Privacy Policy.

This Privacy Policy explains how NurseMind, Inc. ("we," "us," "NurseMind") collects, uses, and protects information when you use the NurseMind iOS app (Bundle ID app.nursemind.ios) and the website at nursemind.app (together, the "Service").

NurseMind is a clinical reference and self-directed learning tool for nursing students and licensed nurses. It is not a clinical decision support system, not a medical device, and not designed to receive or process Protected Health Information.

Account and identity

By default, NurseMind creates an anonymous account on first launch — a randomly generated UUID with no name, email, or other identifier attached. You may optionally upgrade this anonymous account by signing in with Apple, which links the account to the Apple-supplied identifier and (if you choose to share it) your email address. We never see or store your Apple ID password.

Profile preferences

Optional, user-entered: display name, nursing role (RN, LPN, CNA, student), unit specialty, and years of experience. Used only to personalize content and the AI co-pilot's specialty awareness. Stored in your account on our backend so it syncs across signed-in devices.

Usage and content

Library bookmarks, calculator preferences, saved AI answers, and conversation history. Stored locally on your device and, when you're signed in, synced to your account.

AI co-pilot inputs and responses

Questions you submit to the AI co-pilot, the cited evidence chunks retrieved to ground the answer, and the AI's response. Used to deliver the answer, enforce daily quotas, and (anonymized, aggregated) improve the system prompt and retrieval. Inputs pass through a server-side scrubbing step that detects and removes apparent patient-identifying data (names, MRNs, dates, room numbers) before reaching any third-party model.

Subscription and billing

Subscription status (free, monthly, yearly) and the entitlement timestamp. Billing itself is handled by Apple through StoreKit; we do not see your payment card or Apple ID. We use RevenueCat to manage entitlement state — RevenueCat receives a hashed account identifier, the product purchased, and standard purchase metadata from Apple.

Device and diagnostic

Device model, iOS version, app version, locale, and crash reports (via Sentry). Used to triage bugs and prioritize fixes. We do not collect precise location, the contents of your photo library, your contacts, or any other on-device data.

Product analytics

Anonymous, aggregated usage events (e.g., "user opened Library tab," "user submitted an AI question") via PostHog. We use the minimum analytics necessary to understand which features matter. We do not link analytics to your identity beyond an anonymous installation ID, and we never sell analytics data.

NurseMind is architecturally prevented from collecting Protected Health Information. The product has no patient name, date of birth, MRN, room number, or chart fields anywhere in its UI. We ask that you never enter patient-identifying information in any input — including AI questions and saved content. If our server-side scrubber detects apparent PHI in a submitted question, we reject the request and surface a refusal instead of forwarding the input to any model.

We do not collect or process: precise location, contacts, calendars, photos, microphone audio (other than transient, on-device speech recognition you initiate by tapping the microphone — that audio never leaves your device), health data from HealthKit, or biometric identifiers.

To provide the Service: render the library, answer your AI questions with grounded citations, sync your bookmarks and saved content across signed-in devices, enforce daily AI quotas, manage your subscription state.

To improve the Service: triage crashes, identify failing calculators, evaluate which library entries get the most use, tune the AI co-pilot's retrieval and refusal behaviors. All improvement work uses anonymized, aggregated data.

To communicate with you: respond to support emails and (only if you opt in via your iOS notification permission) send a small number of useful product notifications.

We do not use your information for advertising, sell it, license it to data brokers, or share it for cross-context behavioral advertising.

We share information only with the third-party services listed below, each used for a specific purpose disclosed here:

• AppleUnited States
  App distribution, Sign in with Apple, StoreKit billing
• Supabase, Inc.United States
  Authentication and Postgres database (account record, profile preferences, saved content)
• RevenueCat, Inc.United States
  Subscription entitlement management
• Anthropic PBCUnited States
  AI co-pilot generation (Claude Sonnet); receives scrubbed AI inputs and returns responses
• OpenAI, L.L.C.United States
  Text embeddings used to retrieve relevant library evidence for AI grounding
• SentryUnited States
  Crash reporting and error monitoring
• PostHog, Inc.United States
  Anonymous, aggregated product analytics
• Vercel, Inc.United States
  Web hosting for nursemind.app

We have signed data processing terms with each of these vendors requiring them to use your information only on our instructions and to maintain reasonable security practices. None of these vendors are HIPAA Business Associates because the Service does not handle PHI.

Your account data, profile preferences, saved bookmarks, and saved AI answers are stored in our Supabase Postgres database hosted in the United States. AI conversation logs (used briefly for quota enforcement and abuse prevention) are stored in the same region. Crash and analytics data is stored by Sentry and PostHog, both in the United States.

The Service is intended for users in the United States at v1 launch. If you access the Service from outside the United States, you understand that your information will be transferred to and processed in the United States.

Account, profile, and saved content: retained while your account is active. If you delete your account from the Profile tab, we permanently delete the associated records within 30 days, excepting backups, which roll over within 90 days.

AI conversation logs: retained for up to 90 days for quota enforcement and abuse review, then deleted.

Crash and analytics data: retained for up to 12 months in anonymized aggregate form.

Delete your account. In the iOS app, go to Profile → Manage subscription → Delete account. This removes all account data from our backend within 30 days.

Cancel your subscription. Subscriptions are managed by Apple. Open Settings → your name → Subscriptions → NurseMind to cancel. Cancellation takes effect at the end of the current billing period. Refunds are handled by Apple.

Opt out of analytics. Toggle off product analytics in Profile → Notifications and privacy. (Coming in a future release; for now, write to hello@nursemind.app and we'll honor your opt-out request.)

Disable notifications. Profile → Notifications, or in the iOS Settings app under NurseMind.

Export your data. Email hello@nursemind.app and we'll send a JSON copy of your saved bookmarks, profile, and saved AI answers within 30 days.

If you reside in California, the California Consumer Privacy Act (as amended by the CPRA) gives you the right to (1) know what personal information we have about you, (2) delete your personal information, (3) correct inaccurate personal information, and (4) opt out of "sale" or "sharing" of your personal information.

We do not sell or share your personal information for cross-context behavioral advertising as those terms are defined under California law. To exercise any of the other rights, email hello@nursemind.app from the email address associated with your account. We will respond within 45 days.

The Service is not directed to children under 13. We do not knowingly collect personal information from children under 13. If we learn that we have collected such information, we will delete it promptly. If you believe a child under 13 has provided us with personal information, contact hello@nursemind.app.

The App Store age rating for NurseMind reflects content appropriate for users 12 and up; however, the Service is functionally designed for nursing students (typically 18+) and licensed nurses.

All connections between the iOS app and our backend use TLS 1.2+. Authentication tokens are stored in the iOS Keychain. Database access is gated by row-level security policies that scope every read and write to the authenticated user's UUID. We review access and infrastructure regularly and maintain a written security policy.

No system is perfectly secure. If you believe your account has been compromised, email hello@nursemind.app immediately.

We may update this Privacy Policy from time to time. When we make material changes, we will update the "Effective" date at the top of this page and, for significant changes, surface an in-app notice. Continued use of the Service after a change constitutes acceptance of the updated policy.

Questions about this policy? Email hello@nursemind.app. We answer within five business days.

NurseMind, Inc. · United States · Last updated May 9, 2026.