Skip to main content
Sign in

HealthHive Privacy Policy

  • Updated

Last updated: August 20, 2025

The complete Privacy Policy is provided at the end of this page.

Welcome to HealthHive

We’re glad you’re here. Whether you're managing your own health or helping someone else, we know how important it is to feel in control of your health information. We take that responsibility seriously.

Our job is to serve you. You decide how your data is used. If you want to share anonymized health data to help improve care and research, you can, but it’s always your choice. For more details, check out our HealthHive Privacy Notice.

This policy explains how we collect, use, and share your information when you use our website (HealthHive.org) or our app. It also covers data from devices you connect to the app. By using HealthHive, you agree that your information may be stored in the U.S. and handled as described here.

We also collect limited data when you use AI-powered features like summaries or recommendations. This helps us improve those tools and stay compliant. You can turn off AI features anytime.

What We Collect

We collect information from you, from services you connect, and automatically through your use of HealthHive. This helps us personalize your experience.

Here’s what we may collect:

  • Basic Info: Your name, email, phone number, etc.
  • Health Info: Conditions, medications, treatment history, and preferences, but only if you choose to share them. When handling PHI on behalf of covered entities, we comply with applicable HIPAA standards.
  • Device Info: Type of device, operating system, and unique identifiers.
  • Usage Info: Pages you visit, features you use, and time spent. We also collect metadata from AI features (like prompt types or usage frequency) but never link it to your health data.

If you connect services like Medicare Blue Button, patient portals, or insurance platforms, we may collect claims and coverage data. You can revoke access anytime.

How We Use Your Info

We use your information to:

  • Provide and improve our services
  • Respond to your questions and support requests
  • Personalize your experience (like location-based help or AI-generated summaries, if you opt in)
  • Develop new features and tools using de-identified data
  • Send you updates or promotions (you can opt out anytime)
  • Understand how people use HealthHive so we can make it better
  • Run surveys (some may use AI features to help analyze responses)
  • Follow legal rules and regulations
  • Investigate fraud or safety concerns

How We Share Your Info

We do not sell your personal information. We may share it in these situations:

  • With trusted service providers (like AWS or customer support platforms) who follow strict privacy rules
  • With healthcare teams or organizations, you choose to connect with
  • With regulators or law enforcement if required by law
  • With research partners using anonymized data to improve care
  • If our company is sold or merged, your data may transfer, but we’ll notify you
  • To protect safety or prevent fraud, if necessary

Your Choices

You’re in control. You can:

  • Update or delete your account info
  • Opt-out of research data sharing
  • Disconnect services like Medicare Blue Button and other data integrations
  • Turn off cookies in your browser
  • Disable AI features in your account settings

How We Protect Your Data

We use encryption, access controls, and secure storage to keep your data safe. AI data is stored separately from health data and follows strict rules. Everything is hosted in secure U.S.-based AWS regions.

If there’s a data breach, we’ll notify you as required by law.

Cookies and Tracking

We use cookies to improve your experience and understand how you use HealthHive. You can control cookies through your browser.

Children’s Privacy

Our Service is not intended to be managed by children under 16. We do not knowingly collect personal information from children without parental consent.

Third-Party Services

You might see links to other websites or tools. We’re not responsible for their privacy practices. Read their policies before sharing info. We won’t share your data with them unless you give permission.

Changes to This Policy

We may update this policy. If we make big changes, we’ll let you know. We’ll always explain updates related to AI, CMS integrations, or data sharing clearly. We won’t reduce your privacy protections without your consent.

Contact Us

Questions? Reach out anytime at privacy@healthhive.org or by mail at 830 Morris Turnpike, Suite 401, Short Hills, NJ 07078.

 

HealthHive Privacy Policy 

Introduction and Scope

Welcome to HealthHive. We’re glad you are here. Whether you’re managing your own health or supporting a loved one, we know how important it is to feel in control of your health information. We take that responsibility seriously.

