Privacy Policy

Effective Date: February 2026

1. Information We Collect

We collect information you provide directly: account details (email, display name), conversation content, mood ratings, assessment responses, and condition selections. For clinic patients, we also receive profile data from your clinic's EMR system via SMART on FHIR integration.

2. How We Use Your Information

Your data is used to provide personalized mental health support, track your progress, generate session summaries (for clinic patients), and improve our AI models. We never sell your data. We never use your conversations for advertising.

3. Data Encryption & Storage

All protected health information (PHI) is encrypted at rest using Fernet symmetric encryption. Data in transit is protected with TLS. Encryption keys are stored separately from encrypted data.

4. Data Sharing

For clinic patients, session summaries, assessment scores, and crisis events may be shared with your designated healthcare provider via ReasonEMR integration. For individual users, your data is never shared with third parties. We may share anonymized, aggregated data for research purposes.

5. Data Retention

Account data and conversation history are retained for as long as your account is active. You may request deletion of your data at any time by contacting privacy@reasoncare.ai. Clinic patient data retention is governed by your clinic's policies and applicable regulations.

6. Your Rights

You have the right to access, correct, or delete your personal data. You may request a copy of your data or ask us to stop processing it. For HIPAA-related requests, contact compliance@reasoncare.ai.

7. Contact

For privacy inquiries, contact us at privacy@reasoncare.ai.