Privacy Policy

Last Updated: August 8th, 2025

Welcome to the R.A.V.I.D. platform, operated by R.A.V.I.D. LLC (also collectively referred to herein as either "we," "us," or "our"). We are committed to protecting your privacy and ensuring the security of your personal and health information. This Privacy Policy explains how we collect, use, store, share, and protect your data when you use our App, in compliance with applicable laws, including the Health Insurance Portability and Accountability Act (HIPAA), General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and the requirements of the Apple App Store and Google Play Store.

By using the R.A.V.I.D. platform on its website, mobile view and the App, you agree to the practices described in this Privacy Policy. If you do not agree, please do NOT use the website, mobile view and the App and leave the R.A.V.I.D. platform immediately.

1. Information We Collect

We collect information to provide and improve our services, ensure the functionality of the App, and comply with legal obligations. The types of data we collect include:

a. Personal Information

Account Information: Name, email address, phone number, date of birth, and account credentials when you register or create an account.
Contact Information: Address or all other details provided for communication and / or account verification.
Health Data: Information such as medical history, symptoms, vital signs (e.g., heart rate, blood pressure), fitness data, or lab results, which you input or authorize us to collect (e.g., via Apple HealthKit or Google Fit) and additionally all information that you enable to share within your QR codes across the R.A.V.I.D. platform, such as but not limited to the Emergency QR code.
Payment Information: Billing details (e.g., credit card information) processed through secure third-party payment providers if you make in-app purchases or subscriptions.

b. Automatically Collected Information

Device Information: Device type, operating system, IP address, device ID, and app usage data.
Usage Data: Interactions with the App, such as features used, time spent, and navigation patterns, collected via analytics tools.
Location Data: Coarse or precise location (if enabled) to provide location-based services, such as finding nearby healthcare providers.
Crash Reports: Diagnostic data to improve App performance and fix issues.

c. Information from Third Parties

HealthKit/Google Fit Data: With your explicit consent, we may access health and fitness data from Apple HealthKit or Google Fit to provide personalized features.
Healthcare Providers: Health records or data shared with your permission through integrations with participating healthcare organizations.
Third-Party Services: Data from analytics providers (e.g., Google Analytics) or advertising networks, if applicable, will be shared with your permission within this Privacy Policy once any such relationships are formed.

d. Sensitive Data

As a healthcare app, we may process protected health information (PHI) under HIPAA. This includes health data you provide or that we receive from integrated services. We only collect data necessary for the App's functionality and obtain your consent where required.

2. How We Use Your Information

We use your information to include all forms of data to provide, personalize, and improve the website, mobile view and the App's features, functions and services, including:

Service Delivery: To manage your account to provide AI analysis, AI chat, AI agentic features, health insights, track fitness goals, or facilitate communication with any healthcare collaborators, researchers, providers to include for the pursuit of genomic data research and studies
Personalization: To tailor data, content, recommendations, or features based on your health data, preferences, services and subscriptions.
Analytics and Improvement: To analyze usage patterns, enhance App functionality, and fix technical issues.
Communication: To send notifications (e.g. purchase, completion, expiration, suspension, termination of Purchases, Services and Subscriptions), updates (e.g. updates on Terms and Privacy), or respond to your inquiries (e.g., appointment reminders or health alerts).
Legal Compliance: To comply with applicable laws, such as HIPAA, GDPR, or CCPA, and respond to legal requests.
Marketing: With your consent, to send promotional offers or personalized offers, advertisements. You can opt out at any time (see Section 7).

We do NOT use your data for purposes other than those disclosed unless we obtain your further consent.

3. How We Share Your Information

We do NOT sell your personal or health data. We may share your information in the following cases:

a. With Your Consent

Healthcare Providers: To share health data with your authorized providers for treatment or consultation, encrypted and compliant with HIPAA.
Third-Party Apps: If you choose to share data with other apps (e.g., fitness trackers), subject to their privacy policies, for e.g. you will be subject to Apple's Health App & Privacy if you share data with them.

b. Service Providers

We engage third-party service providers to perform functions on our behalf, such as:

Cloud storage (e.g., Google Cloud, encrypted and HIPAA compliant)
Analytics (e.g., Google Analytics, with anonymized data)
Payment processing (e.g., Stripe)

These providers are contractually obligated to protect your data and use it only for the purposes we specify. For more information, please review their Privacy Policies.

