • Geographic location
  • Information about how and when you use our Service

Data Collected through Third-Party Sources

We may collect limited data from third-party sources, such as:

  • Social media platforms (if you choose to connect your Caregenda account with Facebook or Google)
  • Data analytics providers (Google Analytics, Microsoft Clarity)
  • Payment processors (Stripe)

Sensitive Information and Health Data

IMPORTANT: Caregenda is NOT designed to store protected health information (PHI) as defined by the Health Insurance Portability and Accountability Act (HIPAA).

We explicitly advise users NOT to input or store:

  • Detailed medical records
  • Diagnoses
  • Treatment plans
  • Lab results
  • Prescription details
  • Insurance information
  • Other protected health information

Our Service is designed for care coordination and scheduling purposes only. While we understand that the nature of caregiving may involve health-related appointments and general care tasks, users should limit health-related content to general scheduling information (e.g., “Doctor appointment” rather than specific medical details).

3. HOW WE USE YOUR INFORMATION

We process your information for purposes based on legitimate business interests, the fulfillment of our contract with you, compliance with our legal obligations, and/or your consent. We use personal information collected via our Service for a variety of business purposes, including:

To Provide and Maintain our Service

  • Create and manage your account
  • Deliver the features and functionality you request
  • Process transactions and send related information
  • Send administrative information (service updates, security alerts, etc.)

To Improve and Customize our Service

  • Analyze usage patterns and trends
  • Develop new products, services, and features
  • Personalize your experience

To Communicate with You

  • Respond to inquiries and support requests
  • Send newsletters, updates, and marketing communications (if you’ve opted in)
  • Request feedback about our Service

To Ensure Safety and Security

  • Protect our Service
  • Prevent fraudulent transactions and monitor against theft
  • Debug to identify and repair errors
  • Enforce our Terms of Service

4. THIRD-PARTY SERVICE PROVIDERS

We may share your information with third-party vendors, service providers, contractors, or agents who perform services for us or on our behalf and require access to such information to do that work. These third parties have access to your personal information only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose.

Our third-party service providers include:

  • Authentication Services: Google Login, Facebook Login
  • Analytics: Google Analytics, Microsoft Clarity
  • Infrastructure and Hosting: AWS, Cloudflare, Supabase
  • Payment Processing: Stripe
  • Communication: Resend
  • Notifications: Firebase (for push notifications)
  • Media Storage: Cloudinary
  • Calendar Integrations: Google Calendar, Apple Calendar, Outlook

Each of these service providers has their own privacy policies governing how they use your information. We encourage you to read their respective privacy policies.

5. COOKIES AND OTHER TRACKING TECHNOLOGIES

We may use cookies, web beacons, tracking pixels, and other tracking technologies to help customize the Service and improve your experience. Most browsers are set to accept cookies by default. You can remove or reject cookies, but be aware that such action could affect the availability and functionality of the Service.

You may opt-out of certain cookie tracking through:

  • Your browser settings
  • Our cookie preference center (where available)
  • Industry opt-out tools such as the Digital Advertising Alliance’s opt-out tool

6. DATA RETENTION

We will only keep your personal information for as long as it is necessary for the purposes set out in this Privacy Policy, unless a longer retention period is required or permitted by law.

When we have no ongoing legitimate business need to process your personal information, we will either delete or anonymize it, or, if this is not possible (for example, because your personal information has been stored in backup archives), then we will securely store your personal information and isolate it from any further processing until deletion is possible.

7. DATA TRANSFERS

Your information, including personal data, may be transferred to — and maintained on — computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ from those in your jurisdiction.

If you are located outside the United States and choose to provide information to us, please note that we transfer the data, including personal data, to the United States and process it there.

For users in the European Economic Area (EEA), we comply with applicable legal requirements providing adequate safeguards for the transfer of personal information to the United States or other countries that may not have the same level of data protection as your jurisdiction.

8. YOUR DATA PROTECTION RIGHTS

For EEA, UK, and Swiss Residents (GDPR Compliance)

If you are a resident of the European Economic Area (EEA), United Kingdom, or Switzerland, you have certain data protection rights under the General Data Protection Regulation (GDPR). These include the right to:

  • Access your personal information
  • Correct inaccurate personal information
  • Delete your personal information
  • Restrict processing of your personal information
  • Object to processing of your personal information
  • Data portability (receive your personal information in a structured, commonly used format)
  • Withdraw consent where we rely on consent as the legal basis for processing

For California Residents (CCPA/CPRA Compliance)

If you are a California resident, you have certain rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA), including the right to:

  • Know what personal information is being collected about you
  • Access your personal information
  • Delete personal information collected from you
  • Know whether your personal information is sold or disclosed and to whom
  • Opt-out of the sale of your personal information
  • Non-discrimination for exercising your privacy rights

To exercise these rights, please contact us as described in the “Contact Us” section below.

9. CHILDREN’S PRIVACY

The Service is intended for users who are at least 18 years old. We do not knowingly collect personally identifiable information from children under 18. If you are a parent or guardian and you are aware that your child has provided us with personal information, please contact us. If we become aware that we have collected personal information from children without verification of parental consent, we take steps to remove that information from our servers.

10. SECURITY OF YOUR INFORMATION

We use administrative, technical, and physical security measures to help protect your personal information. While we have taken reasonable steps to secure the personal information you provide to us, please be aware that despite our efforts, no security measures are perfect or impenetrable, and no method of data transmission can be guaranteed against any interception or other type of misuse.

11. LINKS TO THIRD-PARTY WEBSITES

The Service may contain links to third-party websites and applications of interest that are not affiliated with us. Once you leave the Service or are redirected to a third-party website or application, we are no longer responsible for the protection and privacy of your information. We encourage you to review the privacy policies of all third-party websites you visit.

12. COMMUNICATIONS CHOICES

You can opt out of receiving promotional communications from us by following the unsubscribe instructions provided in such communications or by contacting us directly. Please note that even if you opt out of receiving promotional communications, we may still send you non-promotional communications (e.g., service-related emails, account security notifications, etc.).

13. CHANGES TO THIS PRIVACY POLICY

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the “Last Updated” date at the top. You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

14. CONTACT US

If you have questions or comments about this Privacy Policy, please contact us at:

Caregenda Email: [email protected]