Privacy policy
Privacy policy
DischargED.ai ("DischargED," "we," "us," or "our") is a post-discharge patient monitoring platform developed and operated by DischargED.ai, headquartered in The Woodlands, Montgomery County, Texas, USA. We are committed to protecting the privacy and security of all users of our platform, including patients, caretakers, and clinical care team members (collectively, "Users").
This Privacy Policy explains what information we collect, how we use it, who we share it with, and your rights with respect to that information. By using the DischargED.ai platform, mobile application, or any related services (collectively, the "Services"), you agree to the practices described in this Policy.
DischargED.ai ("DischargED," "we," "us," or "our") is a post-discharge patient monitoring platform developed and operated by DischargED.ai, headquartered in The Woodlands, Montgomery County, Texas, USA. We are committed to protecting the privacy and security of all users of our platform, including patients, caretakers, and clinical care team members (collectively, "Users").
This Privacy Policy explains what information we collect, how we use it, who we share it with, and your rights with respect to that information. By using the DischargED.ai platform, mobile application, or any related services (collectively, the "Services"), you agree to the practices described in this Policy.
Effective Date: April 22, 2026
Last Updated: April 22, 2026
Effective Date: April 22, 2026
Last Updated: April 22, 2026
Who This Policy Applies To
Who This Policy Applies To
This Policy applies to all individuals who access or use the DischargED.ai Services, including:
Patients: individuals discharged from a hospital or emergency room who use DischargED.ai to support their post-discharge recovery monitoring.
Caretakers: individuals designated by a patient to receive health status updates and notifications.
Clinical Care Team Members: physicians, nurses, surgeons, physician assistants, and other healthcare professionals assigned to a patient's monitoring episode.
This Policy applies to all individuals who access or use the DischargED.ai Services, including:
Patients: individuals discharged from a hospital or emergency room who use DischargED.ai to support their post-discharge recovery monitoring.
Caretakers: individuals designated by a patient to receive health status updates and notifications.
Clinical Care Team Members: physicians, nurses, surgeons, physician assistants, and other healthcare professionals assigned to a patient's monitoring episode.
Information We Collect
Information We Collect
We collect information that is necessary to provide the Services. The categories of information we collect include:
We collect information that is necessary to provide the Services. The categories of information we collect include:
2.1 Account and Identity Information
2.1 Account and Identity Information
When you register for an account, we collect:
Name, email address, and phone number
Date of birth and biological sex (patients only)
Role (patient, caretaker, nurse, physician assistant, doctor)
Professional credentials, specialty, and National Provider Identifier (NPI) (clinicians only)
Profile photo (optional)
Timezone
When you register for an account, we collect:
Name, email address, and phone number
Date of birth and biological sex (patients only)
Role (patient, caretaker, nurse, physician assistant, doctor)
Professional credentials, specialty, and National Provider Identifier (NPI) (clinicians only)
Profile photo (optional)
Timezone
2.2 Health and Physiologic Data
2.2 Health and Physiologic Data
For patients who consent to monitoring, we collect physiologic signals from commercially available wearable devices (such as Apple Watch) via HealthKit and related APIs. This data includes, but is not limited to:
Heart rate, resting heart rate, walking heart rate average
Heart rate variability (HRV)
Respiratory rate
Oxygen saturation (SpO2)
Wrist temperature and external body temperature readings
Electrocardiogram (ECG) records where available
Irregular rhythm notifications, high and low heart rate events
Sleep data including sleep stages (REM, core, deep, unspecified) and sleep fragmentation
Activity data including step count, distance, active energy, walking speed, and walking steadiness
Blood pressure readings where collected via external connected devices (e.g., Omron)
Cardio fitness and VO2 max estimates
Motion context associated with heart rate readings
We also collect and generate derived health data including baseline deviation scores, rolling vital averages, trend scores, deterioration risk indicators, and machine learning inference outputs.
