Privacy Policy

1. Introduction

Welcome to LumenHealth (“we,” “our,” or “us”). This Privacy Policy explains how we collect, use, store, disclose, and protect your personal information and health data when you use our mobile application (the “App”). We are committed to protecting your privacy and handling your health information responsibly.

By downloading, installing, or using the App, you agree to the practices described in this Privacy Policy. If you do not agree, please do not use the App.

2. Information We Collect

2.1 Health Data You Provide

Our App allows you to track and manage personal health information. The types of health data you may enter include:

• Medical conditions and diagnoses (including ICD-11 classification codes)
• Medications, dosages, and medication schedules
• Symptoms and symptom history
• Vital signs (blood pressure, heart rate, temperature, blood oxygen, respiratory rate)
• Weight and body measurements
• Mental health and mood data (mood ratings, journal entries, mood triggers)

2.2 Data Generated by the App

In addition to information you directly enter, the App may generate or retrieve the following:

• Condition summaries and health information retrieved from MedlinePlus (a service of the National Library of Medicine)
• AI-generated condition summaries produced by a third-party artificial intelligence service (Anthropic Claude API) when MedlinePlus data is unavailable
• Condition detail data retrieved from the World Health Organization ICD-11 API
• PDF health summary reports generated at your request

2.3 Community Data

If you use the Community features of the App, we collect:

• Your display name and username (if you choose to post publicly)
• Profile photo (if you choose to upload one)
• Posts, comments, and replies you create
• Likes and other interactions with community content
• Your anonymous posting preference

2.4 Account and Device Information

We may collect:

• Authentication credentials (if you create an account via Firebase Authentication)
• Device identifiers and basic device information necessary for App functionality
• App usage analytics (if enabled)

3. How We Use Your Information

We use your information for the following purposes:

• To provide the core functionality of the App, including tracking conditions, medications, symptoms, vitals, and mood
• To generate health summary PDF reports at your request
• To retrieve relevant medical information from MedlinePlus and the WHO ICD-11 API
• To generate AI-powered condition summaries when other medical information sources are unavailable
• To sync your data across devices (if cloud sync is enabled via Firebase/Firestore)
• To improve the App’s functionality and user experience
• To operate the Community features, including displaying your posts, comments, and likes to other users
• To enforce our Community Guidelines and moderate content for safety

4. Third-Party Services and Data Sharing

4.1 Anthropic (AI Condition Summaries)

When a condition summary is not available from MedlinePlus, the App sends the condition name and related medical classification information to Anthropic’s Claude API to generate an informational summary. This means:

• The condition name and ICD-11 classification data are transmitted to Anthropic’s servers
• Anthropic processes this data to generate a text summary, which is returned to the App
• We do not send your name, personal identifiers, or other health data (such as medications, vitals, or mood entries) to Anthropic
• Anthropic’s data handling is governed by their own privacy policy and API terms of use, available at anthropic.com/privacy

4.2 Firebase / Google Cloud (Data Storage and Authentication)

We use Google Firebase for data storage (Firestore) and may use Firebase Authentication for account management. Your health data stored in Firestore is subject to Google’s data processing terms. Firebase servers are located in the United States.

4.3 World Health Organization ICD-11 API

The App queries the WHO ICD-11 API to retrieve medical condition classification data. Only condition search terms and classification codes are sent; no personal identifiers are transmitted.

4.4 MedlinePlus

The App retrieves publicly available health information from the MedlinePlus service. Only condition names or identifiers are used in queries; no personal data is transmitted.

4.5 No Sale of Personal Data

We do not sell, rent, or trade your personal information or health data to third parties. We do not use your health data for advertising purposes.

5. Data Storage and Security

5.1 Local Storage

Certain health data is stored locally on your device using AsyncStorage. Data stored locally remains on your device and is not transmitted unless you explicitly use a feature that requires it (such as generating a PDF export or requesting an AI summary).

5.2 Cloud Storage

If cloud sync is enabled, your health data is stored in Google Firestore. We implement reasonable security measures to protect data in transit and at rest, including:

• HTTPS encryption for all data transmitted between the App and our servers
• Firebase security rules to restrict unauthorized access to your data
• Authentication requirements for accessing stored data

5.3 Security Limitations

While we take reasonable measures to protect your data, no method of electronic storage or transmission is 100% secure. We cannot guarantee the absolute security of your information. Locally stored data (AsyncStorage) is not encrypted by default and could be accessible if your device is compromised.

