Privacy Policy

For: Advokare Inc

Effective Date: 07/27/2025


Welcome to Advokare (“we,” “us,” or “our”). We are committed to protecting your privacy and safeguarding your personal health information. This Privacy Policy explains how we collect, use, store, and protect your data when you use our application ("Platform"), which helps you better understand your medical records using artificial intelligence (AI).


1. About Our Platform

Our Platform empowers patients to gain insights into their medical records using secure AI technology. Patients (or their authorized caregivers) can ask questions and receive helpful, personalized responses—while keeping their health information private and protected.


2. What Information We Collect

To provide our services, we collect:

  • Electronic Health Records (EHR): With your explicit HIPAA Authorization, we retrieve your EHR from accredited, secure health information networks (such as TEFCA participants, including Blue Button for Medicare/Medicaid patients). These records contain Protected Health Information (PHI), including your name, date of birth, medical conditions, treatments, and more.

  • User-Generated Content: You may provide additional health information directly to us, such as answers to questions about your health or preferences. Also, when you ask questions through our Platform, those inputs and the AI-generated responses are part of your session data.

  • Usage Data (anonymized): We collect and analyze anonymized data such as usage statistics, session duration, question topics, and app performance to improve our services.


3. How We Use Your Information

We use your PHI strictly for providing you (or your designated caregiver) with personalized, AI-based health insights. Here's a summary of how your information is used:

PHI (from EHR): Used during AI-powered Q&A sessions within our secure environment

Session Data: Used to generate responses to your health-related questions

De-identified Data: Used for analytics, service insights, and commercial research

Optional Stored Data: If you choose to store your data, it will be kept securely based on your preferences

We do not sell your PHI. We only use your PHI for your benefit and never share it with advertisers or third parties without your permission.


4. Data Sharing and Caregiver Access

You may choose to:

  • Use the Platform yourself (as the patient), or

  • Authorize a trusted caregiver (e.g., a family member) to access and interact with your health information on your behalf.

Caregivers must be explicitly authorized by the patient, and their access is controlled by the patient through our secure invitation system.


5. Our Use of AI and Large Language Models (LLMs)

We use AI to help answer your questions about your health, but we’ve taken special care to protect your privacy:

  • All AI processing happens within our own secure, HIPAA-compliant environment.

  • Your PHI never leaves our system and is never shared with external AI providers.

  • Our AI models do not learn from your data. Each session is like being in a private room with your medical records and an AI assistant—your questions and answers stay in that room.

6. Your Data Storage Options

After each session, you decide whether to store any session content or health information:

  • Do not store: You can choose to discard all data upon session end.

  • Temporary storage: You can store your data securely for 1 year, with an option to renew.

  • Continuous storage: You may opt to store your data until you withdraw your consent or delete your account.

You have full control to update or revoke your storage preferences at any time via your account settings.


7. De-identified Analytics and Research

We reserve the right to collect and commercialize de-identified insights derived from aggregated user data. This means:

  • No PHI or identifying information is shared.

  • We analyze trends such as:

    • The most common health topics users ask about,

    • Age or gender trends (in a de-identified format),

    • How often users interact with our Platform.

These insights help us improve the Platform and contribute to broader healthcare research and development.


8. Responsible Sponsorship and Targeted Promotions

In the future, we may feature clearly labeled, sponsored content or promotions. If we do:

  • Sponsored content will be relevant to your interests based on your health status or session topics;

  • Ads will be clearly marked as sponsored—just like a TV commercial;

  • No PHI is shared with advertisers. All targeting happens inside our private and secure environment.

9. Data Security

We take your privacy seriously. Our services are built and operated in compliance with the Health Insurance Portability and Accountability Act (HIPAA). Protective measures include:

  • Secure, encrypted data transfers

  • Storage within HIPAA-compliant infrastructure

  • Access controls and session monitoring

  • No third-party sharing or external model training with your PHI

10. Children’s Privacy

Our services are not directed to, and we do not knowingly collect personal information from, children under the age of 13 (or under 16 for certain uses in California). If we become aware that a child has provided us with personal information, we will take reasonable steps to delete such information. If you are a parent or legal guardian and believe that your child has provided us with personal information, you may contact us at privacy@advokare.health to request access, correction, or deletion of that information.


11. Your Rights and Choices

You have rights over your personal information, including the ability to:

  • See what data we have about you

  • Ask us to fix or delete it

  • Learn how we use or share it

  • Opt out of any sharing for targeted ads (note: we don’t sell or share your data)

  • Revoke your HIPAA Authorization at any time

To manage your settings, simply log in to your account or contact our support team at [support@advokare.health].

If we ever say no to your request, you can appeal the decision by emailing us again with “Appeal” in the subject line. We’ll get back to you within 45 days. We will inform you of any action taken or not taken in response to the appeal, including a written explanation of the reasons for the decisions. If your appeal is denied, you may submit a complaint to your state attorney general.


12. Contact Us

If you have questions about this Privacy Policy, or how your data is being protected, please contact:

Privacy Officer
Advokare
Email: privacy@advokare.health


13. Updates to This Policy

We may update this Privacy Policy from time to time. When we do, we’ll notify you within the application and update the “Effective Date” at the top of this page.


Thank you for trusting Advokare.
We’re committed to giving you clarity, control, and confidence in how your health data is used.