Thank you for visiting CareDash Pro (the "Website"). Your privacy is important to us. This Privacy Policy (the "Policy") describes the types of information CareDash Pro ("Company", "us", "we", or "our") may collect from you or that you may provide when you visit the Website and use the products, features, materials, and services we offer (collectively with the Website, the "Services"). This Policy also describes our policies and procedures for collecting, using, maintaining, protecting, and disclosing that information.

This Policy applies to information we collect on the Website and through your use of the Services generally (including when you register for an account), and through communications between you and the Website (including email, text, and other electronic messages).

This Policy does not apply to information collected by third parties, including any websites, services, and applications that you elect to access through the Services.

Please review this Policy carefully. By accessing or using the Services (or by clicking on "accept" or "agree" to this Policy when prompted), you agree to the terms of this Policy on behalf of yourself or the entity or organization that you represent. If you do not agree to any term in this Policy, you should refrain from further use of our Services.

1. Changes to Our Privacy Policy

This Policy was last revised on the date noted at the top of this page. We may update this Policy from time to time. If we make material changes, we will post the updated Policy on this page and notify you of such changes by means of an email to the email address specified in your account, a message on the Services, or through a notice on the Website home page. Your continued use of the Services after we make changes is deemed to be acceptance of those changes, so please check the Policy periodically for updates.

2. Information We Collect

We receive several types of information about you from various sources, including (A) information and content that you give us; (B) automatically-collected information; and (C) demographic information or other aggregate information.

Information and Content That You Give Us

We collect personal information that you knowingly choose to disclose. This may include:

Personal Information (or Data): Personal information, such as your name, address, email address, phone number, username, password, and any other information you directly provide us on or through the Services. This includes information you provide when you register or create an account, complete a questionnaire, or make a request for customer service.

Facility and Care Home Information: Information about the care facilities you manage, including facility names, addresses, license numbers, and regulatory compliance data.

Staff Information: Names, roles, certifications, and contact information for staff members at your facilities.

Resident Information: Information about residents as entered by facility staff for compliance tracking purposes.

Correspondences: Records and copies of your email messages together with your email address and our responses, if you choose to correspond with us through email, and records of your phone number, phone calls with us, and voice messages.

User Content: Information or content you submit to be published or displayed on the Services or transmitted to other users. Your User Content is posted and transmitted to others at your own risk.

Transaction Information: Information about any purchase or transactions made on the Services. This includes payment information, such as your credit or debit card number and other card information; and billing, shipping, and contact details.

Information We Collect Automatically

We may use a variety of technologies to collect certain information about your equipment, browsing actions, and patterns whenever you interact with the Services, including:

Activity Information: Details of your visits to our Services, including the types of content you view or engage with; the features you use; the actions you take; the time, frequency, and duration of your activities.

Equipment Information: Information about your computer and internet connection, including your computer operating system, IP address, browser type, and browser language.

Location Information: Information about the location of your device, including GPS location, for purposes of enhancing or facilitating the Services.

Tracking Technologies

The technologies we use for automatic data collection may include:

Cookies: A cookie is a small data file stored on the hard drive of your computer either for only the duration of your visit ("session cookies") or for a fixed period ("persistent cookies").
Web Beacons: Web beacons (also known as "clear gifs", "pixel tags") are small files embedded in webpages to track who has visited those webpages.
JavaScripts: Code snippets embedded in websites that facilitate various operations.
HTML5 Local Storage: Allows data from websites to be stored or "cached" within your browser.

3. How We Use Your Information

We may use the information we collect about you in a variety of ways, including:

To provide the Services and its content to you
To manage compliance tracking for your care facilities
To send compliance deadline reminders and notifications
To respond to comments and questions, and provide customer service
To communicate with you about your account or subscription
To inform you about important changes to the Services
To operate, maintain, improve, personalize, and analyze the Services
To monitor and analyze trends, usage, and activities
To detect, prevent, or investigate security breaches, fraud, and other unauthorized activity
To carry out our obligations and enforce our rights arising from contracts between you and us
To maintain appropriate records for internal administrative purposes
To send promotional communications about features, newsletters, and offers
To develop, test, troubleshoot, and improve new products and features
For any other purpose with your consent

4. How We Share Your Information

We may disclose aggregated or anonymized information about our users without any restrictions. We will not share your personal information that we collect or you provide as described in this Policy except in the following circumstances:

With subsidiaries and affiliates: To our subsidiaries and affiliated companies for purposes of management and analysis, decision-making, and other business purposes.

When we work with service providers: To service providers, professional advisors, contractors, and other third parties that provide us with support services, such as payment processing, website hosting, information technology, email delivery, or analytics services, and who are bound by contractual obligations to keep personal information confidential.

When we become involved in a sale or transfer: If we become involved with a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of the Company's assets.

When we are required by law: To comply with any court order, law, or legal process, including to respond to any government or regulatory request.

When we enforce our rights: To enforce or apply this Policy, our Terms of Use, and other agreements.

To help protect lawful interests: If we believe disclosure will help us protect the rights, property, or safety of the Company, our users, partners, agents, and others.

With your consent: To fulfill the purpose for which you provide the information, or with your consent.

5. Detailed Information on Personal Data Processing

Analytics

The services contained in this section enable the Company to monitor and analyze web traffic and can be used to keep track of User behavior.

Google Analytics (Google LLC): Google Analytics is a web analysis service provided by Google LLC. Google utilizes the Data collected to track and examine the use of Website, to prepare reports on its activities and share them with other Google services.

