Privacy Policy

Last updated: April 4, 2026

Estimated reading time: ~8 minutes

1. Who is ClaimSire?

ClaimSire is an independent, privately operated AI-powered eligibility guidance service that helps family caregivers discover Medicaid self-direction programs they may qualify for. We are not a government agency, not a law firm, and not a healthcare provider. We do not determine your eligibility for any government program. Final eligibility decisions are made by your state Medicaid agency.

This privacy policy explains what information we collect, how we use it, and what rights you have. It applies to all visitors and users of claimsire.com.

If you have any questions about this policy, contact us at hello@claimsire.com.

2. What information do we collect?

(a) Information you provide

  • Conversation answers: During the free eligibility conversation, you share details about your situation. This may include your state of residence, your relationship to the person you care for, the elder's health conditions, Activities of Daily Living (ADL) and Instrumental Activities of Daily Living (IADL) needs, diagnoses, and medications.
  • Email address: Provided when you choose to receive your eligibility summary or purchase a Benefits Blueprint.
  • Payment information: When purchasing a Benefits Blueprint ($49), your payment is processed entirely by Stripe. We never see, store, or have access to your credit card number, bank account, or other financial details.

(b) Information collected automatically

  • Vercel Analytics: We collect aggregated, anonymous page view and performance metrics through Vercel Analytics. These tools are privacy-focused and do not use tracking cookies.

(c) Information we do NOT collect

We want to be clear about what we never ask for and never store:

  • Social Security numbers
  • Medicaid card numbers or case numbers
  • Bank account or financial account numbers
  • Driver's license or government ID numbers

3. How do we use your information?

Data TypePurposeLegal Basis
Conversation answersGenerate your eligibility results and Benefits BlueprintPerformance of the service you requested
Email addressDeliver your eligibility summary, Blueprint, and purchase confirmationsYour consent
Payment informationProcess your purchase of a Benefits BlueprintPerformance of a contract (your purchase)
Page view analyticsUnderstand how our service is used and improve itLegitimate interest

4. How does AI power our service?

ClaimSire uses artificial intelligence to guide your eligibility conversation and generate your results. Specifically, we use the Claude API, built by Anthropic.

Here is what that means for your data:

  • Your conversation text is sent to the Claude API for processing. This is how we generate your eligibility results and Benefits Blueprint.
  • Anthropic retains API data for up to 7 days for safety and abuse monitoring, then deletes it.
  • Your data is not used to train Anthropic's AI models.

For full details, see Anthropic's privacy policy.

5. Who do we share your information with?

We share your data only with the service providers listed below. Each processes the minimum data required for its function.

Your DataWhere It GoesWhyHow Long
Conversation textAnthropic (Claude API)AI processing for eligibility guidance7 days, then deleted
Email addressResendDeliver emails (summaries, Blueprints, receipts)Until you unsubscribe
Payment detailsStripeProcess your $49 purchase (we never see your card)Per Stripe's policy
Assessment dataSupabase (ClaimSire database)Store your results so you can access them laterUntil you request deletion
Conversation messagesSupabase (ClaimSire database)Preserve your conversation historyUntil you request deletion
Page visitsVercel AnalyticsAggregated usage metrics to improve the serviceAggregated, not personally identifiable

6. What Will We Never Do?

We believe trust is earned through clear commitments. Here are seven things we will never do:

  1. We will never sell your data. Not to advertisers, data brokers, or anyone else. Period.
  2. We will never voluntarily share your information with government agencies. We will not report your information to any government body unless compelled by law (such as a valid court order or subpoena).
  3. We will never target you with ads. We do not run advertising. We do not participate in ad networks. We do not use retargeting pixels.
  4. We will never share your data with employers, insurers, or debt collectors. Your information stays with us and our service providers listed above, unless compelled by law.
  5. We will never require an account to use the free service. The eligibility conversation is free and does not require you to create an account or provide an email address.
  6. We will never contact your family members without your permission. Your conversation is between you and ClaimSire.
  7. We will never charge you without your explicit consent. The only paid product is the Benefits Blueprint ($49), and you must actively choose to purchase it through Stripe Checkout.

7. How do we protect your information?

We take the security of your information seriously. Here is what we do to protect it:

  • Encryption in transit: All data sent between your browser and our servers is encrypted using TLS with 256-bit encryption.
  • Encryption at rest: Your data is stored in Supabase with encryption at rest enabled and Row Level Security (RLS) policies that restrict access.
  • PCI DSS Level 1 payments: Payment processing is handled entirely by Stripe, which holds the highest level of PCI DSS certification. Your card information never touches our servers.
  • Access controls: Access to your data is restricted to authorized personnel who need it to operate the service.

