Previa Privacy Policy
Effective Date: April 30, 2026 Last Updated: April 30, 2026
Previa (“the App”) is a pre-visit symptom checker that helps you prepare for medical appointments. This Privacy Policy explains what information the App collects, how it is used, and how it is protected.
1. Information We Collect
1.1 Information You Provide
- Profile data — first name, age, biological sex, known medical conditions, and current medications. This information is stored locally on your device and is used to personalize the App experience and improve symptom analysis.
- Symptom descriptions — free-text descriptions of your symptoms entered during a session.
- Session data — confirmed symptoms, selected suggested symptoms, custom symptoms you add, AI-generated summaries, and test recommendations.
- Recipient records — names, dates, and language codes of people you have shared session results with (e.g., “Dr. Smith, April 15, 2026, en”). These are stored locally for your reference only.
- Report translations — translated versions of your session reports, stored locally on your device alongside the original session data.
1.2 Information Collected Automatically
- Language preference — your selected app language and report translation languages (stored locally in UserDefaults).
- Biometric authentication events — the App uses Face ID, Touch ID, or device passcode to verify your identity. Biometric data is processed entirely by your device’s operating system (Apple’s LocalAuthentication framework). Previa never receives, stores, or transmits your biometric data.
1.3 Information We Do Not Collect
- We do not collect your location, contacts, photos, or browsing history.
- We do not use advertising identifiers or tracking pixels.
- We do not create user accounts or require email addresses.
- We do not access Apple Health (HealthKit) data in the current version of the App.
2. How We Use Your Information
2.1 Symptom Analysis
When you run a session, the following information is sent to our secure backend proxy server:
- Your symptom description (free text entered in Step 1)
- Selected and custom symptoms (in Step 2)
- Your biological sex (if provided and not set to “Prefer not to say”)
- Your selected language
This information is forwarded to Anthropic’s Claude AI service for analysis. The AI returns structured symptom suggestions and test recommendations. No other personal information (name, age, conditions, medications, or recipient records) is sent to the server.
2.2 Report Translation
When you translate a session report, the following information is sent to the same secure backend proxy server:
- The session’s symptom list, test recommendations, and AI summary
- The formatted report text in the original language
- The target translation language
The AI translates the report and returns the translated text. The same privacy protections apply as for symptom analysis — no personal information beyond the session content is transmitted, and no data is retained on the server after the request is processed.
2.3 Personalization
Your profile data (name, age, conditions, medications) is used locally to personalize greetings and may be used in future versions to provide more tailored recommendations. In the current version, only biological sex is included in AI analysis requests.
2.4 Session History
Session results and their translations are stored locally on your device so you can review past sessions and share results with healthcare providers.
3. Data Storage and Security
3.1 Local Storage
All personal data is stored on your device using Apple’s SwiftData
framework with file protection encryption
(.fileProtectionComplete). This means your data is
encrypted at rest and is only accessible when your device is
unlocked.
3.2 Biometric Protection
The App requires Face ID, Touch ID, or device passcode authentication every time it is opened. This cannot be disabled. You can configure the lock timing (immediately, after 1 minute, or after 5 minutes) in Settings.
3.3 Backend Proxy Server
The App does not communicate directly with Anthropic’s AI service. All API requests are routed through a secure backend proxy server hosted on Cloudflare Workers. The proxy server:
- Holds the API key for the AI service (never embedded in the App)
- Forwards your symptom data to Anthropic’s Claude API for processing
- Returns the AI response to your device
- Does not store, log, or retain your symptom data after the request is processed
- Does not associate requests with your identity
3.4 Anthropic’s Data Handling
Symptom data sent to Anthropic’s Claude API is processed in accordance with Anthropic’s Usage Policy and Privacy Policy. Anthropic does not use API inputs to train its models.
3.5 No Cloud Sync (Current Version)
In the current version, all data remains on your device. No data is synced to iCloud or any other cloud service. Future versions may offer optional iCloud sync for session history across your devices.
4. Data Sharing
We do not sell, rent, or share your personal information with third parties for marketing or advertising purposes.
Your data is shared only in the following circumstances:
- AI analysis — anonymized symptom text and biological sex are sent to Anthropic’s Claude API via our proxy server, as described in Section 2.1.
- AI translation — session report content is sent to Anthropic’s Claude API via our proxy server for translation, as described in Section 2.2.
- Your explicit sharing — when you use the Share feature to send session results or translated reports to a healthcare provider or other recipient via Messages, Mail, or other apps you choose.
5. Your Rights and Controls
5.1 Data Deletion
You can delete your data at any time from the Settings screen:
- Delete All Sessions — permanently removes all session history, including symptoms, recommendations, and recipient records.
- Delete Profile — permanently removes your profile data (name, age, biological sex, conditions, medications).
These actions cannot be undone.
5.2 Data Portability
You can share any session as text using the system share sheet, including translated versions. This allows you to keep a copy of your data outside the App.
5.3 No Account Required
Previa does not require you to create an account, provide an email address, or sign in. There is no server-side user profile to manage.
6. Children’s Privacy
Previa is not directed at children under the age of 13. We do not knowingly collect personal information from children. The App is intended for adults preparing for medical appointments or caregivers managing health information for family members.
7. Changes to This Policy
We may update this Privacy Policy from time to time. The “Last Updated” date at the top of this page reflects the most recent revision. Continued use of the App after changes are posted constitutes acceptance of the updated policy.
8. Contact Us
If you have questions or concerns about this Privacy Policy or the App’s data practices, please contact:
Email: previa@okdk7.com
9. Summary
| What | Details |
|---|---|
| Data stored on device | Profile, sessions, symptoms, recommendations, translations, recipient records |
| Data sent to server | Symptom text, biological sex, language preference, report content for translation |
| Data NOT sent to server | Name, age, conditions, medications, recipient records |
| Server data retention | None — requests are processed and not stored |
| Encryption | iOS file protection (encrypted at rest) |
| Authentication | Face ID / Touch ID / Passcode (required, cannot be disabled) |
| Third-party analytics | None |
| Advertising | None |
| Account required | No |