Privacy & HIPAA Policy

Effective Date: May 1, 2025
Last Updated: May 1, 2025
 
PulseGen.ai is committed to protecting the privacy and security of your Protected Health Information (PHI) in compliance with the Health Insurance Portability and Accountability Act (HIPAA). This Privacy Policy outlines how we collect, use, store, and protect your PHI.
What is Protected Health Information (PHI)?
PHI refers to any information about your health status, healthcare services, or payment for healthcare that can identify you.

Examples of PHI include:

• Personal identifiers (e.g., name, date of birth, address).

• Health data (e.g., medical history, treatment information).

• Device-generated health metrics.

 
How We Collect PHI
We may collect your PHI through the following methods:

1. Direct Input: Information you provide directly through our platform, such as completing health assessments, journaling symptoms, or logging medications.

2. Mobile and VoIP Devices: Data entered via our mobile application or collected through voice or video interactions using VoIP technology, including telehealth consultations or voice-enabled journaling.

3. Integration with Third-Party Sources: Electronic Health Records (EHRs) and Health Information Exchanges (HIEs), data from wearable devices (e.g., fitness trackers, smartwatches) and connected health monitors, partner APIs that enable secure data sharing across systems. A

4. Authorized sharing by Healthcare Providers or Payers: Information shared with us by your healthcare providers, insurers, or other entities with your explicit consent.

​

GenGuard℠ Privacy Architecture

PulseGen.ai is powered by GenGuard℠, our proprietary privacy-first architecture designed to add an extra layer of protection between you and the AI technologies that support our platform.

 

What GenGuard℠ Does:

• Limits Exposure: It ensures that personally identifiable health information (PHI) is withheld or obfuscated before being processed by AI systems.

• Manages Context: GenGuard℠ filters and structures input to ensure AI only sees what’s necessary—nothing more.

• Enforces Compliance: All AI interactions are governed by our HIPAA-aligned rules and privacy protocols.

• Enhances Safety: GenGuard℠ is designed to prevent unauthorized access, misuse, or unintended sharing of your sensitive information.

 

By default, GenGuard℠ is enabled across all SMS, VoIP, and journaling experiences, ensuring your data remains protected without requiring any additional action from you.

 
How We Use Your PHI
We use your PHI for the following purposes:

1. Health Management: To provide tools for tracking your health conditions, medications, and mental well-being.

2. Insights Generation: To create personalized health reports, summaries, and alerts based on your data.

3. Data Sharing (with Consent): To share your health data with: Healthcare providers for Telehealth or in-person care, organizations such as schools or employers, as directed by you.

4. Product Improvement: To improve our services using anonymized, aggregated data.

5. Compliance: To fulfill legal and regulatory requirements.

Your Rights
As a PulseGen.ai user, you have the following rights regarding your PHI:

1. Right to Access: Request a copy of your PHI at any time.

2. Right to Amend: Request corrections to your health information if you believe it is inaccurate or incomplete.

3. Right to Restrict: Limit the use or sharing of your PHI in certain circumstances.

4. Right to Revoke Consent: Withdraw your authorization for us to use or share your PHI, except where actions have already been taken based on prior consent.

5. Right to Accounting of Disclosures: Receive a record of entities to whom your PHI has been disclosed.

How We Protect Your PHI
We use advanced measures to safeguard your PHI, including:
1. Encryption: All PHI is encrypted both in transit and at rest using industry-standard protocols.
2. Access Controls: Access to PHI is restricted to authorized personnel and secured through multi-factor authentication.
3. Audit Trails: Comprehensive logging of access and activity ensures accountability.
4. Regular Security Reviews: Routine assessments to identify and mitigate vulnerabilities.

Sharing PHI with Third Parties
We may share your PHI with third parties under the following conditions:

1. With Your Consent: PHI will only be shared when you provide explicit authorization.

2. Business Associates: Vendors performing services on our behalf must sign a Business Associate Agreement (BAA) to ensure compliance with HIPAA.

3. Legal Obligations: PHI may be disclosed as required by law, such as in response to subpoenas or court orders.

How to File a Complaint
If you believe your privacy rights have been violated, you can file a complaint:

1. With PulseGen.ai: Contact us at [Insert Email] or [Insert Phone Number].

2. With the U.S. Department of Health and Human Services (HHS): Visit the HHS Office for Civil Rights (OCR) website.

Changes to This Privacy Policy
We may update this policy from time to time to reflect changes in our practices or regulatory requirements. Any updates will be posted on our website, and the effective date will be revised accordingly.

Contact Information
For questions or concerns about this Privacy Policy, please contact us at:
Email: privacy@pulsegen.ai

PulseGen.ai is dedicated to maintaining the confidentiality, security, and transparency of your health information, ensuring your data is always in your control.