Skip to content

Mobile App Privacy Policy

Effective Date: April 21, 2026

This policy covers the HCC Buddy iOS and Android apps. The web app and Chrome extension are covered separately at hccbuddy.com/privacy.

1. What the app does not collect

HCC Buddy is a coding-reference tool. The app never asks for, stores, or transmits Protected Health Information (PHI). Do not enter patient names, member IDs, dates of birth, account numbers, or any other identifier that could be linked to a real person. Recent search history is stored locally on your device and never leaves it.

2. Data the app collects

  • Account info: the email and full name you used to sign up on hccbuddy.com. We do not collect new accounts inside the app.
  • Coding queries: the text you type into the search or code-lookup screens. Sent to our backend to generate a response. Logged anonymously for service quality only, never tied to an advertising profile.
  • Crash diagnostics: if the app crashes, a stack trace and the device model + OS version are sent to our error monitor (Sentry). No query content, no email, no location.

3. Data the app does NOT collect

  • No advertising identifier (IDFA / GAID).
  • No location data of any kind.
  • No contacts, photos, microphone, camera, or health data.
  • No third-party analytics SDKs or marketing trackers.
  • No cross-app or cross-site tracking.
  • No biometric data leaves your device. Face ID / Touch ID is used only as a local app-lock and is handled by the OS.

4. Subscriptions and billing

The mobile app is a reader for your existing HCC Buddy subscription. Sign-up, plan changes, and payment all happen on hccbuddy.com, the app does not process payments and does not use Apple or Google in-app purchase. Stripe handles billing on the web. We never store your payment card details.

5. Third parties used by the app

  • Anthropic (Claude API): coding queries are forwarded to Anthropic to generate a response. Sent text only, no account info. Anthropic does not use API data for training.
  • Sentry: crash and performance diagnostics. Stack traces and device metadata only.
  • Fly.io / Supabase / Vercel: our backend, database, and web hosting. None of these receive query content beyond what is needed to serve the request.

6. Your choices

  • Clear local history: in the app, open Account → Clear Search History.
  • Disable Face ID / Touch ID: in the app, open Account → App Lock.
  • Delete your account: on hccbuddy.com, open Account → Delete Account. All data is removed within 30 days.

7. Children

HCC Buddy is a professional tool for medical coders. The app is not directed at children under 13 and we do not knowingly collect data from them.

8. Changes

If this policy changes materially, we will note the new effective date at the top and notify you in-app at next sign-in.

9. Contact

Privacy questions: privacy@hccbuddy.com. Support: hccbuddy.com/mobile-support.