Privacy Policy

Version 2.0 | Last Updated: November 11, 2025

Privacy Policy

Version 2.0 | Last Updated: November 11, 2025

Privacy Policy

Version 2.0 | Last Updated: November 11, 2025

Dear Health Inc. ("Dear," "we," "us," or "our") respects your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our mobile application, website, and related services (collectively, the "Service").

By using Dear, you agree to the terms of this Privacy Policy and our Terms of Service.

1. Overview

Dear Health is a consumer health application that helps individuals view, organize, and understand their personal health information in one secure place. You can connect your medical records, sync data from wearables, and use an AI assistant to explore your health data.

We design our systems with privacy and security in mind. While Dear Health Inc. is not a HIPAA-covered entity or business associate, we follow the privacy and security principles established by the Health Insurance Portability and Accountability Act (HIPAA) and related regulations.

2. Information We Collect

When you use Dear, we may collect the following types of information:

a. Health and Medical Data

  • Medical records and clinical data that you authorize Dear to retrieve from healthcare systems such as Epic

  • Lab results, medications, allergies, procedures, and visit summaries

  • Data from connected wearable devices and mobile health apps (e.g., Apple Health)

  • Health-related information you enter manually

b. Account and Identity Information

  • Name, email address, and authentication credentials

  • Device identifiers and operating system data

  • Apple ID (if used for login or payments)

c. Usage Data

  • Log and analytics data (such as app version, device type, and event timestamps)

  • Diagnostic data for app performance and security monitoring

d. AI Assistant Interactions

When you use our AI chat assistant, we process your messages to generate responses. Conversations are encrypted and not used to train AI models.

AI responses are generated using the OpenAI API. Data shared with OpenAI is processed securely and not retained or used for model training under OpenAI’s enterprise API policies.

3. How We Use Your Information

We use your data only for the purposes of providing and improving the Service. This includes:

  • Displaying and organizing your health records

  • Enabling data synchronization with health systems and devices

  • Providing personalized insights through our AI assistant

  • Maintaining the security and performance of our systems

  • Fulfilling legal and regulatory requirements

We do not sell or rent your personal data. We do not use your health information for advertising.

4. Data Storage and Security

Dear Health uses Google Cloud Platform (GCP) infrastructure, with all data stored in the United States. We apply industry-standard security measures, including:

  • Encryption of data in transit (TLS) and at rest (AES-256)

  • Multi-factor authentication and access controls for authorized personnel only

  • Continuous monitoring and logging for potential security incidents

Despite our efforts, no system can guarantee absolute security. You use Dear at your own risk, and we encourage you to protect your account credentials.

5. Data Retention and Deletion

You may delete your account and all associated data at any time within the app or by contacting support@mydearhealth.com. Upon deletion, we remove your personal data from our active systems.

Certain limited metadata, security logs, or legally required records may be retained for a period required by applicable law (for example, for compliance, auditing, or fraud prevention). After that period, remaining data will be permanently deleted.

6. Sharing of Information

We may share data only in the following limited circumstances:

  • With your consent: When you authorize Dear to connect with third-party systems such as Epic or Apple Health.

  • With service providers: For secure infrastructure, cloud hosting, and technical support (e.g., Google Cloud, OpenAI). These providers are bound by confidentiality and data protection obligations.

  • For legal reasons: If required by law, subpoena, or court order.

  • In case of merger or acquisition: If Dear Health Inc. is involved in a merger, acquisition, or sale, your information may be transferred under similar privacy commitments.

We do not share or sell your personal information to advertisers or data brokers.

7. Payments

If you subscribe to Dear using Apple’s in-app purchase system, payment processing is handled directly by Apple. Dear Health does not store your credit card or payment information.

8. Children’s Privacy

Dear is not intended for individuals under 18 years of age. We do not knowingly collect personal information from minors. If we become aware that we have collected data from a minor without parental consent, we will delete it.

9. Your Rights

Depending on applicable law, you may have the right to:

  • Access a copy of your data

  • Request correction of inaccurate information

  • Request deletion of your account and data

  • Withdraw consent for certain data connections

You can exercise these rights by contacting us at support@mydearhealth.com

10. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will revise the “Effective Date” at the top. Material changes will be communicated through the app or website. Continued use after an update means you accept the revised policy.

11. Contact Us

For privacy-related questions or data requests, please contact:
Dear Health Inc.
Email: kris@mydearhealth.com
Antioch, California, USA