Legal

Health Data Privacy Policy

Effective date: April 10, 2026 · Last updated: April 10, 2026 · Version 1.0

KinGuardian (“we,” “our,” or “us”) is a caregiving coordination platform operated at kinguardian.app by Kaspyan Group. This Health Data Privacy Policy describes the categories of health data we collect, the purposes for which we use it, the third parties with whom we share it, and how you can exercise your rights. This policy supplements our general Privacy Policy and is designed to comply with the Washington My Health My Data Act (MHMDA), HIPAA, and applicable state consumer health data protection laws.

1. Categories of Health Data Collected

We collect and process the following categories of consumer health data:

Clinical Records

Medications (names, dosages, frequencies, refill dates), lab results (test names, values, reference ranges, critical flags), appointment details (provider, date, reason, post-visit summaries), and imaging study information (modality, findings, radiology reports).

Uploaded Documents

Medical documents you upload (discharge summaries, lab reports, imaging reports, insurance EOBs, prescriptions) are stored in encrypted cloud storage. Optical character recognition (OCR) extracts text content for indexing and AI analysis.

Biometric and Wellness Data

Caregiver wellness check-in data (mood scores, stress levels, sleep quality), burnout risk assessments, and medication administration logs.

Care Recipient Information

Demographic information about persons in your care: name, date of birth, sex, medical record number (MRN), diagnoses, emergency contacts, and insurance details.

Communications

Inbound email content and attachments forwarded to your KinGuardian inbox address, voice dictation transcriptions, and care notes created within the platform.

2. Purposes for Collecting and Using Health Data

We collect and use health data strictly for the following purposes:

Care Coordination: Organize, display, and track medications, appointments, lab results, and clinical documents for the care recipients in your care circle.
AI-Assisted Clinical Decision Support: Generate critical finding alerts, medication reconciliation, lab trend interpretation, and document analysis summaries to help you advocate for better care.
Document Processing: Extract text from uploaded documents via OCR, classify documents by type, and index content for search and retrieval.
Notifications and Alerts: Send medication refill reminders, critical lab result alerts, prior authorization expiry warnings, and appointment reminders via email, push notification, or SMS.
Caregiver Wellness: Compute burnout risk scores and care trend summaries from check-in data to support caregiver wellbeing.
Service Improvement: Aggregate, de-identified usage patterns to improve product features. We never use identifiable health data for model training.

We do not sell your health data. We do not use your health data to train third-party AI models. We do not share health data with advertisers or data brokers.

3. Third Parties Who Receive Health Data

Health data is shared with the following categories of service providers, each bound by data processing agreements that prohibit use of your data for their own purposes:

Provider	Purpose	Data Shared
AWS (Bedrock, Textract)	AI analysis, OCR	Document content, clinical text
AWS (Aurora, S3)	Database, file storage	All health data (encrypted at rest)
AWS Bedrock (Titan Embeddings)	Semantic search embeddings	PII-redacted document text (for vector encoding)
AWS Transcribe	Voice transcription (Medical + Standard)	Audio recordings (processed via AWS under BAA, not stored after transcription)
Mailgun	Inbound document forwarding + outbound transactional email	Email address, document attachments, notification content
AWS SES	Outbound email delivery (secondary path)	Email address, notification content

We also share health data with members of your care circle according to their assigned role (co-caregiver, viewer, physician, or family guest). You control circle membership.

4. Data Lifecycle and Retention

Health data moves through three storage tiers based on age and access patterns:

Hot Storage (0 – 12 months)

Active clinical data in Aurora PostgreSQL with full-text search indexes. Uploaded documents in S3 Standard. All features fully operational. Real-time access.

Warm Storage (12 – 36 months)

Clinical records remain in Aurora. Documents transition to S3 Infrequent Access. Semantic search indexes maintained. AI analysis available on demand with slightly higher latency.

Cold Storage (36 – 84 months)

Database records archived. Documents moved to S3 Glacier Instant Retrieval. Search indexes removed. Data retrievable within minutes upon request. Retained for legal and regulatory compliance.

