Data Security & Privacy Statement
How FairMedBill Protects Your Information
At FairMedBill, we are committed to protecting your privacy while providing powerful AI-driven bill analysis. This page explains exactly how your data is handled.
How Your Bill Is Analyzed
Important: To analyze your medical bills for errors, FairMedBill transmits your uploaded bill images to third-party AI services:
- Google Gemini (Google Cloud AI) — Our primary AI provider
- Groq (LLM inference service) — Used as a backup provider
We have implemented strict privacy controls with these providers. This includes a signed HIPAA Business Associate Agreement (BAA) with Google Cloud and Zero Data Retention (ZDR) enabled for Groq, ensuring no input or output data is stored.
Technical Safeguards
Encryption in Transit
All data transmitted between your device, our servers, and AI providers is encrypted using industry-standard TLS (Transport Layer Security).
No Data Storage
Your bill images are processed for error detection and immediately discarded. FairMedBill does not store your medical bill images on our servers.
No Personal Data Retained
We do not store patient names, dates of birth, medical record numbers (MRNs), Social Security numbers, or insurance policy information.
Rate Limiting
Our API implements rate limiting to prevent abuse and protect against automated attacks.
HIPAA Compliance Status
Transparency Notice
FairMedBill is designed with privacy in mind but is currently intended for individual consumer use. We are actively working toward full HIPAA compliance, which includes:
- Completed: Signed Business Associate Agreements (BAAs) and privacy guarantees with AI providers
- In Progress: Implementing user authentication and audit logging
- In Progress: Completing third-party security assessments
If you are a healthcare provider or covered entity, please contact us before using FairMedBill with patient records.
Questions?
If you have questions about our data handling practices, please contact us.