Privacy Policy

Account Information

When you create an account, we collect:

• Email address
• Authentication credentials (managed by our authentication provider)
• Basic profile information (such as name, organization, or role, if provided)

User-Provided Content

The application allows users to input and manage case-related information, including:

• Family or household details
• Case notes and summaries
• Barriers, goals, and plans
• Task and referral information

This information is entered by users and may include sensitive personal context depending on how the application is used.

Automatically Collected Information

We may collect limited technical information, including:

• Session and authentication data (via cookies)
• Basic request metadata (such as timestamps)
• IP address (used for security and rate limiting purposes only)

We do not use tracking cookies or third-party advertising analytics.

We use collected information to:

• Provide and operate the application
• Store and manage case-related data
• Generate action plans and recommendations
• Improve reliability, performance, and security

CaseLink uses third-party AI services, including OpenAI, to generate plans, suggestions, and responses.

When AI features are used:

• User-provided content (such as case details, notes, and questions) may be sent to these services
• This data is used to generate responses within the application
• We do not control how third-party providers process data beyond their stated policies

Users should avoid entering unnecessary sensitive personal information when possible.

We use Supabase to store application data, including user accounts and case information.

Data is stored in a database with access controls designed to ensure that:

• Users can only access data associated with their account or organization
• Access is restricted using row-level security policies

The application may be hosted on infrastructure providers such as Vercel.

We use cookies and similar technologies to:

• Maintain user sessions
• Authenticate users securely

These cookies are strictly necessary for the application to function and are not used for tracking or advertising.

We do not sell or share personal data for advertising purposes.

Data may be shared only with:

• Infrastructure and service providers (e.g., Supabase, OpenAI)
• As required for application functionality

Data is stored as long as it is needed to operate the application.

Currently:

• Users can delete or archive certain records within the app
• Full account deletion workflows may not be available in-app

If you would like your data deleted, you may contact us directly.

CaseLink is designed for use by case managers and organizations.

Depending on configuration:

• Data associated with a family or case may be accessible to assigned users or administrators within the same organization
• Access is controlled through application permissions and database policies

We implement technical measures to protect data, including:

• Authentication and session management
• Row-level database access controls
• Input validation and rate limiting
• Secure handling of API keys and server-side processing

No system is completely secure, but we take reasonable steps to protect user data.

CaseLink is a support tool and:

• Does not provide legal, medical, or financial advice
• Does not guarantee accuracy of AI-generated content

Users are responsible for reviewing and validating all outputs.

We may update this Privacy Policy from time to time. Updates will be reflected by the “Last updated” date.

If you have questions or requests related to this Privacy Policy, you can contact us at:

willsanz23@gmail.com