Privacy policy.

Because we deal with your healthcare information, your privacy is incredibly important to us — it has to be. This policy explains how the HealthScout® app handles your health data and other information. By using HealthScout, you agree to the collection and use of information in accordance with this policy. HealthScout is an educational tool only and does not provide medical advice.

Our Privacy Pledge To You

We pledge the following about your privacy.

  • We cannot see any of your health data

  • We never store your health data on our servers — it’s secured only on your device or optionally on your personally secured iCloud

  • We never share your health data with advertisers

  • We never use your health data for marketing purposes

  • We never use your health data for training AI models

  • We don't combine health data with analytics data

You can read about each of these points in more detail below.

Data Collection and Use

We access health data from Apple Health only with your explicit permission. You control which types of health data we can access through iOS Settings. We use this data only to answer your health-related questions and provide insights.

HealthScout transmits the minimal necessary data to third-party AI processors under encrypted, transient ‘compute-and-delete’ rules. No raw Apple Health data is permanently stored on HealthScout-controlled servers.

You can revoke access to your health data at any time through your iOS Settings. We do not store your Apple Health data in the cloud or on any servers. Your data remains encrypted on your device protected by your device's biometric security system. Health data is only used to provide services to you within the app.

No HealthScout employee can see or read your personal health data unless you explicitly use the “Send Logs to HealthScout” feature.  

Cloud Processing and Data Transmission

To answer your questions, we process your health data using the server based AI providers. Data is transmitted securely using industry-standard HTTPS encryption, which ensures your data is protected during transfer.

The data we send includes:

  • Your health-related questions

  • Relevant health data from Apple Health needed to answer your questions

  • No personal identifying information beyond what's necessary to provide the service

HealthScout has selected AI services from Anthropic and Google which do not use queries for model training and do not permanently store your information. All data transmission occurs over encrypted connections.

Chat History and My Added Records Storage

While we never permanently store raw Apple Health data, your chat conversations with HealthScout (which may include health information you choose to discuss) and your My Added Records entries can be stored locally on your device or in iCloud (Apple's secure cloud storage service) if you enable it. This allows you to delete and reinstall HealthScout and maintain your conversation history. This storage is:

  • Secured by your device’s biometrics (Touch ID or Face ID)

  • Completely under your control

  • Can be deleted at any time

  • Is encrypted using Apple’s Advanced Data Protection

  • Is separate from the Apple Health data itself

  • Only includes information you explicitly shared

You can choose to:

  • Keep chat history and My Added Records only on your device

  • Sync chat history and My Added Records through iCloud

  • Delete chat history and My Added Records at any time

By enabling Face ID/Touch ID you provide express consent for HealthScout to use those biometrics solely to lock or unlock chat history. We never store biometric templates.

Data Retention and Deletion

HealthScout does not store your health records on servers or in the cloud. Your questions and related health data are only temporarily processed to provide answers. Since we don't store your data on our servers, there is nothing to delete from our systems.

You can clear your app data at any time through your iOS Settings. The AI APIs process data transiently and do not maintain persistent storage of your health information.

Emergency Situations 

In cases where your questions indicate a potential medical emergency, our system may automatically provide emergency contact information and urgent care resources. Automated, on-device keyword detection may flag crisis terms solely to surface emergency resources; no human review occurs unless you use the “Send Logs to HealthScout” feature.

Children's Data

You must either be 18 years of age or older or be a parent/legal guardian acting on behalf of a minor to use HealthScout. We do not knowingly collect personal information directly from children under the age of 13.

We recognize that parents or legal guardians may use HealthScout to manage their children's health information. In such cases:

  • Only parents or legal guardians should input or access children's health information through their own account

  • Parents are responsible for ensuring appropriate permissions when sharing their children's health data

  • All children's health data processed through the app receives the same privacy protections as adult data

  • Parents can control all aspects of children's data access through iOS Settings

If we learn that we have collected personal information from a child under age 13 without parental consent, we will take steps to delete that information as quickly as possible. If you believe we might have any information directly from a child under 13, please contact us at [email protected].

Responsible Privacy Officer

Joe Sipher, founder of HealthScout, serves as the designated executive responsible for HealthScout's privacy commitments and compliance with this policy.

Data Deletion Requests

Because of how HealthScout is designed, we do not maintain any user accounts, databases, or server-side records that contain your personal or health information. We have no way to look up, access, or identify your data on our systems. This means:

  • Your health data from Apple Health is stored only on your device and is never sent to or stored on our servers.

