Privacy Policy

Introduction

Yoohoo Cares, Inc. ("we," "us," "our," or "Company") is committed to protecting your privacy and ensuring you have a positive experience on our platform and services. This Privacy Policy explains what information we collect, how we use it, how we protect it, and what rights you have regarding your data.

This policy applies to all users of Yoohoo Cares services, including our mobile app, website, and related services. Please read this policy carefully, and contact us if you have any questions.

Information We Collect

We collect information in several ways to provide and improve our services. Here's what we gather:

Account Information

• Name, email address, and phone number: Required to create and manage your account
• Location: Used to provide location-relevant services and support
• Account preferences: Your settings and customization choices

Voice Data

• Voice samples you provide with your explicit consent for voice synthesis
• These samples are used exclusively to generate personalized check-in calls
• Voice data is only collected when you actively provide it

Call Data

• Call transcripts: Text records of check-in calls
• Call duration and frequency: Metadata about your calls
• Call summaries: AI-generated summaries of call content (when enabled)

Health-Related Information

• Medication schedules and adherence information you share during calls
• Appointment information and reminders
• Wellness observations and health concerns you report
• This information is only collected as you choose to share it during interactions

Dashboard Data

• Check-in summaries and notes you create
• Alerts and notifications you generate
• Custom tags and categories you create

Usage Data

• How you interact with our platform (clicks, features used, time spent)
• Device information (device type, OS, browser version)
• IP address and general location data
• Access logs and service activity

Payment Information

• Payment information is processed by third-party payment processors
• We do not directly store or have access to your credit card numbers or full payment details
• Payment processors comply with PCI DSS standards

How We Use Your Information

We use the information we collect for specific, legitimate purposes:

• Provide and improve services: To deliver check-in calls, generate summaries, and enhance platform functionality
• Voice synthesis: To generate voice-synthesized calls using your voice sample for designated recipients
• Create summaries and alerts: To generate check-in summaries and wellness alerts for your guardians
• Detect health/safety concerns: To identify potential health or safety issues that require attention
• Account communication: To send you important account-related messages, notifications, and support
• Service improvement: To improve our AI models and service quality through anonymized and aggregated data analysis
• Legal compliance: To comply with applicable laws and regulations
• Protect against fraud: To detect and prevent fraudulent activity and abuse

Voice Data Specifics

Your voice data receives special protection because of its sensitive nature:

• Encryption: Voice samples are encrypted at rest and encrypted in transit using TLS 1.3
• Limited use: Voice samples are used solely for generating calls to your designated loved ones
• No sharing: Your voice data is never sold, shared with third parties, or used for advertising
• Your control: You can request deletion of your voice samples at any time
• Deletion timeline: Voice samples are deleted within 30 days of your deletion request or when your account is terminated
• Consent required: We require your explicit consent before collecting or using voice data

Health Information

We treat all health-related information with the highest level of care and protection:

• Sensitive data classification: All health observations and information are classified as sensitive data
• Encryption and access controls: Protected with industry-standard encryption and strict access controls
• Limited sharing: Only shared with designated guardians on your account
• No third-party sales: Never sold or shared with third parties for commercial purposes
• HIPAA protections: For applicable users, additional protections are provided under HIPAA. See our HIPAA Compliance page for details.

Data Sharing

Your data is your own. We have strict policies about how and when we share information:

We Do NOT Sell Your Data

We do not sell, rent, or trade your personal data to third parties for marketing purposes.

Limited Sharing

We only share information in these limited circumstances:

• Service providers: With vendors who help us operate our platform (hosting, analytics, payment processing). These vendors are contractually obligated to protect your data.
• Legal requirements: When required by law, court order, or government request
• Your consent: With your explicit written consent for specific purposes
• Designated guardians: With people you authorize on your account to receive check-in information

Voice Data Sharing

Your voice data is never shared with third parties under any circumstances, except as necessary to provide the service to your designated recipients.

