Legal
Privacy policy
Last updated: May 24, 2026
PresentCare (“we,” “us,” or “our”) helps caregivers coordinate care for a loved one. This Privacy Policy explains what information we collect, how we use it, and the choices you have.
What we collect
Account information
- Email address (for authentication via secure magic links)
Health and care information
- Audio recordings of caregiver visits (temporarily — deleted after transcription)
- Text transcripts generated from recordings (processed in memory, not stored long-term as raw transcripts)
- AI-generated visit summaries, including medications mentioned, tasks, and doctor names
- Medications and doctors you add to your circle’s lists
- Circle membership and care recipient information you provide
Device information
- Push notification tokens (to deliver visit and task notifications)
We do not collect precise location, contacts, or advertising identifiers.
How we process data
Recording and transcription
- Audio recordings are encrypted on your device before upload
- Recordings are sent to xAI (Grok Speech-to-Text) for transcription
- Audio files are deleted from storage immediately after successful transcription — we do not retain audio
Summarization
- Transcripts are sent to Anthropic (Claude) to generate plain-language summaries and extract structured information (medications, tasks, providers)
- Summaries and extracted data are stored in our database hosted on Supabase (AWS infrastructure)
- Transactional email (sign-in links, account notifications) is delivered by Resend
Authentication
- Sign-in uses secure magic links with PKCE — we do not store passwords
Who has access
- Circle members only: People you invite to your health circle can see that circle’s summaries, tasks, medications, and doctors
- PresentCare staff: May access data for support or debugging only with your consent
- We do not sell, share, or use health data for advertising — ever
- Third-party processors (xAI, Anthropic, Resend, Supabase) process data solely to provide their services to us, under contractual obligations
Data retention
- Audio recordings: Deleted immediately after transcription (not retained)
- Visit summaries & extracted data: Until you delete them or delete your account
- Account data: Until account deletion
Your rights
You have the right to:
- Access all data associated with your account (Settings → Export My Data)
- Delete your account and all associated data at any time (Settings → Delete Account)
- Export your data in a portable format
- Withdraw consent for recording at any time by not using the recording feature
To exercise these rights, use the in-app controls in Settings or contact us at the email below.
Security
- Data encrypted in transit (TLS/HTTPS)
- Authentication via secure magic links with PKCE — no passwords stored
- API keys and secrets stored in encrypted secret management (Supabase Vault / environment secrets)
- Row Level Security ensures users can only access data in circles they belong to
Children
PresentCare is not intended for users under 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us information, contact us and we will delete it.
California residents (CCPA/CPRA)
If you are a California resident, you have the right to:
- Know what personal information we collect and how we use it
- Delete your personal information
- Opt out of sale — we do not sell personal information
To submit a request, use in-app account controls or email [email protected].
Washington residents (My Health My Data Act)
For Washington residents, we obtain specific consent before collecting health-related data through the in-app consent flow before you use recording features.
We honor deletion requests within 30 days of receipt.
Changes to this policy
We may update this Privacy Policy from time to time. We will notify you of material changes through the app or by email. Continued use after changes constitutes acceptance.
Contact
Privacy inquiries: [email protected]
PresentCare