  • Your chat history and added health records are stored on your device and in your personal iCloud account via Apple's CloudKit service, which only you control.

  • AI queries are processed transiently by our AI providers and are not permanently stored.

If you contact us at [email protected] requesting data deletion, we will confirm that we do not possess any of your personal or health data and provide instructions for how to delete your data yourself:

  • Chat history and added records: Use "Delete Chat History" in the HealthScout Options menu, or delete the app and its associated iCloud data through your device settings.

  • Apple Health permissions: Revoke HealthScout's access through the Apple Health app or iOS Settings.

  • App data: Deleting the HealthScout app removes all locally stored data from your device.

Analytics and Performance Data

We collect basic app usage data to improve our service, including:

  • App performance metrics

  • Feature usage statistics

  • Crash reports

  • Coarse location (city-level) inferred by Firebase; no IP addresses are retained or exposed to us.

This analytics data is:

  • Completely separate from your health data

  • Never connected to your personal information

  • Used only to improve app functionality

  • Collected and processed through Firebase Analytics with appropriate privacy safeguards

Dormant Use

HealthScout does not require user accounts or logins. There is no concept of an active or dormant account. If you stop using HealthScout, your data remains on your device and in your personal iCloud account until you choose to delete it. We do not take any action on unused installations. Subscriptions are managed entirely through Apple and are subject to Apple's terms and renewal policies.

Transfer of Ownership

In the event that HealthScout or Doodle Buddy Labs LLC is acquired, merges with another company, or ceases operations, your personal health data would not be affected because we do not store it on our servers. Anonymous analytics data and operational logs maintained through Firebase and Google Cloud services would transfer to any successor entity, but this data contains no personal health information and cannot be linked to individual users. In the event of such a transfer, we will notify you through the app. Any successor entity will be required to honor this privacy policy unless you affirmatively consent to different terms. If you do not wish to continue under new ownership, you can delete your local data at any time: use "Delete Chat History" in the HealthScout Options menu, revoke Apple Health permissions through the Apple Health app or iOS Settings, and remove the app from your device.

Third-Party Service Commitments

HealthScout uses AI services from Google (Gemini) and Anthropic (Claude) to process your health questions. These services operate under their standard API terms of service, which prohibit the use of your queries for model training and do not permanently store your information. We select AI providers whose terms are consistent with our privacy commitments to you. We also use Google Firebase for anonymous analytics and Apple CloudKit for optional cloud storage of your conversations, both of which operate under their respective terms of service with privacy protections appropriate for the data they handle.

State Specific Privacy Rights

California Residents

As a California resident, you have specific rights under the California Consumer Privacy Act (CCPA) to:

  • Request details about personal information we collect and how we use it

  • Request deletion of your information

  • Be informed that analytics data is collected anonymously and cannot be linked to you or your health information

  • Exercise these rights without discrimination

Exercising Your Rights

To exercise your privacy rights, use the in-app settings to control data collection and delete your data, or email [email protected] for specific requests. We will respond within 45 days at no charge for reasonable requests. Because HealthScout does not maintain user accounts or server-side personal data, most privacy actions — including data deletion — can be completed immediately by you through the app or your device settings without needing to contact us.

Other States

Residents of Virginia, Colorado, and other states may have similar rights under their state laws. We honor these rights regardless of your location in the US.

Your Rights

You have the rights to do the following:

  • View what health data types we access in iOS Settings

  • Revoke access to any or all health data types at any time

  • Request information about how your data is used

  • Control app permissions through iOS Settings

  • Delete all app data from your device

Security Measures

All data transmission is encrypted using industry standards. We use Apple's security frameworks and best practices. We maintain industry-standard security practices. We process only the minimum health data necessary. 

Changes to This Policy

We may update this privacy policy from time to time. For material changes — meaning changes that affect how your data is used in ways you would not reasonably expect — we will release an app update that presents a summary of those changes and requires you to acknowledge them before continuing to use HealthScout.

If you do not wish to accept an updated policy, you can delete your chat history and My Added Records through the HealthScout Options menu, revoke Apple Health permissions through iOS Settings, and remove the app. You can review previous versions of this policy by contacting us at [email protected].

Contact Information

For any questions about this privacy policy or our data practices, please contact us at:

[email protected]

HealthScout®, a service of Doodle Buddy Labs LLC.

_______________________

Last Updated: May 19, 2026