For patients who consent to monitoring, we collect physiologic signals from commercially available wearable devices (such as Apple Watch) via HealthKit and related APIs. This data includes, but is not limited to:
Heart rate, resting heart rate, walking heart rate average
Heart rate variability (HRV)
Respiratory rate
Oxygen saturation (SpO2)
Wrist temperature and external body temperature readings
Electrocardiogram (ECG) records where available
Irregular rhythm notifications, high and low heart rate events
Sleep data including sleep stages (REM, core, deep, unspecified) and sleep fragmentation
Activity data including step count, distance, active energy, walking speed, and walking steadiness
Blood pressure readings where collected via external connected devices (e.g., Omron)
Cardio fitness and VO2 max estimates
Motion context associated with heart rate readings
We also collect and generate derived health data including baseline deviation scores, rolling vital averages, trend scores, deterioration risk indicators, and machine learning inference outputs.
2.3 Care Episode and Clinical Information
2.3 Care Episode and Clinical Information
Discharge datetime and associated facility information
ICD-10 diagnosis codes (entered manually or via EHR in future versions)
Care team assignments and roles
Medications (manual entry initially)
Clinical notes and audit records
Discharge data from electronic health record (EHR) integrations (future)
Discharge datetime and associated facility information
ICD-10 diagnosis codes (entered manually or via EHR in future versions)
Care team assignments and roles
Medications (manual entry initially)
Clinical notes and audit records
Discharge data from electronic health record (EHR) integrations (future)
2.4 Usage and Platform Data
2.4 Usage and Platform Data
App interaction logs and session data
Device identifiers and operating system information
Notification delivery and read receipts
In-platform messaging content between patients, caretakers, and care team members
Alert event logs and resolution records
App interaction logs and session data
Device identifiers and operating system information
Notification delivery and read receipts
In-platform messaging content between patients, caretakers, and care team members
Alert event logs and resolution records
2.5 Payment and Subscription Information
2.5 Payment and Subscription Information
If you purchase a subscription or episode extension, we collect payment information through third-party payment processors (e.g., Stripe, Apple In-App Purchase). We do not store full payment card numbers on our systems.
If you purchase a subscription or episode extension, we collect payment information through third-party payment processors (e.g., Stripe, Apple In-App Purchase). We do not store full payment card numbers on our systems.
How We Collect Information
How We Collect Information
We collect information in the following ways:
Directly from you: during account registration, onboarding, and profile setup.
From your wearable device: through HealthKit and related device APIs, after you grant explicit permissions through your device's operating system.
From your hospital or facility: when a QR code or facility code is used to initiate a monitoring episode.
From connected third-party devices: such as Omron blood pressure monitors, where integrated.
Automatically through the platform: including usage logs, alert events, and in-app messaging.
We collect information in the following ways:
Directly from you: during account registration, onboarding, and profile setup.
From your wearable device: through HealthKit and related device APIs, after you grant explicit permissions through your device's operating system.
From your hospital or facility: when a QR code or facility code is used to initiate a monitoring episode.
From connected third-party devices: such as Omron blood pressure monitors, where integrated.
Automatically through the platform: including usage logs, alert events, and in-app messaging.
Legal Basis and Consent
Legal Basis and Consent
DischargED.ai is not a covered entity or business associate under the Health Insurance Portability and Accountability Act (HIPAA) because we do not diagnose medical conditions and we share data only with the explicit permission of each patient. All health data collection, processing, and sharing is based on your informed, explicit consent.
By activating a monitoring episode and granting device permissions, you consent to the collection and use of your physiologic data as described in this Policy. You may withdraw consent at any time by disabling device permissions or contacting us directly; however, doing so will discontinue active monitoring.
For residents of the European Economic Area or California, additional rights may apply. See Section 10 and Section 11 below.
DischargED.ai is not a covered entity or business associate under the Health Insurance Portability and Accountability Act (HIPAA) because we do not diagnose medical conditions and we share data only with the explicit permission of each patient. All health data collection, processing, and sharing is based on your informed, explicit consent.
By activating a monitoring episode and granting device permissions, you consent to the collection and use of your physiologic data as described in this Policy. You may withdraw consent at any time by disabling device permissions or contacting us directly; however, doing so will discontinue active monitoring.
For residents of the European Economic Area or California, additional rights may apply. See Section 10 and Section 11 below.
