Kate's App Privacy Policy
Effective Date: [Insert Date]
Last Updated: [Insert Date]
Kate's App respects your privacy and takes reasonable and appropriate steps to protect your personal data. This Privacy Policy is part of the Kate's App Terms of Use, and explains what data we obtain on this website, how we obtain it, how we use it, and how we protect it.
If you have questions about this policy, please contact us at katesapp@katesapp.org.
Your Consent
By using Kate's App, you acknowledge that you understand and consent to the terms of this Privacy Policy and to the Terms of Use. If you do not consent, you may not use this service.
Data We Collect
Your Account Information
When you create an account on Kate's App you provide information necessary to create and maintain your account. This includes:
- a user name
- email address
- password
- (possibly) an access code which allows you to create the account.
When you create an account, an anonymized user account identifier is generated for you which distinguishes you from other users.
There may also be options on your account that you can configure to customize how you use this service.
The Information That You Store
Kate's App is a service that allow you to store certain personal and medical information for your own use or those that you choose to share it with. This information may be about you or about someone you are caring for. This includes:
- Personal Information, such as name, birthdate, and gender.
- Medical Information, such as doctor and clinic contact information, appointments, allergies, prescriptions, and pharmacies.
- Notes which you may post on the site for yourself or others to read.
- Permissions that you may set to allow others to view and share your information.
The Information Provided By Your Browser
Your browser automatically sends certain information to a website with every request. This information is needed to create a response to send back to the browser. This may include:
- Your IP address
- Your browser type
- The URI of the page that you requested
- The referring page that you came from
- Your operating system and type
- A date/time stamp
- General geographic location
The browser may also send traffic data. For example, this might be the contents of any form that you post to Kate's App.
Browser Cookies
Kate's App stores a single session cookie in your browser. This cookie is needed to maintain the state of your session while you are using Kate's App, and stores information pertaining to your session. This may include:
- Your session identifier. This is not your user account identifier, but a unique identifier that is generated with each session you create.
- Your user account ID, which is used to authenticate you on every request.
- Your user name, which is displayed on pages of Kate's App after you log in
- A CSRF token, which is used to prevent an unauthorized third party from intercepting and submitting information on your behalf.
Session information is deleted when you sign off from Kate's App, or when your session expires. A new session is created every time you sign in.
We might, at some time in the future, use cookies to improve functionality and provide a better user experience. If we do, you will be notified, and you will be able to manage your cookie preferences through your account settings.
Third-Party Cookies
Kate's App does not use, store, or allow third-party cookies.
If at some point in the future, we change this policy, you will be notified and given the choice to opt out of any unnecessary cookies in your account settings.
Audit Logs
Kate's App logs information for the purposes of maintaining the service, and for protecting the privacy and integrity of your information. We may also use it for accounting purposes, or for demonstrating compliance with regulations.
Audit logs may include information events such as:
- User logins, attempted logins, and logouts
- Changes to user account information, such as email and password
- Changes to user options
- Creating, deleting, and updating medical information
- Suspicious activity
- Actions by system administrators
Audit logs may include timestamps and anonymized user information, such as user account IDs, but avoid personally identifiable information, such as names and email addresses. For example, the log entry for when you sign in to Kate's App will contain your user account ID and the time you log in, but it will not contain your user name or email address.
Error Logs
Error logs are used to track, trace, and correct faults in the performance of the service.
Error logs may include anonymized information such as user account IDs, but avoid personally identifiable information, such as user names and email addresses.
Backups and Data Retention and Deletion
Kate's App will make periodic backups of our databases. These backups will be kept for a period of time determined by our backup policies and practices, then will be deleted. Once deleted, they cannot be recovered.
We retain your data in our running database as long as your account remains active. Data in inactive acccounts will be retained for a period of time determined by the our data retention policies and practices, then deleted from the database. Once deleted, it cannot be recovered.
However, upon your request, we will:
- permanently delete all account information from our active database.
- permanently delete all of your medical information which you own from our active database.
Information which is in our backups will be deleted when the backup is deleted.
In any case, we will still retain the information in our audit and error logs, and any data necessary to comply with legal and regulatory obligations or to resolve disputes.
How We Use Your Data
To Manage User Accounts
Kate's App uses your account information to manage your account. This includes creating and deleting your account, implementing the Terms of Use, and satisying legal requirements.
To Provide This Service
Kate's App is a tool created to support family medical caregivers and the people they care for. It's purpose is to provide a platform for you to share and coordinate medical information, and to do it securely and efficiently, with attention to privacy, user permissions, and collaboration.
Kate's App will use the personal and medical information you store on Kate's App to show to you and to those users you choose to share it with. Specifically, Kate's App will let you:
- store and manage your personal and medical information
- share your information with other users
- determine which users to share it with
- protect the privacy and integrity of your information
To Communicate With Users
Kate's App will use your information to send notifications about record updates, reminders for appointments or prescriptions, for relevant user support messages, and to provide users information about this service.
Compliance Requirements
We will use your data to fulfill legal and regulatory obligations, such as responding to data subject requests.
Sharing Your Data
We will only share your data under these circumstances:
- With users you select: Your personal and medical information is shared only with users you have explicitly authorized. You control and manage these permissions.
- Service providers: Third-party providers who assist in hosting, security, or maintenance may have access at times to your information. We will limit this access to only necessary providers, and will take steps to protect such access through passwords, encryption, and other appropriate means.
- For legal requirements: If required by law, we may share data with authorities.
- Anonymized or aggregated data: We may use anonymous or aggregated data about you for purposes such as understanding user needs, or for applying for grants or soliciting sponsors.
We do not use your account information or you personal and medical information for marketing purposes.
We do not otherwise sell your information or share it with third parties.
Basis for Using Your Data
We use your data based on the following grounds:
- Consent: By using Kate's App, you provide explicit consent for us to process your medical information as described in this Privacy Policy and the Terms of Use.
- Contractual Necessity: The use is necessary to provide the services you request.
- Legal Obligations: The use is necessary to comply with applicable laws and regulations.
How we protect your information
Kate's App takes precautions to protect your information based on its sensitivity. For example, we may implement measures such as these to safeguard your data:
- Encryption: Encryption of information both in transit and at rest.
- Authentication: Authentication protocols to protect account access.
- Audits: Periodic audits and vulnerability assessments.
While we try to take reasonable and appropriate efforts to safeguard your data from unauthorized access or disclosure, no system is completely immune from attacks. We cannot guarantee the security of information transmitted over the Internet or stored in our databases and cannot be responsible for breaches beyond our reasonable control.
Your Rights
Kate's App acknowledges that you, as a user, have the following rights:
- To access your own data.
- To update or correct inaccurate or incomplete data.
- To have your data permanently deleted.
- To obtain your data in a portable format.
To ask for help exercising any of these rights, please contact us at support@katesapp.org or contact us through our message page.
Changes to This Policy
Kate's App reserves the right to update or modify this policy at any time and without prior notice by posting the revised version of the policy on this site. Changes to this policy will only apply to the information we obtain after we have posted the revised policy on this Site.
By using Kate's App after an updated Privacy Policy has been posted, you agree that all information obtained from or about you after the updated policy is posted will be subject to the terms of the updated policy.
You may read the current version of this policy at any time by following the link marked “Privacy Policy” at the bottom of each page.
Contact Information
If you have questions, concerns, or requests related to this Privacy Policy or your data, please contact:
Kate's App:
- URL: katesapp.org/message
- Email: katesapp@katesapp.org
Reviewed By: [Insert name and role]
Date: [Insert Date]