Data Security

We use industry-leading security measures to protect your information:

• Encryption at rest: AES-256 encryption for stored data
• Encryption in transit: TLS 1.3 encryption for data transmitted over the internet
• Regular security audits: Periodic third-party security assessments
• SOC 2 compliance: Working toward SOC 2 Type II compliance
• Access controls: Role-based access controls limit employee access to data
• Employee training: Regular security training for all employees
• Incident response: Procedures in place to respond to any security incidents

While we implement robust security measures, no system is completely secure. We recommend using strong passwords and enabling two-factor authentication where available.

Your Privacy Rights

You have important rights regarding your personal data:

Right to Access

You can request a copy of all personal data we hold about you.

Right to Correction

You can request that we correct inaccurate or incomplete data about you.

Right to Deletion (Right to Be Forgotten)

You can request that we delete your personal data, subject to certain legal exceptions.

Right to Data Portability

You can request your data in a portable format so you can use it with other services.

Right to Opt Out

You can opt out of non-essential communications and certain data processing activities.

Right to Withdraw Consent

You can withdraw your consent for voice data usage or other processing at any time.

To exercise any of these rights, please contact us at privacy@yoohoo.care.

Data Retention

We keep your data only as long as necessary:

• Account data: Retained while your account is active, plus 90 days after account deletion
• Voice samples: Deleted within 30 days of your deletion request or when your account is terminated
• Call transcripts: Retained for 12 months, then automatically anonymized or deleted
• Payment records: Retained as required by law, typically for 7 years for tax and accounting purposes
• Usage logs: Retained for up to 90 days, then automatically deleted

You can request deletion of your data at any time, except where we are required to retain it by law.

Children's Privacy

Yoohoo Cares services are intended for adults 18 years of age and older. We do not knowingly collect or maintain information from children under 18. If we become aware that we have collected information from a child under 18, we will promptly delete such information.

If you believe we have collected information from a child under 18, please contact us immediately at privacy@yoohoo.care.

California Residents (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

• Right to know: You can request what personal information we collect, use, and share
• Right to delete: You can request deletion of personal information we collected
• Right to opt-out: You can opt out of the sale or sharing of your personal information
• Right to correct: You can request correction of inaccurate personal information
• Right to non-discrimination: You will not face discrimination for exercising your CCPA rights

To exercise these rights, please submit a request to privacy@yoohoo.care. We will respond within 45 days of receipt.

International Users & GDPR

If you are located in the European Union or other jurisdictions with data protection laws like GDPR, we comply with applicable regulations:

• Legal basis for processing: We process your data based on your consent, contract fulfillment, legal obligation, or legitimate interests
• Data Protection Officer: We have appointed a Data Protection Officer to oversee compliance
• Data processing agreements: We maintain appropriate data processing agreements with all processors
• Data transfers: Any international data transfers comply with GDPR requirements
• Your GDPR rights: You have all rights under GDPR, including access, correction, deletion, and objection

For EU residents, you also have the right to lodge a complaint with your local data protection authority.

Cookies & Tracking Technologies

We use cookies and similar technologies to enhance your experience:

• Functional cookies: Required for basic platform functionality (login, preferences, session management)
• Analytics cookies: Help us understand how you use our platform to improve services
• No advertising trackers: We do not use advertising cookies or third-party trackers

You can manage cookie preferences in your browser settings. However, disabling functional cookies may affect your ability to use certain features.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will:

• Notify you via email or through our platform
• Update the "Last Updated" date at the top of this policy
• Request your consent if required by law

Your continued use of Yoohoo Cares after changes become effective indicates your acceptance of the updated policy.

Contact Us

If you have questions about this Privacy Policy or our privacy practices, please contact us:

Email: privacy@yoohoo.care
Mailing Address:
Yoohoo Cares, Inc.
Wilmington, DE
United States

We will respond to privacy inquiries within 30 days of receipt. We are committed to resolving any concerns you may have about our privacy practices.