6. Community Features and Public Content

6.1 What Is Visible to Other Users

When you use the Community features, the following may be visible to other LumenHealth users:

• Your display name, username, and profile photo (if posting publicly)
• The content of your posts, comments, and replies
• Your likes and interactions with community content

Your personal health tracking data — including conditions, medications, symptoms, vitals, mood entries, weight, and journal entries — is never displayed in the Community or shared with other users unless you voluntarily include that information in a community post.

6.2 Anonymous Posting

The App allows you to post anonymously in the Community. When you post anonymously:

• Your display name, username, and profile photo are hidden from other users
• Your post appears with a generic “Anonymous” label
• However, we still store your identity internally in connection with anonymous posts for safety, legal compliance, and content moderation purposes
• We may be required to disclose your identity in response to valid legal processes (such as court orders or subpoenas) or to protect the safety of our users

Anonymous posting does not mean untraceable. It means your identity is hidden from other community members, not from LumenHealth LLC.

6.3 Content Moderation

We may review community content to enforce our Community Guidelines and Terms of Service. This may include reviewing posts and comments for prohibited content, responding to user reports, and taking action such as content removal or account suspension when violations are identified.

6.4 Community Data Retention

If you delete a post or comment, it will be removed from visibility to other users. However, we may retain copies for a limited period for legal compliance, safety review, or to resolve disputes. If you delete your account entirely, your community content will be removed or anonymized within 30 days.

7. Your Rights and Choices

Depending on your location, you may have the following rights regarding your personal data:

• Access: You may request a copy of the personal data we hold about you
• Deletion: You may request that we delete your personal data. You can also delete your data directly within the App. Note that deleting community posts removes them from visibility but may not immediately remove all copies (see Section 6.4)
• Correction: You may request correction of inaccurate personal data
• Data Portability: You can export your health data as a PDF summary at any time using the App’s export feature
• Opt-Out of AI Summaries: You may choose not to use features that transmit data to the Anthropic API. Condition summaries from MedlinePlus do not involve AI processing
• Opt-Out of Community: Community features are entirely optional. You may use the App without ever posting, commenting, or interacting with the Community
• Do Not Sell: We do not sell your personal information. If you are a California resident, you may exercise your rights under the CCPA/CPRA by contacting us at the address below

8. State-Specific Privacy Rights

8.1 California Residents (CCPA/CPRA)

If you are a California resident, you have the right to: know what personal information we collect and how it is used; request deletion of your personal information; opt out of the sale or sharing of personal information (we do not sell or share your data); and not be discriminated against for exercising your privacy rights. To exercise these rights, contact us at privacy@lumenhealth.app with the subject line “CCPA Request.”

8.2 Colorado Residents (Colorado Privacy Act)

If you are a Colorado resident, you have the right to access, correct, and delete your personal data, as well as the right to opt out of the processing of personal data for targeted advertising or the sale of personal data. We do not sell your data. To exercise these rights, contact us at privacy@lumenhealth.app.

8.3 Washington Residents (My Health My Data Act)

If you are a Washington State resident, we comply with the Washington My Health My Data Act. You have additional rights regarding consent for collection and sharing of health data, data minimization, and the right to access and delete your consumer health data. Contact us at privacy@lumenhealth.app to exercise these rights.

8.4 Other States

Residents of Connecticut, Virginia, Texas, and other states with comprehensive privacy laws may have additional rights. Please contact us at privacy@lumenhealth.app to learn more about exercising your rights under your state’s privacy law.

9. Data Retention

We retain your health data for as long as you maintain an active account or as needed to provide you with the App’s services. You may delete individual entries or all of your data at any time through the App. If you request account deletion, we will delete your personal health data and remove or anonymize your community content within 30 days, except where we are required by law to retain it.

10. Children’s Privacy

The App is not intended for use by individuals under the age of 13 (or the applicable age of consent in your jurisdiction). We do not knowingly collect personal information from children. If we learn that we have collected data from a child without parental consent, we will promptly delete it. If you believe a child has provided us with personal information, please contact us immediately at privacy@lumenhealth.app.

11. Breach Notification

In the event of a data breach involving your personal health information, we will notify you and applicable regulatory authorities as required by the FTC Health Breach Notification Rule and applicable state laws. Notification will be provided without unreasonable delay and will include a description of the breach, the types of information involved, and steps you can take to protect yourself.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy within the App and updating the “Last Updated” date at the top of this policy. Your continued use of the App after any changes constitutes your acceptance of the updated Privacy Policy.

13. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us at:

LumenHealth LLC
Privacy Requests: privacy@lumenhealth.app
General Support: support@lumenhealth.app
Aurora, Colorado