Privacy Policy

Last updated: April 18, 2026 · Effective date: April 18, 2026

EHealthMed AI ("Company," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy describes how we collect, use, and safeguard information when you use the EHealthMed AI Medical Translator service ("Service"), available at translate.ehmed.ai and via our mobile applications.

1. Information We Collect

Account Information: When you register, we collect your email address and a hashed (encrypted) version of your password. We do not store your password in plain text.

Usage Data: We collect information about how you use the Service, including translation minutes used, session timestamps, and subscription status. This data is used to enforce plan limits and improve the Service.

Payment Information: Payment processing is handled by Stripe. We do not store your credit card number or payment details on our servers. We receive only a Stripe customer ID and subscription status.

Audio and Translation Content: Audio recordings are processed in real-time for transcription and are not retained on our servers after processing. Translation text may be temporarily cached for processing but is not permanently stored on our servers.

2. How We Use Your Information

To provide, operate, and maintain the Service
To process payments and manage your subscription
To enforce usage limits and prevent abuse
To send transactional emails (account confirmation, billing receipts)
To comply with legal obligations, including HIPAA
To improve and develop new features

3. HIPAA and Protected Health Information

We are committed to HIPAA compliance. The Service is designed to minimize the handling of Protected Health Information (PHI). Audio recordings are processed in real-time and are not retained after transcription. We do not intentionally store PHI on our servers.

Healthcare organizations that require a Business Associate Agreement (BAA) should contact us at compliance@ehealthmed.ai before using the Service in a clinical setting.

4. Data Sharing and Disclosure

We do not sell your personal information. We may share information with:

Stripe — for payment processing
OpenAI — for translation and text-to-speech processing (audio and text are sent to OpenAI's API; see OpenAI's Privacy Policy)
Deepgram — for speech-to-text transcription (audio is sent to Deepgram's API; see Deepgram's Privacy Policy)
Law enforcement — when required by applicable law or legal process

5. Data Retention

We retain account information for as long as your account is active or as needed to provide the Service. Usage logs are retained for up to 90 days. Audio recordings are not retained after processing. You may request deletion of your account and associated data by contacting support@ehealthmed.ai.

6. Security

We implement industry-standard security measures including TLS encryption for data in transit, bcrypt password hashing, JWT-based authentication, and HTTPS-only access. However, no method of transmission over the internet is 100% secure.

7. Your Rights

Depending on your jurisdiction, you may have the right to:

Access the personal information we hold about you
Request correction of inaccurate data
Request deletion of your data
Opt out of certain data processing activities

To exercise these rights, contact us at privacy@ehealthmed.ai.

8. Cookies

The Service uses minimal cookies for authentication (session tokens stored in localStorage) and does not use third-party tracking cookies. We do not use advertising cookies.

9. Children's Privacy

The Service is not directed to children under 18. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us immediately.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page and updating the "Last updated" date. Your continued use of the Service after changes become effective constitutes acceptance of the revised policy.

11. Contact Us

If you have questions or concerns about this Privacy Policy, please contact us: