Privacy Policy

What This Policy Covers

This Privacy Policy explains how PatientLead Health LLC ("PatientLead," "we," "us," or "our") handles information across all of our products and services, including:

• Throughline (throughline.patientlead.health) — a care companion for chronic illness
• PriorAuthPro (priorauthpro.patientlead.health) — an insurance appeal packet generator
• patientlead.health — this marketing and informational website

If you have questions, contact us at hello@patientlead.health.

1. Information We Collect

1.1 Information You Provide to Throughline

Throughline processes your conversation to build structured medical documents. All conversation data and generated artifacts are stored in your browser's local storage on your device. We do not receive, store, or have access to this information. If you clear your browser data, this information is deleted.

When you send a message, it is transmitted to our API for processing by Claude AI. The message is processed and a response is returned. We do not log, store, or retain the content of these messages beyond the duration needed to generate a response.

1.2 Information You Provide to PriorAuthPro

PriorAuthPro processes denial letters and patient-provided details to generate appeal packets. The health information you enter (denial details, diagnosis, treatment history, provider information, member ID) is processed to generate your documents. We do not store this health information on our servers after processing is complete.

PriorAuthPro transmits denial letter content to Claude AI for analysis. This transmission is necessary to classify the denial and generate appeal language. The content is processed in memory and is not retained after your session.

1.3 Optional Intelligence Data (PriorAuthPro)

You may optionally choose to share anonymized, non-identifying metadata about your appeal to help improve outcomes for future patients. This data includes only enumerated values such as insurer name, denial category, broad treatment category, state, and documentation strategy flags. It does not include your name, diagnosis, treatment details, member ID, provider information, or any health information. See our Intelligence Data Contract for the complete specification of what is and is not collected.

1.4 Technical Information

When you visit our websites, we may collect standard technical information including: browser type and version, device type, pages visited, referring URL, and general geographic region derived from IP address. We do not store raw IP addresses in analytics or intelligence systems.

1.5 Contact Form Information

If you contact us through our website contact form or email, we receive and store the information you provide (name, email address, message content) for the purpose of responding to your inquiry.

2. How We Use Information

We use the information we collect to:

• Process your conversations and generate documents (Throughline)
• Analyze denial letters and generate appeal packets (PriorAuthPro)
• Respond to your inquiries and support requests
• Improve our products and services based on aggregate, anonymized usage patterns
• Comply with legal obligations

3. Information We Do Not Collect or Store

We do not collect or store:

• Patient names, addresses, dates of birth, or Social Security numbers
• Member IDs, claim numbers, authorization numbers, or denial codes
• Provider names, NPI numbers, or facility information
• Diagnosis codes, diagnosis text, or symptom narratives
• Treatment details, test results, or clinical notes
• Denial letter text or free-text notes
• Email addresses in intelligence systems (only non-reversible hashes for optional follow-up matching)

4. Third-Party Services

Our products use the following third-party services:

• Anthropic (Claude AI) — processes conversations and denial letter analysis. Anthropic's data handling is governed by their privacy policy and our data processing agreement with them.
• Cloudflare — provides hosting, CDN, and security services for our websites.
• Railway — provides hosting for PriorAuthPro's backend services.
• Stripe — processes payments for PriorAuthPro. We do not receive or store your full credit card number.

5. Data Retention

Throughline: All data is stored in your browser's local storage. We do not retain any of your data on our servers. Data persists until you clear your browser data or explicitly delete it within the application.

PriorAuthPro: Health information is processed in memory and not retained after your session. Optional anonymized intelligence data is retained indefinitely to support aggregate benchmarking. Follow-up tokens expire after 90 days.

Contact information: Retained as long as necessary to respond to your inquiry, then deleted.

6. Your Rights

You have the right to:

• Access the personal information we hold about you
• Request correction of inaccurate information
• Request deletion of your information
• Opt out of optional data sharing at any time
• Withdraw consent for future processing

To exercise any of these rights, contact us at hello@patientlead.health.

7. Children's Privacy

Our products are not directed to children under 18. We do not knowingly collect information from children. If you believe a child has provided us with personal information, please contact us and we will delete it.

8. Security

We implement reasonable technical and organizational measures to protect the information we process. This includes encryption in transit (TLS), access controls, and data minimization practices. No method of electronic transmission or storage is completely secure, and we cannot guarantee absolute security.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will post the updated version on this page with a revised effective date. Your continued use of our products after changes are posted constitutes acceptance of the updated policy.

10. Contact

For questions about this Privacy Policy or our data practices:

PatientLead Health LLC
Email: hello@patientlead.health