# Privacy Policy
**Last Updated: January 2, 2026**
---
## 📱 Your Privacy Matters
HYMS Max is privacy-first. We do **not** run servers for your data. By default, all data stays on your device (and, if you enable it, your personal iCloud). AI runs on-device unless you explicitly choose a cloud provider with your own API key.
---
## 1. Introduction
We operate the HYMS Max mobile application (“the App”). This policy explains how we handle (and mostly avoid handling) your data.
---
## 2. What We DO NOT Collect
We do **not** collect, store, or access:
- ❌ Patient names, MRNs, or identifying info
- ❌ Your personal info (email, phone, address)
- ❌ Clinical assessments, scores, notes, or transcripts
- ❌ Audio recordings or voice data
- ❌ Usage analytics or tracking data
- ❌ Device identifiers or location data
- ❌ Any user data whatsoever
We have **no servers, no databases, no analytics, no tracking**.
---
## 3. Where Your Data Is Stored
### 3.1 Local Device Storage (Primary)
- All patient profiles, assessments, and notes are stored **locally** via Core Data.
- iOS encrypts app data at rest; only you can access it on your device.
### 3.2 iCloud Sync (Optional, Off by Default)
- Disabled by default for maximum privacy.
- If you enable it in Settings, data syncs via **your personal iCloud** with Apple’s end-to-end encryption.
- We cannot see or access your iCloud data. You can turn it off anytime.
### 3.3 What We Can’t See
We have **no access** to your patients, assessments, notes, audio, transcripts, or iCloud data.
---
## 4. AI Scribe & AI Processing
### 4.1 Default: On-Device
- On-device models (Gemma Medical; Apple Foundation Models where available).
- On-device speech: Whisper.cpp and/or Apple Speech.
- **No audio or text leaves the device** for on-device providers.
### 4.2 Optional: Cloud Providers (User-Configured)
If you **explicitly** pick a cloud AI (Claude, OpenAI GPT-4, Gemini) and add **your own API key**:
- Only **text transcripts** you choose to send go to that provider.
- **Audio never leaves the device.**
- You control which provider is active and can switch back to on-device anytime.
### 4.3 Your Responsibilities
- Use de-identified subject codes (e.g., “Subject 001”).
- Review AI-generated content for accuracy.
- Follow your institution’s consent and recording policies.
---
## 5. Subscriptions
- Apple manages payments and subscriptions.
- We only know if you’re subscribed (yes/no).
- We don’t see your name, email, or payment method. See Apple’s Privacy Policy.
---
## 6. No Analytics or Tracking
We do **not** use cookies, analytics (Google/Firebase), tracking pixels, crash reporters, ad networks, or telemetry. We don’t know how you use the app.
---
## 7. Data Security
- **Encryption at rest:** iOS handles it automatically.
- **Biometrics/Passcode:** Use Face ID/Touch ID and a strong passcode.
- **Keychain:** Sensitive items stay in Keychain.
- **On-device AI:** Runs in Apple’s secure on-device environment.
- **iCloud:** End-to-end encrypted by Apple if you enable sync.
Your part: keep your device updated, use 2FA for iCloud, and don’t share your device.
---
## 8. Your Data, Your Control
- All data stays on your device (and iCloud if you enable it).
- Delete assessments/subjects anytime.
- No account to delete (we don’t host your data).
- Export as PDF if you want a copy.
- Switch AI provider or disable cloud AI at any time.
---
## 9. HIPAA Considerations
Designed to keep PHI under your control:
- âś… Local/iCloud storage you own; no third-party access from us.
- âś… On-device AI options to avoid cloud transmission.
- âś… No analytics/tracking.
Your responsibilities:
- Use de-identified identifiers.
- Get appropriate consent for recording.
- Verify AI outputs.
- Follow your institution’s policies.
- Secure your device (passcode/biometrics, iOS updates, iCloud 2FA).
We don’t sign BAAs because we never receive PHI.
---
## 10. Children’s Privacy
Not intended for children under 13; we do not knowingly collect any information.
---
## 11. International Users
No data is sent to our servers. iCloud (if enabled) follows Apple’s policies. Cloud AI (if you choose it) follows that provider’s region/policy.
---
## 12. Third-Party Services We Rely On
- **Apple iCloud (optional):** Sync you control; end-to-end encrypted. Â
- **Apple App Store:** Subscriptions and payments. Â
- **Apple Intelligence / Foundation Models:** On-device AI when available. Â
- **On-device speech:** Whisper.cpp / Apple Speech. Â
- **Optional cloud AI (user-keyed):** Anthropic Claude, OpenAI GPT-4, Google Gemini—only text you send, never audio.
No other third-party SDKs, analytics, or ads.
---
## 13. Changes to This Policy
We’ll update the “Last Updated” date for changes. Major changes will be noted in release notes. Core principle remains: **we don’t collect your data; on-device by default.**
---
## 14. Your Rights
Since we don’t collect data:
- Access/rectify/erase/export: Do it directly in the app or via PDF export.
- We don’t sell or share data (we don’t have it).
- GDPR/CCPA rights are inherently satisfied because nothing is collected by us.
---
## 15. Contact Us
Questions? Â
**Email:** info@vijayrenga.com Â
**Website:** https://sites.google.com/view/hymsmax Â
We cannot recover your data (it never leaves your control). For device/iCloud issues, contact Apple Support.
---
## 16. Acknowledgment
By using HYMS Max, you understand:
- Data stays on-device (and iCloud if you enable it).
- AI is on-device by default; cloud AI is optional and user-keyed.
- We do not collect or access your data.
- You are responsible for verifying AI outputs and securing your device.
---
## 17. Summary (TL;DR)
- đź”’ Data stays on your device; optional iCloud you control.
- 🤖 AI runs on-device by default; cloud AI only if you choose and key it.
- 🎙️ Audio never leaves your device; cloud AI sees text only (if you send it).
- đźš« No tracking, no analytics, no ads, no servers.
- âś… Privacy by design.