We are a service business, and our goal is to provide the best service and solution to our users. You should have control over your information and the freedom to decide how your data is used. We also believe that there is a significant public benefit to sharing certain anonymized health information that cannot be attributed back to you (your personal health information or “PHI”) for research, product development, and the development of clinical algorithms. Therefore, we make the option to share available to you. However, we also give you a choice not to share so that you may make the best decision for you. Please see our HealthHive Privacy Notice for more information.

This Privacy Policy (“Policy”) describes how HealthHive, PBC (“HealthHive,” “we,” “us,” or “our”) collects, uses, and discloses information that we obtain through your use of the HealthHive.org website (the “Site”) and HealthHive software (“the App”) (collectively “the Service”), including information that we collect from devices that you connect to a mobile device running the App. By using or downloading the Service, you agree that your personal information, including any information about your health that you provide directly to us or that we collect through your use of the Service, may be transferred to and/or stored in the United States and handled as described in this Policy. We may also collect limited interaction data when you engage with AI-powered features, such as prompts, summaries, or personalized recommendations, solely to improve functionality and ensure compliance. You may opt out of specific AI features at any time. 

Information We Collect

We collect information directly from you, from third parties, and automatically through your use of our Service. We do this to deliver more personalized Service to you. The types of information we collect include:

  • Personal Information: Your name, email address, phone number, and other contact information.
  • Health Information: Information about your health conditions, medications, treatment history, and other health-related data that you choose to provide. This information, which is provided only if you choose to do so, may include personal and preference information that allows us to provide your care team with a broader perspective of how you would like your health and social care to be delivered. When handling PHI on behalf of covered entities, we comply with applicable HIPAA standards.
  • Device Information: Information about the devices you use to access our Service, including hardware model, operating system, and unique device identifiers.
  • Usage Information: Information about your interactions with our Service, such as pages visited, features used, and time spent. This may include metadata associated with AI features, such as prompt type, response length, and feature usage frequency, which is never linked to your PHI.

We may also collect information from third-party services, such as Medicare Blue Button, and a range of health provider (e.g., including patient portals) and payer (insurance) integration or platform partners you may choose to connect. When you authorize HealthHive to access your Medicare data via CMS Blue Button, your patient data through patient portals, or your insurance data through other integration partners, we may collect and store claims and coverage data in accordance with CMS or other applicable guidelines. You may revoke access to these integrations at any time.

How We Use Your Information

We process your information, including your personal information, for the following purposes:

  • To provide our Service to you, to communicate with you about your use of our Service, to respond to your inquiries, and for other customer service purposes. This may also include responding to questions submitted via AI-powered chat features which may be added in the future.
  • To tailor the content and information we may send or display to you, offer location customization, localization, personalized help and instructions, and otherwise personalize your experiences while using the Service. At your option, personalization may include AI-generated summaries, reminders, or insights based on your usage patterns or preferences. These features operate only on data you have explicitly permitted for such use.
  • To research and develop new products and features. This includes evaluating the performance and safety of AI-powered tools, such as document summarization, care coordination prompts, and predictive analytics. All development is conducted using de-identified or aggregated data unless you have explicitly opted in.
  • For marketing purposes, to the extent permitted by law and, where required, with your consent. We may use your email address to send you news, newsletters, and promotions or to contact you about products or information we think may interest you. We also may use the information we learn about you to assist us in advertising our services on third-party websites. You can opt out of receiving marketing anytime.
  • To better understand how users access and use our Service, both on an aggregated and individualized basis, to improve our Service and respond to user desires and preferences, and for other analytical purposes. This includes analysis of how users engage with features, such as prompt types, usage frequency, and opt-out rates, which helps us refine functionality and ensure accessibility.
  • To administer surveys and questionnaires. Some surveys may be delivered or interpreted using AI features to streamline response analysis. You will be notified if this applies.
  • To comply with legal obligations as part of our general business operations and for other business administration purposes. This includes compliance with CMS Blue Button data use requirements, FTC Health Breach Notification Rule, HIPAA, and any applicable AI-specific regulatory guidance.
  • Where we believe necessary to investigate, prevent or act regarding illegal activities, suspected fraud, situations involving potential threats to the safety of any person, or violations of our Terms of Use or this Privacy Policy. 

