Privacy Policy

How SeniorConnex collects, uses, and protects personal information, written to be readable, not just compliant.

Last updated: May 4, 2026

This Privacy Policy explains how SeniorConnex ("we," "us," or "our") collects, uses, discloses, and protects information when you or your loved one uses our hardware, mobile app, caregiver portal, and related services (the "Service").

1. The data we collect

SeniorConnex collects three categories of data:

  • Account data: name, email, phone number, role (caregiver, facility-staff, facility-admin), and authentication factors. You provide this when an admin creates your account or when you self-serve through Settings.
  • Health and biometric data: heart rate, SpO₂, steps, sleep, single-lead ECG samples and rhythm classifications, and fall events. These are generated by the wearables and the in-room radar sensor and posted to our backend through the senior's tablet or partner webhooks.
  • Operational data: alert events, acknowledgements, escalation records, shift notes, care tasks, messaging, and audit logs.

2. How we use it

We use the data above to operate the Service: to display vitals and ECG records to authorized caregivers and family, to detect threshold breaches and arrhythmias, to deliver alerts via push notification and SMS, to support care coordination across shifts, and to maintain audit logs for compliance and incident response.

3. Push notifications and PHI

Push notification payloads delivered through Firebase Cloud Messaging contain only an alert type and an alert ID. Personal health information is not transmitted in the push payload. The actual data is fetched from our backend only after the recipient authenticates into the caregiver portal or companion app.

4. SMS and Twilio

If a push notification fails to deliver, the alert pipeline falls back to SMS via Twilio. SMS messages may include the senior's first name and the alert type so the caregiver can act, but never include vitals values, ECG data, or other clinical detail. Phone numbers can be self-served from the Settings page.

5. Webhooks

Inbound webhooks (for example, from the PontoSense fall-detection cloud) are authenticated using shared secrets and rate-limited at the edge. Unsigned or malformed requests are rejected and logged.

6. Data sharing

We do not sell personal information. We share data with the following categories of recipients, only to the extent necessary to operate the Service:

  • Authorized caregivers, facility staff, and family members linked to the senior's account.
  • Infrastructure providers: Railway (application hosting), MongoDB Atlas (database), Firebase (push and authentication), and Twilio (SMS and video).
  • Hardware partners, to the extent required for fall-detection ingestion or device functionality.
  • Hospitals or clinicians, when explicitly authorized by the senior or their legal representative.

7. Security

We use role-gated routes, multi-factor authentication, signed webhooks, audit logging, and encrypted transport. No system is perfectly secure, but we work to make ours hard to misuse, and quick to detect when someone tries.

8. Data retention

We retain account data for the life of the account and for a reasonable period afterward to satisfy legal and operational obligations. Health and biometric data is retained for the duration of care plus an additional period as required by applicable law. You may request deletion of your account data at any time by writing to us.

9. Your rights

Depending on where you live, you may have the right to access, correct, export, or delete personal information about you. To exercise these rights, write to us at the address below. We will verify your identity and respond within the timeframes required by applicable law.

10. Children

SeniorConnex is not directed to children. The Service is intended for adults (typically seniors) and the caregivers and family members who support them.

11. Changes to this policy

We may update this Privacy Policy from time to time. When we do, we will update the "Last updated" date above and, if changes are material, notify account holders by email or in the Service.

12. Contact

Questions about this policy or about the data we hold can be sent to hello@seniorconnex.com. A real person will reply.