We are not responsible for the privacy practices of third parties.

c. Legal Obligations

We may disclose information if required by law, regulation, or legal process.

d. De-Identified Data

We may share aggregated, anonymized data that cannot reasonably be used to identify you.

4. Data Security

We implement robust security measures to protect your data, including:

Encryption: Data is encrypted in transit (using TLS) and at rest on our servers.
Access Controls: Strict access restrictions for our employees and service providers.
HIPAA Compliance: For PHI, we adhere to HIPAA security standards, including regular audits and risk assessments.
Regular Updates: We maintain up-to-date security patches and protocols.

Despite these measures, no system is completely secure and are at risk to hack by criminals and non-state actors. We cannot guarantee absolute security but we are committed to safeguarding your data.

5. Your Rights and Choices

You have control over your data and can exercise the following rights, subject to applicable laws:

Access: Request a copy of your personal or health data.
Correction: Update or correct inaccurate data.
Deletion: Request deletion of your data, except where we are legally required to retain it.
Opt-Out: Stop sharing data with third parties or opt out of marketing communications.
Revoke Consent: Withdraw consent for data collection via App settings or by contacting us.
Data Portability: Request your data in a structured, machine-readable format.

To exercise these rights, please use the in-app settings or if that is not possible, please contact us at: privacy@ravid.cloud. We will respond within the time-frames required by law (e.g., 30 days under GDPR/CCPA).

For iOS users, you can manage HealthKit permissions in the Health app or App settings.

For Android users, manage Google Fit permissions in the App or device settings.

6. Data Retention

We retain your data only as long as necessary for the purposes outlined in this Privacy Policy or as required by law:

Account Data: Kept while your account is active and for a maximum of 2 years after account deletion, unless otherwise required (e.g., for tax purposes or legal purposes or for research or association studies that you agreed to participate and with your consent or that of your authorized account sharing representative/ proxy).
Health Data: Retained until you request deletion or as needed for ongoing services, subject to HIPAA requirements.
Usage Data: Anonymized after 12 months for analytics purposes.

When data is no longer needed, we securely delete or anonymize it.

7. Marketing and Tracking

Marketing Communications: We may send promotional emails or push notifications with your consent. Opt out via email, unsubscribe links or App settings.
Tracking: We do NOT track you across third-party apps or websites for advertising without consent. If we use tracking for analytics, data is anonymized or aggregated. You can opt out of tracking via App settings or device privacy controls.
Ads: At this time, we do NOT have an external ad strategy or an ad supported business model. If the App however includes internal ads, or placement ads or strategic messages or nudges or messages from within our marketplace of services they will be delivered internally. If however in the future this changes and we use an ad provider, e.g., Google AdMob, and data used for ads will be disclosed in a Data Safety Form.

8. Children's Privacy

The R.A.V.I.D. platform and its website, mobile view and the App is not intended for users under 18 years. We do not knowingly collect data from children without verifiable parental consent, as required by the Children's Online Privacy Protection Act (COPPA) and GDPR.

If you believe we have collected data from a child, contact us immediately at:privacy@ravid.cloud

We do however allow users to create accounts for their minor children or loved ones or under their supervised legal or medical care (such as medical professionals, clinics and hospitals) or research and governmental agencies and or their organizations and in that case, they have access to the same under accessibility provisions that are provided. In such cases the user is responsible for all the information that is being stored on R.A.V.I.D. and will be governed by the same Privacy Terms of any user that keeps their information on the R.A.V.I.D. platform.

9. International Data Transfers

Your data may be stored or processed outside your country, including in the U.S. or EU or any other region provide by our Cloud providers such as Google Cloud or Azure or AWS. We ensure compliance with applicable laws (e.g., GDPR for EU users) through Standard Contractual Clauses or other safeguards. For HIPAA-covered data, we use HIPAA-compliant providers.