Retention Schedule

Data Category	Retention Period	Basis
Clinical records	7 years after last activity	HIPAA / state medical records laws
Uploaded documents	7 years after upload	HIPAA / state retention requirements
Audit logs	6 years	HIPAA administrative safeguard
AI usage logs	2 years	Cost tracking and abuse prevention
Account data	90 days after account deletion	Grace period for account recovery
Wellness check-ins	3 years	Caregiver wellness trend analysis

5. Your Rights Under WA MHMDA and Applicable Law

You have the following rights with respect to your health data:

Right to Know

You may request a list of all health data we have collected about you, the categories of third parties with whom we have shared it, and the specific purposes for each sharing.

Right to Delete

You may request deletion of your health data. Upon receiving a verified deletion request, we will delete your data within 30 days, except where retention is required by law (see Retention Schedule above). We will also direct our service providers to delete your data.

Right to Withdraw Consent

You may withdraw consent for specific data processing activities at any time through your Settings page. Withdrawal does not affect the lawfulness of processing performed before withdrawal.

Right to Data Portability

You may request a machine-readable export of your health data at any time. We will provide your data in JSON and PDF formats within 30 days. Use the account deletion flow to trigger a 90-day export window before permanent deletion.

Right to Correct

You may correct inaccurate health data at any time by editing records directly in KinGuardian or by contacting support.

Right to Non-Discrimination

We will not discriminate against you for exercising any of these rights. You will not receive a different level of service for making a data request.

6. How to Exercise Your Rights

Self-service: Use the Privacy & Data Consent section in Settings to toggle individual data processing permissions on or off.
Account deletion: Use the Danger Zone section in Settings to request permanent account deletion with a 90-day export window.
Email: Send your request to privacy@kinguardian.app. We will verify your identity and respond within 30 days.

7. Deletion Process

When you delete your account or request data deletion:

Your account is immediately deactivated (soft-deleted).
A 90-day export window begins. During this window, you may request a full data export by contacting support.
Imaging files and large document attachments are deleted first (within 14 days).
Clinical records, notes, and metadata are purged after the 90-day window.
Audit logs are retained for 6 years per HIPAA requirements, then automatically purged.
Backups containing your data expire according to our backup rotation schedule (maximum 30 days after purge).

Important: KinGuardian is a coordination tool, not an archive. Keep your original source documents (paper records, provider portal downloads) as your primary copies. Deleting your KinGuardian account will permanently remove all uploaded copies.

8. Breach Notification

In the event of a breach involving your health data, we will notify affected users within 30 days of discovery via email and in-app notification. The notification will include: the nature of the breach, the categories of data involved, the steps we are taking to address it, and recommendations for you to protect yourself. Where required by HIPAA, we will also notify the U.S. Department of Health and Human Services.

9. Security Measures

All data encrypted in transit (TLS 1.2+) and at rest (AES-256 via AWS KMS).
Database protected by row-level security policies and VPC network isolation.
All PHI traffic routes through private VPC endpoints, never traversing the public internet.
Authentication via AWS Cognito with JWT tokens in httpOnly cookies.
Automatic session timeout after configurable inactivity period (default: 15 minutes).
Full audit trail of all data access, modifications, and deletions.
AWS Business Associate Agreement (BAA) covering all HIPAA-eligible services used.

10. Minors

KinGuardian accounts may only be created by individuals 18 years of age or older. Care recipients of any age may have records managed by an adult caregiver. We do not knowingly collect health data directly from individuals under 13. If you believe we have inadvertently collected such data, contact us and we will delete it promptly.

11. Changes to This Policy

We may update this Health Data Privacy Policy from time to time. When we make material changes, we will increment the version number, update the effective date, and require re-acceptance of the policy through our in-app consent flow. You will not be able to continue using KinGuardian until you have reviewed and accepted the updated policy.

12. Contact Us

For questions, concerns, or requests related to this Health Data Privacy Policy:

KinGuardian Privacy Team

Email: privacy@kinguardian.app

General support: support@kinguardian.app

Website: kinguardian.app