Privacy Policy

This Privacy Policy explains how Brelti collects, uses, discloses, and safeguards your information when you use our mobile application.

Last Updated: February 16, 2026

Introduction

Brelti ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy describes how we collect, use, disclose, and safeguard your information when you use our care coordination mobile application.

Information We Collect

We may collect information about you in various ways:

  • Personal Data: Name, email address, phone number, and other contact information
  • Health Information: Medical records, medication lists, appointment information
  • Device Information: Device type, operating system, unique device identifiers
  • Usage Data: How you interact with the app, features used, time spent

How We Use Your Information

We use the information we collect to:

  • Provide and maintain our care coordination services
  • Send medication reminders and appointment notifications
  • Facilitate communication between care team members
  • Improve and personalize your experience
  • Comply with legal obligations

Third-Party AI Services

Brelti's AI care assistant ("Bella") is powered by OpenAI (the makers of ChatGPT). When you use the AI assistant, the following data may be sent to OpenAI for processing:

  • Chat Messages: The messages you type when interacting with the AI assistant
  • Care Context: Relevant context such as provider names, appointment details, or medication information needed to generate helpful responses

How OpenAI handles your data:

  • Training Exclusion: OpenAI does not use data submitted through their API to train their AI models. Your conversations remain private.
  • Data Retention: OpenAI retains API data for a maximum of 30 days for abuse monitoring and security purposes, after which it is automatically deleted.
  • Security: OpenAI's API is designed for privacy, security, and enterprise-grade confidentiality.

Your consent is requested before using the AI assistant for the first time. You can stop sharing data with OpenAI at any time by simply not using the AI assistant feature. No other third-party services receive your conversation data.

For more information, see OpenAI's API Data Usage Policy.

Google User Data

Brelti accesses certain Google user data when you choose to use Google-related features. This section describes what data we access, how we use it, and with whom it is shared.

Google Sign-In

When you sign in using Google, we receive your name, email address, and profile picture from your Google account. This data is used solely to create and authenticate your Brelti account. Your Google Sign-In data is transmitted to and stored by our authentication provider, Supabase, which processes it on our behalf to manage your account session.

Google Calendar Integration

If you choose to connect your Google Calendar, Brelti accesses your calendar event data (including event titles, times, descriptions, and calendar names) to sync appointments and events into your care team's shared timeline. This calendar data is transmitted to and stored on our backend servers to provide the calendar sync feature. No Google Calendar data is shared with any other third-party service.

Sharing and Disclosure of Google User Data

We may share Google user data only in the following limited circumstances:

  • Service Providers: We share data with our infrastructure and service providers (including Supabase for authentication and our cloud hosting provider for calendar sync) who process data on our behalf and are contractually obligated to protect it.
  • Care Team Members: Calendar event data you choose to sync may be visible to members of your care team within the Brelti app, as this is the core purpose of the feature.
  • Legal Requirements: We may disclose data if required to do so by law or in response to valid legal process.

We do not sell, rent, or share your Google user data with third parties for advertising, marketing, or any purpose unrelated to providing and improving Brelti's services.

Google API Services User Data Policy

Brelti's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

Data Security

We implement appropriate technical and organizational security measures to protect your personal information. Our platform uses bank-level encryption (AES-256 at rest, TLS 1.3 in transit) for data transmission and storage.

Your Rights

You have the right to:

  • Access your personal information
  • Correct inaccurate data
  • Request deletion of your data
  • Export your data in a portable format
  • Opt out of marketing communications

Contact Us

If you have questions about this Privacy Policy, please contact us at:
Email: privacy@brelti.com