Privacy Policy

What we collect

When you upload a medical bill for analysis, we temporarily process the document to extract billing codes, charges, and other information needed to generate your report. We do not require you to create an account or provide your name, address, or insurance information to use the tool.

If you purchase a full report, Stripe processes your payment. We never see or store your credit card number. Stripe's privacy policy governs payment data.

How we handle your bill

Your uploaded bill is encrypted in transit using TLS and processed by our AI analysis system. We do not store your bill after analysis is complete. We do not read, review, or access your bills manually. The analysis is fully automated.

We are not a covered entity or business associate under HIPAA. We are a consumer software tool — similar to a calculator or translator. You voluntarily upload your own document for your own use.

What we never do

We never sell, share, rent, or trade your personal information or bill data to any third party. We never use your bill data for advertising, marketing, or any purpose other than generating your analysis report. We never contact your healthcare provider, insurance company, or anyone else on your behalf unless you explicitly ask us to.

Analytics

We use basic analytics to understand how people use the site — things like which pages are visited and how long people spend on them. We do not track individual users across the web or sell analytics data.

Cookies

We use minimal cookies necessary for the site to function. We do not use advertising cookies or tracking pixels from third-party ad networks.

Third-party services

We use the following third-party services:

Cloudflare — Hosts the website and provides security. Their privacy policy applies to infrastructure-level data.

Stripe — Processes payments. We never see your full card number. Stripe is PCI-DSS compliant.

Anthropic (Claude API) — Powers the bill analysis. Bill text is sent to the API for processing and is subject to Anthropic's data usage policies. Anthropic does not use API inputs for model training.

Children's privacy

This service is not directed at children under 13. We do not knowingly collect information from children.

Changes to this policy

We may update this policy from time to time. The "last updated" date at the top will reflect any changes. Continued use of the site constitutes acceptance of the current policy.

Contact

Questions about this policy? Email us at privacy@understandmymedicalbill.com.