← Home/Privacy Policy

Privacy Policy

Last updated: March 2026

Overview

Personal PBM is a free, nonprofit coverage coaching tool operated by a 501(c)(3) organization (in formation). We are committed to protecting your privacy. This policy explains what data we process, how we process it, and — most importantly — what we do not do with it.

No Personal Health Information Stored

Personal PBM does not store any personal health information (PHI) on our servers. We do not maintain user accounts, databases of patient data, or logs containing health information. When you enter your condition, treatment, or denial letter text, that information is:

  • Processed in real time to generate your results
  • Discarded immediately after your results are delivered
  • Never written to any database, log file, or persistent storage

Session-Only Processing

All data processing occurs within your browser session. When you close your browser tab or navigate away from the site, your session data is gone. We use sessionStorage (not cookies or localStorage) to pass context between pages during your visit. This data exists only in your browser's memory and is automatically cleared when the tab is closed.

To generate coverage intelligence and appeal letters, your inputs are sent to our server-side API routes, which forward them to the Claude AI model for processing. These API calls are stateless — no request data is logged, cached, or retained after the response is returned to your browser.

FTC Health Breach Notification Rule Compliance

Even though Personal PBM is not a HIPAA-covered entity, we recognize that the FTC Health Breach Notification Rule (16 CFR Part 318) applies to non-HIPAA entities that handle health-related information. Our compliance approach is straightforward:

  • No data to breach. Because we do not store PHI in any form — no databases, no log files, no backups — there is no health data at rest that could be subject to unauthorized access.
  • Minimal data in transit. Health-related inputs exist only for the duration of an API call (typically a few seconds). Data in transit is encrypted via TLS.
  • Notification commitment. In the unlikely event that a security incident affects health-related data in transit, we will notify affected individuals and the FTC as required under the Rule.

No Third-Party Data Sharing

We do not sell, rent, license, or share your data with any third party. Specifically:

  • No advertising. We do not run ads and do not share data with advertising networks.
  • No analytics tracking. We do not use third-party analytics services that collect personal or health data.
  • No data brokers. We do not provide data to data brokers or information resellers.
  • AI processing. Your inputs are sent to Anthropic's Claude API for processing. Anthropic's API is stateless and does not retain inputs or outputs for model training. See Anthropic's privacy policy for details on their data handling practices.

Security Measures

  • All traffic is encrypted with TLS (HTTPS only)
  • API keys are stored server-side only and never exposed to the browser
  • Security headers are enforced: framing protection, content-type enforcement, and strict referrer policies
  • No user accounts, passwords, or authentication tokens to protect or breach

Children's Privacy

Personal PBM is designed for adult patients and caregivers. We do not knowingly collect information from children under 13. If you believe a child has used this tool and you have concerns, please contact us.

Changes to This Policy

We may update this privacy policy as the product evolves. If we introduce any data storage (such as optional account features in a future release), we will update this policy before those features launch and clearly disclose what data is collected and why.

Contact Us

If you have questions about this privacy policy or how your data is handled, please contact us at:

privacy@personalpbm.com