Last updated: April 2026
AuditCare collects only what is needed to deliver the compliance assessment service: your hospital name, your name and role, and your answers to assessment questions. We also collect your email address if you choose to save your session or receive compliance alerts.
We do not collect, store, or process protected health information (PHI). Assessment questions concern your hospital's compliance processes and policies, not individual patient records.
Your assessment data is used solely to generate your gap analysis, compliance outputs, and (if enrolled) compliance alert digests. We do not sell your data, share it with third parties for marketing, or use it to train AI models.
Aggregate, de-identified data may be used to improve the assessment framework and benchmark models.
Assessment sessions are stored in Supabase (PostgreSQL), hosted on AWS infrastructure in the United States. Data is encrypted at rest (AES-256) and in transit (TLS 1.3). Sessions are keyed by a private session ID stored in your browser; no account or login required for free tier use.
Free tier sessions are retained for 12 months from last activity. Professional and Enterprise customer data is retained per your service agreement. You may request deletion of your data at any time by emailing maisie@apiary-labs.com.
AuditCare is designed to operate without PHI. If your use case requires processing PHI, a Business Associate Agreement (BAA) is available on Enterprise plans. Contact maisie@apiary-labs.com before transmitting any PHI.
When you use AI-assisted features (gap narrative, compliance briefing, stakeholder email drafts), your assessment data is sent to Anthropic's API for processing. Anthropic does not train on API request data. No PHI should be included in AI prompts.
AuditCare uses browser localStorage to persist your session ID and assessment progress locally. We do not use tracking cookies or third-party analytics.
Questions about this policy or requests to access, correct, or delete your data: maisie@apiary-labs.com
Apiary Labs · compliance infrastructure for hospital quality teams