Personal Data processed: Tracker and Usage Data
Place of processing: United States
Privacy Policy: Google Privacy Policy
Opt Out: Google Analytics Opt-out

Authentication and Account Management

Firebase Authentication (Google LLC): Firebase Authentication is an authentication service provided by Google LLC that we use to manage user accounts and secure access to the platform.

Personal Data processed: Email address, password (encrypted), usage data
Place of processing: United States
Privacy Policy: Firebase Privacy

Database and Storage

Firebase Firestore (Google LLC): Firebase Firestore is a cloud database service that stores your facility, staff, resident, and compliance data.

Personal Data processed: All data entered into the platform
Place of processing: United States
Privacy Policy: Firebase Privacy

Email Communications

Email Notification Services: We use email services to send compliance reminders, notifications, and other transactional communications.

Personal Data processed: Email address, name
Purpose: Compliance deadline reminders, account notifications

AI Assistant Services

OpenAI (OpenAI, L.L.C.): We use OpenAI's services to power the AI Assistant feature for compliance guidance and questions.

Personal Data processed: Query content, conversation history
Place of processing: United States
Privacy Policy: OpenAI Privacy Policy

Hosting

Vercel (Vercel Inc.): Our Website is hosted on Vercel's platform.

Personal Data processed: Usage Data, Tracker
Place of processing: United States
Privacy Policy: Vercel Privacy Policy

6. Your Choices

Cookies and Other Tracking Technologies

You may be able to set your browser to reject cookies and certain other technologies by adjusting the appropriate settings in your browser. Please note that if you disable or refuse cookies, some parts of the Services may become inaccessible or may not function properly.

Promotional Communications

If you do not wish to have your contact information used by the Company to promote our products or services, you can opt out by:

Informing us of your preference when you register for an account
Modifying your user preferences in your account profile
Following the opt-out instructions in the promotional emails we send you
Sending us an email stating your request

Please note that if you opt out of receiving promotional communications, we may still send you transactional communications, including emails about your account, compliance reminders, or subscription.

Accessing and Correcting Your Information

You may send us an email to request access to, correct, or remove any personal information that you have provided to us. You may also access, correct, or remove your personal information by logging into the Website and visiting your account profile page. We cannot delete your personal information except by also deleting your account.

7. California Privacy Rights (CCPA/CPRA)

This section applies to all Users who are consumers residing in the state of California, United States of America, according to the California Consumer Privacy Act of 2018 (the "CCPA"), as updated by the California Privacy Rights Act (the "CPRA").

Categories of Personal Information Collected

We have collected the following categories of personal information about you:

Identifiers: Name, email address, phone number, account credentials
Commercial Information: Subscription and payment history
Internet Information: Browsing history, usage data, device information
Professional Information: Facility management and staff certification data

We do not collect sensitive personal information. We will not collect additional categories of personal information without notifying you.

Your California Privacy Rights

You have the right to:

Know and Access: Request that we disclose the categories and specific pieces of personal information we have collected about you
Delete: Request that we delete any of your personal information, subject to certain exceptions
Correct: Request that we correct any inaccurate personal information
Opt Out: Opt out of the sale or sharing of your personal information
Non-Discrimination: Not be discriminated against for exercising your privacy rights

How to Exercise Your Rights

To exercise the rights described above, you need to submit a verifiable request to us by contacting us via the details provided in this document. For us to respond to your request, it's necessary that we know who you are. We will respond to your request within 45 days of its receipt.

8. Virginia Privacy Rights (VCDPA)

This section applies to all Users who are consumers residing in the Commonwealth of Virginia, according to the Virginia Consumer Data Protection Act (the "VCDPA").

Your Virginia Privacy Rights

You have the right to:

Access personal data and know whether we are processing it
Correct inaccurate personal data
Request deletion of your personal data
Obtain a copy of your personal data in a portable format
Opt out of processing for targeted advertising, sale of personal data, or profiling

9. How We Protect Your Information

We take reasonable precautions to secure your personal information. We have implemented technical, physical, and administrative security measures designed to reduce the risk of loss, misuse, unauthorized access, disclosure, or modification of your information.

Encryption of data in transit and at rest
Secure authentication mechanisms
Regular security assessments
Access controls and audit logging
All information stored on secure servers behind firewalls
SSL encryption for sensitive data transmission

The safety and security of your information also depend on you. Where we have given you (or where you have chosen) a password for access to certain parts of the Services, you are responsible for keeping this password confidential.

While we have employed security technologies and procedures to assist in safeguarding your personal information, no system or network can be guaranteed to be 100% secure.

10. Data Retention

We retain your personal information for as long as necessary to provide our services and fulfill the purposes described in this policy. When you delete your account, we will delete or anonymize your information within 30 days, unless we are required to retain it for legal purposes.

11. Children's Privacy

Our services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If we learn we have collected or received personal information from a child without verification of parental consent, we will delete that information.

12. Terms of Use

If you choose to visit the Services, your visit and any dispute over privacy are subject to this Policy and our Terms of Use, including limitations on damages, resolution of disputes, and application of the law of the state of Arizona.

13. Cookie Policy

The Website uses Trackers. To learn more, please consult our Cookie Policy.

14. Contact Us

We welcome your questions, comments, and concerns about privacy. You can contact us at:

Email: privacy@caredashpro.com
Support: support@caredashpro.com

For information about how we use cookies and tracking technologies, please see our Cookie Policy. For terms governing your use of our platform, please see our Terms of Use.