How We Use Your Information
How We Use Your Information
We use collected information to:
Provide post-discharge monitoring services and detect potential health deterioration indicators.
Generate alerts and escalate to clinical care teams and emergency contacts when deviations from expected recovery patterns are detected.
Enable in-platform communication between patients, caretakers, and care team members.
Generate trend reports, status snapshots, and shareable clinical summaries.
Improve our machine learning and AI models for recovery pathway monitoring.
Maintain audit logs for platform integrity and accountability.
Process payments and manage subscription entitlements.
Send platform notifications, alerts, and service communications.
Comply with applicable laws and enforce our Terms of Service.
We use collected information to:
Provide post-discharge monitoring services and detect potential health deterioration indicators.
Generate alerts and escalate to clinical care teams and emergency contacts when deviations from expected recovery patterns are detected.
Enable in-platform communication between patients, caretakers, and care team members.
Generate trend reports, status snapshots, and shareable clinical summaries.
Improve our machine learning and AI models for recovery pathway monitoring.
Maintain audit logs for platform integrity and accountability.
Process payments and manage subscription entitlements.
Send platform notifications, alerts, and service communications.
Comply with applicable laws and enforce our Terms of Service.
How We Share Your Information
How We Share Your Information
We do not sell your personal or health information to third parties. We share information only in the following circumstances:
We do not sell your personal or health information to third parties. We share information only in the following circumstances:
6.1 With Your Care Team
6.1 With Your Care Team
Patients may connect with one or more clinical care team members (doctors, nurses, physician assistants) within a monitoring episode. Upon a patient's initiation of a connection request and a clinician's acceptance, health data and alerts are shared with that care team for the duration of the episode.
Patients may connect with one or more clinical care team members (doctors, nurses, physician assistants) within a monitoring episode. Upon a patient's initiation of a connection request and a clinician's acceptance, health data and alerts are shared with that care team for the duration of the episode.
6.2 With Caretakers
6.2 With Caretakers
Patients may designate caretakers to receive status notifications and relevant health updates. Caretaker access is limited to information appropriate to their role and is granted at the patient's discretion.
Patients may designate caretakers to receive status notifications and relevant health updates. Caretaker access is limited to information appropriate to their role and is granted at the patient's discretion.
6.3 Specialist Report Sharing
6.3 Specialist Report Sharing
With explicit patient permission, care teams may share view-only episode reports with external specialists (e.g., cardiologists). These reports are delivered via expiring, revocable, view-only links. Specialist access is fully audited and does not include live dashboard access.
With explicit patient permission, care teams may share view-only episode reports with external specialists (e.g., cardiologists). These reports are delivered via expiring, revocable, view-only links. Specialist access is fully audited and does not include live dashboard access.
6.4 Service Providers
6.4 Service Providers
We engage trusted third-party vendors to support platform operations, including cloud hosting, payment processing, analytics, and push notification delivery. These vendors are contractually bound to use your data only as necessary to provide services to DischargED.ai and to maintain appropriate security standards.
We engage trusted third-party vendors to support platform operations, including cloud hosting, payment processing, analytics, and push notification delivery. These vendors are contractually bound to use your data only as necessary to provide services to DischargED.ai and to maintain appropriate security standards.
6.5 Legal and Safety Requirements
6.5 Legal and Safety Requirements
We may disclose information if required by law, court order, or governmental authority, or if we believe disclosure is necessary to prevent imminent harm to you or others.
We may disclose information if required by law, court order, or governmental authority, or if we believe disclosure is necessary to prevent imminent harm to you or others.
6.6 Business Transfers
6.6 Business Transfers
In the event of a merger, acquisition, or sale of assets, your information may be transferred to a successor entity. We will notify affected users prior to any such transfer.
In the event of a merger, acquisition, or sale of assets, your information may be transferred to a successor entity. We will notify affected users prior to any such transfer.
Data Retention
Data Retention
We retain data in accordance with the following schedule:
Raw vital readings: up to 30 days per monitoring episode (configurable; may be extended to 12–24 months for clinical review purposes).
