Privacy Policy

Last Updated: June 2026

1. Our Commitment to Privacy

At DayGuide AI, privacy is built into the foundation of how our platform operates. This Privacy Policy applies to all features including Activities, Games, Daily Chronicles, Menus, Calendar, Pass Time Activities, Spiritual Reflections, Budget with Nova, Field Trip Finder, DayGuide Design Studio, Coloring Pages, Nova AI Assistant, Participant Profiles, Programs, Reports & Analytics, and the Nova Marketplace.

2. Data We Collect

DayGuide AI follows a data minimization approach and adheres to HIPAA de-identification standards under 45 CFR §164.514(b).

Account & Facility Information

• Facility name, type, location, and timezone
• Facility owner and staff contact information (name, email, phone)
• Staff roles, permissions, and account credentials
• Subscription details and billing status (processed by Stripe)
• Facility branding assets such as logos
• Facility preferences and operating settings

Participant Profile Information (De-Identified, Non-Medical)

Participant profiles on DayGuide AI are fully anonymous and non-identifiable. In compliance with HIPAA de-identification standards (Safe Harbor method), we do not collect any of the 18 HIPAA-defined identifiers. Profiles contain only:

• A pseudonym or nickname assigned by facility staff — no real names collected or stored
• Non-medical lifestyle preferences: interests, hobbies, favorite activities, music and food preferences, engagement styles, participation preferences, and general background notes
• Activity participation data: attendance tracking, engagement scores, and non-clinical observations recorded by staff

3. Data We Do Not Collect

DayGuide AI does not collect or store any of the 18 HIPAA Safe Harbor identifiers, including:

• Real names
• Dates of birth, admission, discharge, or any other dates
• Geographic data smaller than state level
• Phone numbers, fax numbers, or email addresses belonging to participants
• Social Security numbers
• Medical record numbers or account numbers
• Health plan beneficiary numbers
• Certificate or license numbers
• Vehicle or device identifiers and serial numbers
• Web URLs or IP addresses associated with participants
• Biometric identifiers including fingerprints or voice prints
• Profile photographs or any comparable images
• Any other unique identifying number, characteristic, or code

We also do not collect: medical diagnoses or conditions, medications or prescriptions, treatment plans or physician orders, clinical notes or medical history, insurance or medical identification numbers, or any data intended for clinical or healthcare recordkeeping.

4. Security and Infrastructure

DayGuide AI is built on infrastructure maintaining SOC 2 Type II and ISO 27001 certifications. Safeguards include: encryption of all data in transit (TLS/HTTPS) and at rest, role-based access controls, multi-factor authentication, continuous system monitoring, and regular security reviews.

5. Contact

Email: support@dayguideai.com