Privacy Policy

A. Information You Provide Directly

• Account Information: When you create an account, we collect your name, email address, phone number, date of birth, password, and any profile photo you choose to provide.
• Pair and Group Information: When you create or join a Pair or Group, we collect the names, email addresses, and phone numbers of the members you invite or connect with.
• Consent Records: We record and store evidence of consents you provide or receive, including consent to be monitored, consent for location sharing, and consent for remote device access.
• In-App Communications: We process the contents of messages and media shared internally between members of your Pairs or Groups via the Service.
• Support Communications: If you contact our support team or provide feedback, we collect the content of those communications along with associated metadata.
• Payment Information: If you subscribe to a paid plan, we or our third-party payment processors collect billing information. We do not directly store full credit card numbers on our servers.

B. Information Collected Automatically from Your Device

• Activity Data: Device usage patterns, including step count, device interaction patterns, screen activity metrics, and other sensor telemetry. This data is used to establish your baseline behavioral patterns and to detect deviations.
• Precise Geolocation Data: If you enable location services, we collect precise GPS coordinates, as well as location data inferred from IP addresses, Wi-Fi network associations, Bluetooth proximity, and cellular tower signals. You may disable location data collection at any time.
• Kinematic and Movement Data: Subject to your device permissions, we may access your device’s accelerometer, gyroscope, and compass to collect telemetry regarding your speed, altitude, heading, and acceleration.
• Device Information: Device type, model, operating system and version, unique device identifiers, mobile network information, language settings, time zone, and battery charge status.
• Device Diagnostics: Device identifiers, operating system versions, battery status, and network connectivity strength for maintaining application performance.
• App Usage Data: Data about how you interact with the Service, including features used, settings selected, in-app actions, and session duration.
• Log Data: IP address, access times, pages viewed, app crashes, and other system activity.

C. Information from Third-Party Sources

When you download or purchase the Service through an App Store, we may receive certain information from the App Store. The Service may also use third-party platforms to deliver Alerts, and we may receive delivery status information and related metadata from these services.

D. Audio and Video Data (Remote Device Access Feature)

If a User has explicitly granted consent for the remote device access feature, audio or video may be temporarily transmitted to the monitoring User in real time. CareTrigger does not record or store audio or video data from the remote device access feature on its servers, unless explicitly stated otherwise.

Behavioral Baseline

The Service securely learns your typical active hours, transit modes, geographic routes, and device interaction patterns to construct an individualized baseline of your normal daily routines. This baseline is continuously refined as the Service collects more data.

Anomaly Identification

The Service continuously compares real-time telemetry against your baseline. The system calculates risk indicators based on spatial deviations, temporal irregularities, and kinematic anomalies.

Automated Decisions

When an anomaly score exceeds a defined threshold, the system autonomously triggers an Alert to your designated Pair or Group members. This automated profiling is used exclusively for personal safety notifications. It does not produce legal effects, nor is it used to determine eligibility for credit, employment, insurance, or any other purpose. You have the right to request human review or contest the accuracy of any automated Alert.

Limitations

Algorithmic detection is inherently probabilistic and imperfect. The Service will inevitably produce false positives and false negatives. For a detailed description of these limitations, please refer to Section XV of our Terms of Service.

A. With Your Pair and Group Members

The core function of the Service involves sharing certain information with other Users in your Pair or Group, as you have consented to. This may include activity status, location data, SOS Alerts, kinematic data, in-app communications, and real-time audio/video streams (if remote device access is enabled). You control the scope of this sharing through the Service’s settings.

B. With Service Providers

We engage third-party service providers to perform functions on our behalf, including cloud hosting, data storage, analytics, payment processing, customer support, and Alert delivery. These service providers are bound by strict data processing agreements.

C. For Legal Reasons

We may disclose your personal information if we believe in good faith that such disclosure is necessary to: comply with applicable law; enforce our Terms of Service; detect, prevent, or address fraud, security, or technical issues; or protect the rights, property, or safety of CareTrigger, our users, or the public.

D. In Connection with a Business Transfer

If CareTrigger is involved in a merger, acquisition, or similar transaction, your personal information may be transferred as part of that transaction.

E. Aggregated and Anonymized Data

We may irreversibly de-identify and aggregate information for research, analytics, platform optimization, or other purposes, ensuring it can no longer be linked to any individual.

A. Account Settings

You may update or correct your account information at any time through the Service’s settings. You may enable or disable location sharing, remote device access permissions, and other optional features at any time.

B. Data Access, Portability, and Deletion

Depending on your jurisdiction, you may have the right to: access your personal information; request a machine-readable export; request correction of inaccurate data; request deletion of your personal data; object to or restrict certain processing; and withdraw consent at any time. To exercise these rights, please contact us at the address provided below.

C. Opt-Out of Communications

You may opt out of promotional communications by following the unsubscribe instructions or by adjusting your settings. You may not opt out of service-related communications that are essential to the operation of your account.

D. Location Data and Sensor Controls

You may disable location data collection, background location tracking, or behavioral anomaly detection at any time through the Service’s settings or through your device’s operating system settings. Disabling these features may limit or entirely disable the core functionality of the Service.

E. Remote Device Access

You may revoke consent for remote device access at any time through the Service’s settings.

F. Right to Contest Automated Decisions

You have the right to request human review of any automated decision made by the Service, including any Alert triggered by the anomaly detection system, and to contest the accuracy of such decisions.

A. European Economic Area (EEA), United Kingdom, and Switzerland (GDPR)

You have the right to access, rectify, erase, restrict processing, object to processing, and port your personal data. You also have the right to withdraw consent at any time and to lodge a complaint with your local data protection authority. Data Protection Officer: dpo@caretrigger.io

B. California (CCPA/CPRA)

California residents have additional rights including: the right to know what personal information we collect; the right to delete personal information; the right to opt out of the sale or sharing of personal information; the right to correct inaccurate information; and the right to non-discrimination for exercising privacy rights. CareTrigger does not sell your personal information in the traditional sense.

C. Brazil (LGPD)

If you are located in Brazil, you have rights under the Lei Geral de Proteção de Dados (LGPD), including the right to confirmation of processing, access, correction, anonymization, portability, deletion, information about sharing, and revocation of consent.

D. Australia

If you are located in Australia, we handle your personal information in accordance with the Australian Privacy Principles under the Privacy Act 1988 (Cth). You have the right to access and correct your personal information and to make a complaint to the Office of the Australian Information Commissioner.