Notifications: 12 months from creation.
Predictive inference records: 6 months from generation.
Audit notes and clinical records: minimum 24 months.
Episode reports: retained until expiration of the associated share link.
Account information: retained for the life of your account and for a reasonable period following account deletion as required by applicable law or legitimate business need.
Upon account deletion, we will remove personal data from active systems within 90 days, except where retention is required by law.
You agree not to use the Services to:
Violate any applicable local, state, national, or international law or regulation.
Impersonate any person or entity, or falsely represent your credentials, role, or affiliation.
Access or attempt to access accounts, data, or systems not authorized for your role.
Interfere with, disrupt, or circumvent the security, availability, or integrity of the platform.
Transmit any malicious code, viruses, or other harmful components.
Use the Services for commercial solicitation or advertising not authorized by
DischargED.ai.
Share access credentials with unauthorized individuals.
Attempt to reverse engineer, decompile, or extract source code from any component of the Services.
We reserve the right to suspend or terminate accounts that violate these acceptable use standards.
We retain data in accordance with the following schedule:
Raw vital readings: up to 30 days per monitoring episode (configurable; may be extended to 12–24 months for clinical review purposes).
Notifications: 12 months from creation.
Predictive inference records: 6 months from generation.
Audit notes and clinical records: minimum 24 months.
Episode reports: retained until expiration of the associated share link.
Account information: retained for the life of your account and for a reasonable period following account deletion as required by applicable law or legitimate business need.
Upon account deletion, we will remove personal data from active systems within 90 days, except where retention is required by law.
Data Security
Data Security
We implement administrative, technical, and physical safeguards designed to protect your information from unauthorized access, loss, or misuse. These measures include:
Encrypted data transmission (TLS/HTTPS) and encrypted storage.
Role-based access control (RBAC) limiting data access to authorized platform roles.
Audit logging of all data access and sharing events.
Time-limited and revocable access links for specialist report sharing.
No security system is impenetrable. In the event of a data breach affecting your information, we will notify you as required by applicable law.
DischargED.ai provides a monitoring and
communication support platform only. The Services do not constitute the practice of medicine, nursing, or any other licensed healthcare profession. Specifically:
DischargED.ai does not diagnose medical conditions.
Alerts, trend indicators, and risk scores generated by the platform are
informational outputs intended to prompt clinical review, not clinical diagnoses.
All clinical decisions, treatment plans, and patient care actions are the exclusive
responsibility of the licensed healthcare
professionals involved in a patient's care.
DischargED.ai does not guarantee that the Services will detect all instances of patient
deterioration, or that alerts will be received or acted upon by care team members in a timely manner.
USERS SHOULD NOT RELY ON DISCHARGED.AI AS THEIR SOLE MEANS OF HEALTH MONITORING OR EMERGENCY RESPONSE.
IN THE EVENT OF A MEDICAL EMERGENCY, CALL 911 IMMEDIATELY.
We implement administrative, technical, and physical safeguards designed to protect your information from unauthorized access, loss, or misuse. These measures include:
Encrypted data transmission (TLS/HTTPS) and encrypted storage.
Role-based access control (RBAC) limiting data access to authorized platform roles.
Audit logging of all data access and sharing events.
Time-limited and revocable access links for specialist report sharing.
No security system is impenetrable. In the event of a data breach affecting your information, we will notify you as required by applicable law.
Children's Privacy
Children's Privacy
DischargED.ai is not directed to individuals under the age of 18. We do not knowingly collect personal information from minors. If you believe a minor has provided us with information, please contact us at privacy@discharged.ai and we will take prompt action to remove it.
10. Your Privacy Rights (Texas and U.S.)
10. Your Privacy Rights (Texas and U.S.)
Depending on your state of residence, you may have rights with respect to your personal information, including:
Right to access: request a copy of the personal information we hold about you.
Right to correction: request correction of inaccurate personal information.
Right to deletion: request deletion of your personal information, subject to legal retention requirements.
Right to withdraw consent: withdraw consent for health data collection at any time.
Right to data portability: receive your data in a structured, machine-readable format.
