Privacy Policy

Effective Date: April 6, 2026

Last Updated: April 6, 2026

Clear Consent ("we," "us," or "our") operates the clearconsent.ai website and the Clear Consent healthcare technology platform. This Privacy Policy describes how we collect, use, disclose, and protect your information when you visit our website or use our services.

1. Information We Collect

Information You Provide Directly

When you interact with our website, we may collect information you voluntarily provide, including your name, job title, email address, phone number, organization or facility name, and the content of messages you send through our contact form.

Health-Related Information

Our platform processes health-related information on behalf of healthcare provider clients across clinical workflows including patient education, informed consent, electronic prescribing, and clinical documentation. This information is provided by and managed through our healthcare provider clients and is treated as Protected Health Information (PHI) under the Health Insurance Portability and Accountability Act (HIPAA).

Automatically Collected Information

When you visit our website, we may automatically collect certain technical information such as your IP address, browser type, operating system, referring URLs, and pages viewed. We may use cookies and similar technologies to facilitate website functionality and analyze usage trends. You may control cookie preferences through your browser settings.

2. How We Use Your Information

We use the information we collect to operate, maintain, and improve our website and platform; respond to inquiries and provide customer support; communicate with prospective and current clients about our services; process and facilitate clinical workflows for our healthcare clients; and protect the security and integrity of our platform.

3. Patient Consent

Clear Consent is built around the principle that patients have the right to understand and control how their health information is used. Patient consent for the use of health information is obtained and managed by the healthcare provider in accordance with applicable law and the provider's own data governance policies.

Any use of patient data beyond direct care delivery requires appropriate authorization. We do not make secondary use of patient health information without appropriate consent. Patients may revoke their consent at any time by contacting their healthcare provider.

4. Use of Adaptive Technology

Our platform uses adaptive technology to personalize patient education experiences — for example, adjusting the depth of clinical explanations based on patient preferences and identifying potential comprehension gaps.

We do not use Protected Health Information to train, fine-tune, or develop generalized artificial intelligence or machine learning models. This prohibition is contractually enforced across all development partners and subcontractors. If this approach evolves in the future, it will only occur with explicit, informed patient authorization and in compliance with applicable law.

5. HIPAA Compliance

Clear Consent operates as a Business Associate under HIPAA and the HITECH Act. We enter into Business Associate Agreements (BAAs) with covered entity clients as required by law. All subcontractors and development partners with access to Protected Health Information are bound by equivalent confidentiality and HIPAA compliance obligations.

Our platform employs AES-256 encryption for data in transit and at rest, multi-factor authentication, role-based access controls, and comprehensive timestamped audit logs.

We do not use or disclose PHI for marketing purposes, and we do not sell PHI under any circumstances. We do not aggregate, mine, or use prescribing or clinical data for commercial, marketing, advertising, profiling, targeting, or data brokerage purposes.

6. How We Share Your Information

We do not sell, rent, or trade your personal information. We may share information in the following limited circumstances:

With service providers and subcontractors who assist in operating our platform, subject to written confidentiality agreements and HIPAA-equivalent data protection obligations. With authorized health information networks and clinical data partners as necessary to deliver our services, including electronic prescribing networks and health information exchanges. With healthcare provider clients as necessary to deliver clinical workflow services. When required by law, regulation, legal process, or enforceable governmental request. To protect the rights, safety, or property of Clear Consent, our users, or the public.

All third-party partners who access Protected Health Information are contractually required to comply with HIPAA standards and are prohibited from using patient data for any purpose outside the scope of services provided. When providing electronic prescribing functionality, Clear Consent complies with applicable network requirements, including those of Surescripts and NCPDP standards.

7. International Data Processing

Clear Consent is headquartered in the United States. In the course of developing our platform, certain authorized development partners located outside the United States may have access to development environments. All such partners are bound by written agreements that require compliance with U.S. data protection standards, including HIPAA obligations and confidentiality requirements.

8. Data Security

We implement administrative, technical, and physical safeguards designed to protect the confidentiality, integrity, and availability of your information. These measures include encryption of data in transit and at rest, multi-factor authentication, role-based access controls, comprehensive audit logging, and contractual security obligations for all development partners and subcontractors. All access to Protected Health Information is logged, monitored, and subject to audit.

In the event of a data breach involving Protected Health Information, we will notify affected healthcare provider clients in accordance with HIPAA breach notification requirements.

9. Data Retention

We retain personal information for as long as necessary to fulfill the purposes described in this Privacy Policy, comply with legal and regulatory requirements, and resolve disputes. Health-related data processed on behalf of our healthcare clients is retained in accordance with applicable law and the terms of our agreements with those clients.

10. Our Role in Data Processing

Clear Consent processes health-related data on behalf of healthcare provider clients. Our healthcare provider clients are the data controllers responsible for determining the purposes and means of processing patient data. Clear Consent acts as a data processor (Business Associate under HIPAA) and processes patient data only as directed by and on behalf of our clients.

If you are a patient whose information is processed through our platform, please direct any requests regarding your health information to the healthcare provider who collected it. Individuals may have rights under applicable law to access, correct, or request restrictions on their personal information.

11. Third-Party Links

Our website may contain links to third-party websites or services. We are not responsible for the privacy practices of those third parties, and we encourage you to review their privacy policies.

12. Children's Privacy

Our website is not directed to individuals under the age of 13, and we do not knowingly collect personal information from children under 13 through our website. If we become aware that such information has been collected through the website, we will take steps to delete it promptly.

Our platform does process health information related to pediatric patients on behalf of healthcare provider clients. In these cases, information about minors is collected and managed by the healthcare provider in accordance with applicable law, including requirements for parental or guardian consent. Clear Consent processes such information solely on behalf of and under the direction of the healthcare provider, in accordance with HIPAA and applicable regulations.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we do, we will revise the "Last Updated" date at the top of this page. We encourage you to review this policy periodically.

14. Contact Us

If you have any questions or concerns about this Privacy Policy or our data practices, please contact us:

Clear Consent 2108 N ST #7563 Sacramento, CA 95816, USA

Email: contact@clearconsent.ai