Back to Home
Legal

Privacy Policy

Last updated: January 1, 2025

Introduction

Pulse Health, Inc. ("Pulse," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our patient-owned health intelligence platform.

We understand that your health information is among the most personal data that exists. That's why we've built Pulse from the ground up with privacy as a core architectural principle, not an afterthought.

Our Privacy Principles

  • You own your data. We believe your health information belongs to you—always.
  • End-to-end encryption. Your health data is encrypted on your device before it ever reaches our servers.
  • Zero-knowledge architecture. We cannot read your health data, even if we wanted to.
  • Minimal data collection. We only collect what's necessary to provide our services.
  • Transparency. We tell you exactly what we collect and why.

Information We Collect

Information You Provide

  • Account Information: Email address, password (hashed), and display name when you create an account.
  • Health Data: Medical records, medications, vitals, and other health information you choose to store. This data is encrypted end-to-end.
  • Emergency Information: If you choose to set up emergency access, the limited information you designate for emergency responders.
  • Communications: When you contact our support team.

Information Collected Automatically

  • Usage Data: How you interact with the app (features used, time spent), collected in aggregate and anonymized form.
  • Device Information: Device type, operating system, and unique device identifiers necessary for security.
  • Log Data: IP addresses and access timestamps for security monitoring.

How We Use Your Information

  • To provide and maintain the Pulse platform
  • To authenticate your identity and protect your account
  • To process your encrypted health data according to your instructions
  • To provide customer support
  • To detect, prevent, and address security issues
  • To comply with legal obligations

How We Protect Your Information

We implement industry-leading security measures including:

  • AES-256 end-to-end encryption for all health data
  • RSA-4096 asymmetric encryption for key exchange
  • TLS 1.3 for all data in transit
  • Zero-knowledge architecture—we cannot access your decrypted data
  • Regular third-party security audits
  • SOC 2 Type II and HIPAA compliance

Data Sharing and Disclosure

We never sell your personal information. We may share information only in these limited circumstances:

  • With your explicit consent: When you authorize sharing with healthcare providers or family members.
  • For emergency access: If you've enabled emergency access and it's activated.
  • Service providers: With vendors who help us operate (e.g., cloud hosting), under strict contractual obligations.
  • Legal requirements: When required by law, court order, or government regulation.

Your Rights

You have the right to:

  • Access your personal information
  • Export all your data in a portable format
  • Delete your account and all associated data
  • Revoke any access permissions you've granted
  • Opt-out of non-essential communications

Data Retention

We retain your encrypted health data for as long as you maintain an active account. When you delete your account, all your data is permanently deleted within 30 days, except where we're required by law to retain certain records.

Children's Privacy

Pulse is not intended for individuals under 18 without parental consent. We do not knowingly collect data from children under 13.

International Data Transfers

If you're located outside the United States, your information may be transferred to and processed in the United States. We ensure appropriate safeguards are in place for such transfers.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date.

Contact Us

If you have questions about this Privacy Policy or our privacy practices, please contact us at:

Email: privacy@getpulse.health
Address: Pulse Health, Inc., 1825 Ponce de Leon Blvd #396, Coral Gables, FL 33134

This Privacy Policy is part of our commitment to transparency. For more information about our security practices, visit our Security page. For HIPAA-specific information, see our HIPAA Compliance page.