10. Third-Party Services

The website, mobile view and the App integrate with third-party services (e.g., AI Agents, HealthKit, Google Fit, analytics tools etc). Please refer to their Privacy Policy as listed below:

Apple HealthKit - Apple Privacy Policy:https://www.apple.com/legal/privacy/
Google Fit:https://policies.google.com/privacy
Fitbit Privacy Policy:https://policies.google.com/privacy
Google Gemini AI:https://policies.google.com/privacy
Claude Sonnet AI by Anthropic:https://www.anthropic.com/legal/privacy
Grok by xAIhttps://x.ai/legal/privacy-policy

We are not responsible for the privacy practices of third parties.

11. Compliance with App Store Requirements

a. Apple App Store

We provide a link to this Privacy Policy in App Store Connect and within the App.
We disclose all data collected, including via third-party SDKs, in our Privacy Nutrition Labels.
We obtain user consent before collecting data and allow users to revoke consent via App settings.
We adhere to Apple's data minimization principle, collecting only necessary data.

Reference:

https://developer.apple.com/app-store/app-privacy-details/

b. Google Play Store

We link this Privacy Policy in the Play Console and App, accessible via an active, non-geofenced URL.
We complete the Data Safety Form, disclosing data collection, use, and sharing practices.

Reference:

https://support.google.com/googleplay/android-developer/answer/9859455

12. HIPAA Compliance

As a HIPAA-covered entity or business associate, we comply with HIPAA privacy and security rules for PHI. We:

Use and disclose PHI only as permitted by HIPAA (e.g., for treatment or with your authorization).
Maintain a Notice of Privacy Practices (available at privacy@ravid.cloud).
Enter into Business Associate Agreements with service providers handling PHI.

Reference:

https://www.hhs.gov/hipaa/for-professionals/privacy/

13. Changes to This Privacy Policy

We may update this Privacy Policy to reflect changes in our practices or legal requirements. We will notify you of material changes via in-app notifications, email, or a prominent notice in the App before the changes take effect. Your continued use of the App after updates constitutes acceptance of the revised policy.

14. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please refer tohttps://policies.ravid.cloud/privacyor contact us at:

Email:privacy@ravid.cloud

Address: Privacy Officer c/o R.A.V.I.D. LLC, 5900 Balcones Drive Suite 100, Austin, TX 78731

For General Data Protection Regulation (GDPR) purposes, our Data Protection Officer can be reached at privacy@ravid.cloud

For the Health Insurance Portability and Accountability Act (HIPAA) inquiries, contact our Privacy Officer at privacy@ravid.cloud

We additionally comply with the California Consumer Privacy Act (CCPA) and other applicable laws of the United States of America.

15. Additional Information

If you have questions about R.A.V.I.D.'s Privacy Policy or privacy practices including where a third-party service provider is acting on our behalf, or you would like to contact our Data Protection Officer and or Privacy Officer, please refer tohttps://policies.ravid.cloud/privacyor contact us at:

Email:privacy@ravid.cloud

Address: Privacy Officer c/o R.A.V.I.D. LLC, 5900 Balcones Drive Suite 100, Austin, TX 78731

You can also ask us questions about how to submit a privacy complaint and we will endeavor to help.

R.A.V.I.D. takes your privacy questions seriously.

A dedicated team reviews your inquiry to determine how best to respond to your question or concern, including those inquiries received in response to an access or download request.

In most cases, we aspire that all substantive contacts with legitimate requests will receive a response within seven days. In other cases, we may require additional information or let you know that we need more time to respond.

Where your complaint indicates an improvement could be made in our handling of privacy issues, we will take steps to make such an update at the next reasonable opportunity. In the event that a privacy issue has resulted in a negative impact on you or another person, we will take steps to address that with you or that other person.

You may at any time — including if you are not satisfied with R.A.V.I.D.'s response — refer your complaint to the applicable regulator. If you ask us, we will endeavor to provide you with information about relevant complaint avenues which may be applicable to your circumstances.

When there is a material change to this Privacy Policy, we will post a notice on this website at least a week in advance of doing so and contact you directly about the change if we have your data and contact information on file.