8. How long do we keep your information?

Data TypeHow Long We Keep It
Conversation dataUntil you request deletion
Assessment and Blueprint dataUntil you request deletion
Email addressUntil you unsubscribe
Payment records7 years (required by tax and legal obligations)
Analytics dataAggregated only. No personal data retained.

To request deletion of your data, email hello@claimsire.com. We will process your request within 30 days.

9. What are your rights?

Regardless of where you live, you have the following rights regarding your personal information:

  • Access: Request a copy of the personal information we hold about you.
  • Delete: Request that we delete all of your personal information.
  • Correct: Request correction of any inaccurate information.
  • Opt out of emails: Withdraw your consent for email communications at any time by clicking the unsubscribe link or emailing us.

To exercise any of these rights, email hello@claimsire.com. We will respond within 30 days.

10. California residents (CCPA/CPRA)

If you are a California resident, the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA) give you additional rights. This section describes those rights and how to exercise them.

Categories of personal information we collect

  • Identifiers: Email address.
  • Health-related information: Elder health conditions, ADL/IADL needs, diagnoses, and medications (shared voluntarily during the conversation).
  • Commercial information: Purchase history (Benefits Blueprint).
  • Internet activity: Aggregated page view data (not personally identifiable).

We collect this information for the purposes described in Section 3 above.

"Do Not Sell or Share"

We do not sell your personal information. We do not share your personal information for cross-context behavioral advertising. We honor Global Privacy Control (GPC) signals. If we detect a GPC signal from your browser, we treat it as a valid opt-out request.

Your California privacy rights

  • Right to know: Request the categories and specific pieces of personal information we have collected about you.
  • Right to delete: Request deletion of your personal information.
  • Right to correct: Request correction of inaccurate personal information.
  • Right to opt out: Opt out of the sale or sharing of personal information. (We do not sell or share, so there is nothing to opt out of.)
  • Right to non-discrimination: We will not treat you differently for exercising your privacy rights.

To exercise these rights, email hello@claimsire.com with the subject line "California Privacy Request." We will verify your identity and respond within 45 days.

11. Washington residents (My Health My Data Act)

If you are a Washington state resident, the Washington My Health My Data Act (MHMDA) provides you with specific rights over your consumer health data. This section describes how we comply.

Consumer health data we collect

During the eligibility conversation, you may voluntarily share the following consumer health data as defined by the MHMDA:

  • Elder health conditions (such as dementia, diabetes, mobility limitations)
  • Activities of Daily Living (ADL) needs
  • Instrumental Activities of Daily Living (IADL) needs
  • Medical diagnoses
  • Medications

Consent

We collect consumer health data only with your opt-in consent. You provide this consent by voluntarily answering questions during the eligibility conversation. You may stop the conversation at any time, and we will not collect any further health data from you.

Your MHMDA rights

  • Access: Request a copy of the consumer health data we hold about you.
  • Delete: Request deletion of your consumer health data.
  • Withdraw consent: Withdraw your consent for us to collect or use your consumer health data at any time.

To exercise these rights, email hello@claimsire.com with the subject line "Washington Health Data Request." For full details on how we handle consumer health data, see our Health Data Policy.

12. How do we handle health information?

During the eligibility conversation, you may share health-related information about the person you care for. This includes conditions, diagnoses, medications, and care needs. We treat this information with heightened protections.

ClaimSire is not a covered entity under the Health Insurance Portability and Accountability Act (HIPAA). However, we voluntarily apply HIPAA-like safeguards to all health-adjacent information you share with us. This includes encryption, access controls, and limited retention.

Breach notification commitment: In the unlikely event of a data breach involving your health information, we will notify affected users within 60 days, consistent with the FTC Health Breach Notification Rule. We will also notify relevant regulatory authorities as required by applicable law.

13. Children's privacy

ClaimSire is designed for adult family caregivers. Our service is not intended for children under 13 years of age (as defined by the Children's Online Privacy Protection Act, or COPPA), and we do not knowingly collect personal information from children under 13. We also do not knowingly collect information from anyone under 18.

If you believe a child has provided us with personal information, please contact us at hello@claimsire.com. We will promptly delete it.

14. Will this policy change?

We may update this privacy policy from time to time. When we do, we will update the "Last updated" date at the top of this page.

For material changes that affect how we collect, use, or share your information, we will notify you by email (if you have provided one) before the changes take effect.

15. How can you contact us?

If you have questions, concerns, or requests related to this privacy policy or your personal information, contact us at:

hello@claimsire.com

We will respond to all requests within 30 days.