How We Share Your Information

We do not sell your personal information. We may share your information in the following circumstances:

  • Service Providers: We may disclose your information to third-party vendors, service providers, contractors, or agents who perform functions on our behalf. These include hosting providers, analytics services, customer support platforms, and infrastructure partners such as Amazon Web Services (AWS). Any vendors supporting AI-powered features are contractually bound to uphold HealthHive’s privacy and security standards. We do not permit downstream use of your data for profiling or advertising.
  • Healthcare Providers and Organizations You Authorize: If you choose to connect your account to a healthcare provider, care team, or organization, we will share your information with them in accordance with your preferences. This includes data accessed via CMS Blue Button, which is shared only with entities you explicitly authorize. You may revoke access at any time.
  • Regulatory and Legal Requirements: We may disclose your information to government agencies, regulators, or law enforcement if required to comply with applicable laws, regulations, legal processes, or enforceable governmental requests. This includes compliance with the FTC Health Breach Notification Rule and any AI-specific regulatory guidance.
  • Research and Development: We may share aggregated, anonymized data with research partners, academic institutions, or public health organizations to support innovation and improve care models. AI-generated insights are never shared in a way that could identify you or influence clinical decisions without your explicit consent.
  • Business Transfers: If we are involved in a merger, acquisition, financing, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change in ownership or control of your personal information.
  • Protection of Rights: We may disclose your information where we believe it is necessary to investigate, prevent, or act regarding illegal activities, suspected fraud, threats to safety, or violations of our Terms of Use or this Privacy Policy. 

Your Choices

You have choices about your information:

  • You may update or delete your account information at any time
  • You may opt out of data sharing for research
  • You may revoke access to connected services like Medicare Blue Button & other data integrations
  • You may disable cookies through your browser settings
  • You may opt out of AI-powered features via your account preferences 

Data Security

  • We implement reasonable safeguards to protect your information, including encryption, access controls, and secure data storage. AI interactions are stored separately from PHI and are subject to strict access protocols. Our infrastructure is hosted on Amazon Web Services (AWS), and we follow AWS-recommended security practices, including role-based access and continuous monitoring. All data is stored in U.S.-based AWS regions, and we do not transfer PHI outside the United States unless required by law or explicitly authorized by you.
  • In the event of a data breach involving health information, we will notify affected users in accordance with applicable laws, including the FTC Health Breach Notification Rule. We also maintain breach response protocols specific to AI-generated content and metadata, ensuring that any affected users are notified promptly and clearly. 

Cookies and Tracking Technologies

  • We use cookies and similar technologies to improve your experience, analyze usage, and deliver relevant content. These technologies help us understand how users interact with our Service and allow us to personalize features and communications.
  • You can control cookies through your browser settings and opt out of certain tracking technologies.

Children’s Privacy

  • Our Service is not intended to be managed by children under 16. We do not knowingly collect personal information from children without parental consent.
  • If we learn that we have collected personal information from a child under 13 without parental consent, we will delete that information promptly.

Third-Party Links and Services

  • Our Service may contain links to third-party websites or services. We are not responsible for the privacy practices of those third parties. We encourage you to read their privacy policies before providing any information.
  • We do not share your data with these services unless you explicitly authorize the connection. 

Changes to This Policy

  • We may update this Policy from time to time. If we make material changes, we will notify you via email or through the Service. We encourage you to review this Policy periodically to stay informed about our practices.
  • All changes related to AI features, CMS integrations, or data sharing will be clearly marked and explained in context. We will never make changes that reduce your privacy protections without your consent.

Contact Us

  • Questions? Reach out anytime at privacy@healthhive.org or by mail at 830 Morris Turnpike, Suite 401, Short Hills, NJ 07078.

 


 

Related articles