To exercise any of these rights, contact us at privacy@discharged.ai. We will respond within 30 days.
Depending on your state of residence, you may have rights with respect to your personal information, including:
Right to access: request a copy of the personal information we hold about you.
Right to correction: request correction of inaccurate personal information.
Right to deletion: request deletion of your personal information, subject to legal retention requirements.
Right to withdraw consent: withdraw consent for health data collection at any time.
Right to data portability: receive your data in a structured, machine-readable format.
To exercise any of these rights, contact us at privacy@discharged.ai. We will respond within 30 days.
11. California Privacy Rights (CCPA)
11. California Privacy Rights (CCPA)
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA), including the right to know, the right to delete, the right to opt out of sale (DischargED.ai does not sell personal information), and the right to non-discrimination. To submit a CCPA request, contact us at privacy@discharged.ai.
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA), including the right to know, the right to delete, the right to opt out of sale (DischargED.ai does not sell personal information), and the right to non-discrimination. To submit a CCPA request, contact us at privacy@discharged.ai.
12. International Users
12. International Users
DischargED.ai is operated from The Woodlands, Texas, USA. If you access the Services from outside the United States, your information will be transferred to and processed in the United States. By using the Services, you consent to this transfer.
Users in the European Economic Area (EEA) may have additional rights under the General Data Protection Regulation (GDPR). Please contact us to discuss applicable rights and our legal basis for processing.
The Services integrate with third-party platforms, including Apple HealthKit, Apple Watch, and payment processors. Your use of those third-party services is governed by their respective terms and privacy policies.
DischargED.ai is not responsible for the practices, content, or policies of third-party services.
DischargED.ai is operated from The Woodlands, Texas, USA. If you access the Services from outside the United States, your information will be transferred to and processed in the United States. By using the Services, you consent to this transfer.
Users in the European Economic Area (EEA) may have additional rights under the General Data Protection Regulation (GDPR). Please contact us to discuss applicable rights and our legal basis for processing.
13. Third-Party Links and Integrations
13. Third-Party Links and Integrations
Our Services may connect with third-party platforms such as Apple HealthKit, Apple Watch, or future device integrations (e.g., Omron). This Privacy Policy does not cover the data practices of those third parties. We encourage you to review the privacy policies of any third-party service you connect to DischargED.ai.
THE SERVICES ARE PROVIDED "AS IS" AND "AS AVAILABLE" WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO WARRANTIES OF
MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, NON-INFRINGEMENT, OR ACCURACY. DISCHARGED.AI DOES NOT WARRANT THAT THE SERVICES WILL BE
UNINTERRUPTED, ERROR-FREE, OR FREE OF HARMFUL COMPONENTS.
Our Services may connect with third-party platforms such as Apple HealthKit, Apple Watch, or future device integrations (e.g., Omron). This Privacy Policy does not cover the data practices of those third parties. We encourage you to review the privacy policies of any third-party service you connect to DischargED.ai.
14. Changes to This Policy
14. Changes to This Policy
We may update this Privacy Policy from time to time. When we do, we will revise the "Last Updated" date at the top of this document. For material changes, we will provide in-app notification or direct communication. Your continued use of the Services after such changes constitutes your acceptance of the updated Policy.
We may update this Privacy Policy from time to time. When we do, we will revise the "Last Updated" date at the top of this document. For material changes, we will provide in-app notification or direct communication. Your continued use of the Services after such changes constitutes your acceptance of the updated Policy.
15. Contact Us
15. Contact Us
If you have questions about this Privacy Policy or wish to exercise your privacy rights, please contact us:
DischargED.ai
The Woodlands, Montgomery County, Texas, USA
Email: info@discharged.ai
If you have questions about this Privacy Policy or wish to exercise your privacy rights, please contact us:
DischargED.ai
The Woodlands, Montgomery County, Texas, USA
Email: info@discharged.ai
Closing the clinical visibility gap.
© 2026 DischargED.ai. All rights reserved.
Closing the clinical visibility gap.
© 2026 DischargED.ai. All rights reserved.
Closing the clinical visibility gap.
© 2026 DischargED.ai. All rights reserved.