Privacy Policy

Effective Date: February 22, 2026

Kinome ("we," "our," or "us") is committed to protecting your privacy, especially given the sensitive nature of your health information. This Privacy Policy explains how we collect, use, and safeguard your data when you use the Kinome application.

1. Information We Collect

1.1 Healthcare Provider Data

When you connect your healthcare provider (e.g., via Epic MyChart), we collect:

• Clinical Records: Lab results, medications, allergies, conditions, and clinical notes.
• Demographics: Name, date of birth, and contact information as provided by your health system.

1.2 User-Provided Data

• Account Information: Email address and name used when creating your Kinome account.
• AI Interactions: Queries and feedback provided to our AI intelligence engine.

2. How We Use Your Information

We use your data strictly for the following purposes:

• AI Summarization: To provide summarized insights and roadmaps of your health history.
• Data Organization: To categorize and present your clinical data in a user-friendly dashboard.
• Personalized Insights: To generate custom health intelligence based on your specific records.

We do NOT sell your health data to third parties, advertisers, or data brokers.

3. Data Sharing and Third Parties

3.1 AI Processing

We use secure AI providers (e.g., Vercel AI SDK with compliant backends) to process clinical data for summarization. Data sent to these providers is handled under business associate agreements or encrypted channels.

3.2 Healthcare Integration

We connect to your healthcare provider via standardized HL7 FHIR APIs (like Epic). We only access the data you explicitly authorize during the OAuth consent process.

4. Data Security

We implement industry-standard security measures, including:

• Encryption: All data is encrypted in transit (TLS) and at rest.
• Access Control: Strict authentication protocols (Better Auth) to ensure only you can access your records.

5. Your Rights and Control

• Revocation: You can disconnect your healthcare provider at any time through the settings menu.
• Deletion: You can request the deletion of your Kinome account and all associated data by contacting privacy@kinome.app.
• Access: You can view all raw data retrieved from your provider within the app dashboard.

6. HIPAA and Compliance

While Kinome is a consumer-facing application, we follow privacy-by-design principles that align with best practices for handling Protected Health Information (PHI). We recommend you also review the privacy policy of your healthcare provider (e.g., Stanford Health Care) regarding how they share data with third-party apps like ours.

7. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any significant changes by posting the new policy on this page and updating the effective date.

8. Contact Us

If you have any questions about this Privacy Policy, please contact us at: Email: privacy@kinome.app