Legal

Health Data Privacy Policy

Effective date: April 10, 2026 · Last updated: June 18, 2026 · Version 1.1

KinGuardian is a caregiving coordination platform operated by Kaspyan Group LLC, a Delaware limited liability company with its principal place of business in New Jersey (“Kaspyan Group,” “we,” “our,” or “us”), at kinguardian.app. This Health Data Privacy Policy describes the categories of health data we collect, the purposes for which we use it, the third parties with whom we share it, and how you can exercise your rights. This policy supplements our general Privacy Policy and is designed to comply with the Washington My Health My Data Act (MHMDA), HIPAA, and applicable state consumer health data protection laws.

1. Categories of Health Data Collected

We collect and process the following categories of consumer health data:

Clinical Records

Medications (names, dosages, frequencies, refill dates), lab results (test names, values, reference ranges, critical flags), appointment details (provider, date, reason, post-visit summaries), and imaging study information (modality, findings, radiology reports).

Uploaded Documents

Medical documents you upload (discharge summaries, lab reports, imaging reports, insurance EOBs, prescriptions) are stored in encrypted cloud storage. Optical character recognition (OCR) extracts text content for indexing and AI analysis.

Biometric and Wellness Data

Caregiver wellness check-in data (mood scores, stress levels, sleep quality), burnout risk assessments, and medication administration logs.

Care Recipient Information

Demographic information about persons in your care: name, date of birth, sex, medical record number (MRN), diagnoses, emergency contacts, and insurance details.

Clinical History & Condition Tracking

Allergies (substance, severity, reaction), conditions and diagnoses (with ICD-10 codes), immunizations, surgical and hospitalization history, fall events, family medical history, social and sensitive health history, vital signs, and chronic-care tracking logs you keep for conditions such as heart failure, diabetes, dementia, and pulmonary disease.

Communications

Inbound email content and attachments forwarded to your KinGuardian inbox address, voice dictation transcriptions, and care notes created within the platform.

2. Purposes for Collecting and Using Health Data

We collect and use health data strictly for the following purposes:

Care Coordination: Organize, display, and track medications, appointments, lab results, and clinical documents for the care recipients in your care circle.
AI-Assisted Clinical Decision Support: Generate critical finding alerts, medication reconciliation, lab trend interpretation, and document analysis summaries to help you advocate for better care.
Document Processing: Extract text from uploaded documents via OCR, classify documents by type, and index content for search and retrieval.
Notifications and Alerts: Send medication refill reminders, critical lab result alerts, prior authorization expiry warnings, and appointment reminders via email, push notification, or SMS.
Caregiver Wellness: Compute burnout risk scores and care trend summaries from check-in data to support caregiver wellbeing.
Service Improvement: Aggregate, de-identified usage patterns to improve product features. We never use identifiable health data for model training.

We do not sell your health data. We do not use your health data to train third-party AI models. We do not share health data with advertisers or data brokers.

3. Third Parties Who Receive Health Data

Health data is shared with the following categories of service providers, each bound by data processing agreements that prohibit use of your data for their own purposes:

Provider	Purpose	Data Shared
AWS (Bedrock, Textract)	AI analysis, OCR	Document content, clinical text
AWS (Aurora, S3)	Database, file storage	All health data (encrypted at rest)
AWS Bedrock (Titan Embeddings)	Semantic search embeddings	PII-redacted document text (for vector encoding)
AWS Transcribe	Voice transcription (Medical + Standard)	Audio recordings (processed via AWS under BAA, not stored after transcription)
Mailgun	Inbound document forwarding + outbound transactional email	Email address, document attachments, notification content
AWS SES	Outbound email delivery (secondary path)	Email address, notification content

We also share health data with members of your care circle according to their assigned role (co-caregiver, viewer, physician, or family guest). You control circle membership.

4. Data Lifecycle and Retention

Health data moves through three storage tiers based on age and access patterns:

Hot Storage (0 – 12 months)

Active clinical data in Aurora PostgreSQL with full-text search indexes. Uploaded documents in S3 Standard. All features fully operational. Real-time access.

Warm Storage (12 – 36 months)

Clinical records remain in Aurora. Documents transition to S3 Infrequent Access. Semantic search indexes maintained. AI analysis available on demand with slightly higher latency.

Cold Storage (36 – 84 months)

Database records archived. Documents moved to S3 Glacier Instant Retrieval. Search indexes removed. Data retrievable within minutes upon request. Retained for legal and regulatory compliance.

Retention Schedule

Data Category	Retention Period	Basis
Clinical records	While the care recipient is active; deleted on request	Data minimization; consumer right to delete
Uploaded documents	While the care recipient is active; deleted on request	Data minimization; consumer right to delete
Audit logs	6 years	HIPAA administrative safeguard
AI usage logs	3 years	Cost tracking and abuse prevention
Account data	30 days after account deletion	Grace period for account recovery
Wellness check-ins	3 years	Caregiver wellness trend analysis

We are a consumer caregiving tool, not a healthcare provider, so the 6–7 year medical-record retention rules that apply to hospitals and doctors do not apply to us. We keep your health data only while your account and the care recipient’s record are active. You can delete a care recipient’s records at any time, and we permanently delete that data — including from backups — on request. When you delete your own account, your personal account data is purged after the 30-day grace period; health records you shared in a care circle remain available to that circle’s other members until the care recipient is deleted.

5. Your Rights Under WA MHMDA and Applicable Law

You have the following rights with respect to your health data:

Right to Know

You may request a list of all health data we have collected about you, the categories of third parties with whom we have shared it, and the specific purposes for each sharing.

Right to Delete

You may request deletion of your health data. Upon receiving a verified deletion request, we will delete your data within 30 days, except where retention is required by law (see Retention Schedule above). We will also direct our service providers to delete your data.

Right to Withdraw Consent

You may withdraw consent for specific data processing activities at any time through your Settings page. Withdrawal does not affect the lawfulness of processing performed before withdrawal.

Right to Data Portability

You may export your complete designated record set at any time from your account, in standard machine-readable formats — C-CDA (HL7 clinical-document XML), FHIR R4 (JSON), CSV, and a human-readable PDF — covering your medications, labs, appointments, allergies, conditions, immunizations, surgical and hospital history, vital signs, chronic-care logs, and any financial and legal records you have stored. You can also download your original uploaded documents and your raw imaging (DICOM) files, or a single Full Export that bundles every format together with a SHA-256 integrity manifest. Use the account deletion flow to trigger a 30-day export window before permanent deletion.

Right to Correct

You may correct inaccurate health data at any time by editing records directly in KinGuardian or by contacting support.

Right to Non-Discrimination

We will not discriminate against you for exercising any of these rights. You will not receive a different level of service for making a data request.

6. How to Exercise Your Rights

Self-service: Use the Privacy & Data Consent section in Settings to toggle individual data processing permissions on or off.
Account deletion: Use the Danger Zone section in Settings to request permanent account deletion with a 30-day grace period.
Email: Send your request to privacy@kinguardian.app. We will verify your identity and respond within 30 days.

7. Deletion Process

When you delete your account or request data deletion:

Your account is immediately deactivated (soft-deleted).
A 30-day grace period begins, during which you may restore your account or request a full data export by contacting support.
After the 30-day grace period, your personal account data is permanently purged. Health records you shared within a care circle remain available to that circle’s other members; to permanently delete a care recipient’s records, delete the care recipient or contact us.
Audit logs are retained for at least 6 years per HIPAA requirements.
Backups containing your data expire according to our backup rotation schedule (within 30 days after purge).

Important: KinGuardian is a coordination tool, not an archive. Keep your original source documents (paper records, provider portal downloads) as your primary copies. Deleting your KinGuardian account will permanently remove all uploaded copies.

8. Breach Notification

In the event of a breach involving your health data, we will notify affected users without undue delay, and no later than 60 days after discovery, via email and in-app notification, consistent with the FTC Health Breach Notification Rule and applicable state law. The notification will include: the nature of the breach, the categories of data involved, the steps we are taking to address it, and recommendations for you to protect yourself. Where required by law, we will also notify the relevant regulatory authorities.

9. Security Measures

All data encrypted in transit (TLS 1.2+) and at rest (AES-256 via AWS KMS).
Application-layer access controls scope every request to the care circles you are authorized to view, within an isolated VPC network.
Internal AWS service traffic uses private VPC endpoints where available; all traffic is encrypted in transit (TLS 1.2+).
Authentication via AWS Cognito with JWT tokens in httpOnly cookies.
Automatic session timeout after a configurable inactivity period (default: 60 minutes).
Full audit trail of all data access, modifications, and deletions.
AWS Business Associate Agreement (BAA) covering all HIPAA-eligible services used.

10. Minors

KinGuardian accounts may only be created by individuals 18 years of age or older. Care recipients of any age may have records managed by an adult caregiver. We do not knowingly collect health data directly from individuals under 13. If you believe we have inadvertently collected such data, contact us and we will delete it promptly.

11. Changes to This Policy

We may update this Health Data Privacy Policy from time to time. When we make material changes, we will increment the version number, update the effective date, and require re-acceptance of the policy through our in-app consent flow. You will not be able to continue using KinGuardian until you have reviewed and accepted the updated policy.

12. Contact Us

For questions, concerns, or requests related to this Health Data Privacy Policy:

Kaspyan Group LLC (operator of KinGuardian) — Privacy Team

Email: privacy@kinguardian.app

General support: support@kinguardian.app

Website: kinguardian.app