Pearl is a personal AI health-information assistant. This policy explains what we collect, why, and the rights you have over your data. Health-data specifics are covered in the separate Consumer Health Data Privacy Policy.
Information We Collect
Pseudonymous usage data — screens visited, features used, device type, browser, sent to Mixpanel only if you grant analytics consent.
Conversation data — stored locally on your device, encrypted at rest. Pearl does not store health conversations in cloud storage.
Consent decisions — recorded locally with timestamp, jurisdiction (timezone-derived), and policy version for audit.
How We Use Your Information
To answer your questions by relaying your messages to your selected AI provider.
To understand feature usage in aggregate (only with analytics consent).
We do not sell your data. We do not share your data with third parties for targeted advertising.
We do not use your conversations to train AI models. Our AI vendor contracts use API-tier configurations that do not train on API traffic by default.
Health Information
Pearl is a consumer wellness and health-organization tool. Pearl is not a doctor, clinician, diagnostic system, treatment system, or medical device, and is not intended to diagnose, treat, cure, or prevent disease. Always consult a qualified healthcare professional for medical decisions.
Pearl makes reasonable efforts to apply HIPAA-grade safeguards (encryption at rest and in transit, access controls, audit logging). Pearl does not claim HIPAA compliance.
See the Consumer Health Data Privacy Policy for the categories of consumer health data we may process, the sources we collect from, the third parties we share with, and how to exercise your rights.
Your Rights
You can, at any time, from the in-app Privacy Settings screen:
Access your data — see what's stored locally and what has been transmitted.
Export your data — local export package you can share with a clinician.
Delete your data — wipe local health conversation storage.
Revoke any consent — analytics, data sharing, AI processing, health-data processing.
Withdraw consent and request deletion of consumer health data. We confirm in writing within 45 days; if denied, you may appeal and ultimately file a complaint with the Washington State Attorney General (see CHDPP).
Third-Party Services
Mixpanel — pseudonymous usage analytics, loaded only after analytics consent. Subject to Mixpanel's Privacy Policy.
AI Providers (Anthropic, OpenAI, Google) — your messages are sent to your chosen provider's API to generate responses. Subject to each provider's privacy terms.
A complete list of subprocessors and data flows is maintained at /vendor-register.html.
Epic / MyChart Connections
If you choose to connect Epic / MyChart, Pearl imports your own health records — labs, medications, allergies, conditions, encounters, procedures, immunizations, diagnostic reports, and clinical documents when available — to organize your personal health timeline.
Consent: the connection starts only when you choose to connect and sign in directly with Epic. Pearl never receives your MyChart password.
Read-only: Pearl only reads from Epic. It never writes to your chart and does not message, schedule, refill, or bill.
Data use: imported records build your private timeline and help you understand your care. Pearl does not sell this data.
Storage: imported records are kept in your device's encrypted local storage. Epic access tokens are stored encrypted server-side and never exposed to the browser.
Disconnect / revoke: you can disconnect anytime in Settings, and revoke Pearl from within MyChart. Disconnecting deletes the stored token.
Pearl makes reasonable efforts to apply HIPAA-grade safeguards (encryption, access controls, audit logging). Conversation history is stored on your device. Messages you send are transmitted to your selected AI provider to generate responses. Pearl does not claim HIPAA compliance and cannot guarantee absolute security.