Privacy Policy (Patient Users)

Effective Date: 08/09/2025

Cerewell respects your privacy and is committed to protecting your health information.

This Privacy Policy explains how we collect, use, share, and protect your information when you use the Cerewell website, mobile application, and related services (collectively, the “Services”). By using the Services, you agree to the terms of this Privacy Policy. If you do not agree, do not use the Services.

1. Introduction

We are committed to safeguarding your information and providing clear choices and control over your data.

2. Information We Collect

3. How We Use Your Information

4. Data Ownership & Control

5. Sharing Your Information

We will only share identifiable Health Data with:

Anonymized Data: We may use and share anonymized, aggregated data for research, analytics, product development, marketing, and other lawful purposes. This may include providing, licensing, or selling such data, or granting access to third parties such as research institutions, healthcare providers, public health organizations, pharmaceutical companies, or other industry partners. This data cannot reasonably be used to identify you and is handled in compliance with HIPAA de-identification standards.

6. HIPAA Compliance

Cerewell implements administrative, physical, and technical safeguards that meet or exceed HIPAA requirements to protect patient health information. This includes encryption in transit and at rest, access controls, and regular security reviews. We will sign a HIPAA Business Associate Agreement (“BAA”) with healthcare providers who use the Doctor Portal upon request.

7. AI-Generated Content

When you use our AI feature, your questions and relevant context are sent to OpenAI, LLC (“OpenAI”) to generate responses. OpenAI uses this information to provide the requested content but does not use it to build or train public models. The AI may produce responses, reports, summaries, or suggestions (for example, “Questions to ask your doctor”). This content is for informational purposes only, may be inaccurate or incomplete, and is not a substitute for professional medical advice, diagnosis, or treatment.

AI responses:

8. Data Retention & Deletion

9. Security Measures

10. Children’s Privacy

The Services are not intended for children under 18 without parental or guardian supervision. If a parent or guardian adds a minor’s information, they affirm they have the legal authority to consent to the collection and use of that minor’s data.

11. Payments & Refunds

All patient subscriptions are processed through Apple Services Store or Google Play. Refunds are handled according to their respective policies. Cerewell does not issue refunds for purchases made through Apple or Google.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. If we make significant changes, we will notify you by email and/or require acceptance upon your next login.

13. Contact Us

For questions about this Privacy Policy or your data, email: support@agentbrigade.ai