cAirify.ai ("we", "us", or "our") operates the cairify.ai website and mobile application. This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you use our family care coordination platform.
We are committed to compliance with the Personal Information Protection and Electronic Documents Act (PIPEDA), the Personal Health Information Protection Act (PHIPA), and applicable provincial privacy legislation in Canada. For users in the United States, we also comply with applicable state privacy laws.
1. Information We Collect
Account Information
When you create an account, we collect your name, email address, and password. If you join a care circle, we collect your relationship to the care recipient.
Care Information
Information you enter about care recipients, including health updates, medications, appointments, tasks, expenses, and documents. This may include personal health information (PHI) as defined under PHIPA.
Usage Data
We automatically collect information about how you interact with our platform, including pages visited, features used, device type, browser type, and IP address.
2. How We Use Your Information
- Provide and maintain the care coordination platform
- Power cAirn, our AI care guide, to offer personalized guidance (your conversations with cAirn are processed by third-party AI providers)
- Send notifications, care digests, and account updates
- Improve our platform and develop new features
- Detect, prevent, and address security or technical issues
- Comply with legal obligations
3. How We Share Your Information
We do not sell your personal information. We share information only in these circumstances:
- Within your care circle: Information you add is visible to members of that care circle, according to the permissions you set.
- Service providers: We use third-party services to host our platform (Supabase, Vercel), process payments (Stripe), send emails (Resend), and provide AI capabilities (Anthropic). These providers only access data necessary to perform their services.
- Legal requirements: We may disclose information if required by law, regulation, or legal process.
4. Data Storage and Security
Your data is stored on servers located in the United States (AWS us-east-1) via our infrastructure provider, Supabase. We implement industry-standard security measures including encryption in transit (TLS), encryption at rest, row-level security policies, and audit logging for all access to personal health information.
For Canadian users: by using our service, you consent to the transfer and storage of your data in the United States. We ensure appropriate safeguards are in place for cross-border data transfers.
5. Your Rights
You have the right to:
- Access the personal information we hold about you
- Request correction of inaccurate information
- Request deletion of your personal information
- Export your data in a portable format
- Withdraw consent for data processing
To exercise these rights, contact us at privacy@cairify.ai.
6. Data Retention
We retain your personal information for as long as your account is active or as needed to provide our services. If you delete your account, we will delete or anonymize your personal information within 30 days, except where we are required to retain it by law.
7. Cookies
We use essential cookies required for authentication and platform functionality. We do not use third-party advertising or tracking cookies.
8. Children's Privacy
Our platform is not directed to individuals under the age of 16. We do not knowingly collect personal information from children.
9. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by email or through a notice on our platform.
10. Contact Us
If you have questions about this Privacy Policy or our data practices, contact us at:
cAirify.ai
Email: privacy@cairify.ai