AriasHealth.ai, Inc. Privacy Policy

Last updated: August 23, 2025

I. INTRODUCTION

This Privacy Policy describes how AriasHealth.ai, Inc. (“AriasHealth,” “we,” “our,” or “us”) collects, uses, maintains, and discloses information about you through our Websites, mobile applications, and related digital services. AriasHealth.ai, Inc. provides a peer-support and AI-enabled engagement platform designed to reduce loneliness and strengthen the brain–heart connection, and in some cases, we partner with Massachusetts General Hospital (MGH) for IRB-approved research studies.

AriasHealth.ai, Inc. is not a medical group or healthcare provider. We do not provide clinical diagnosis, treatment, or medical advice. Our Services are designed to deliver peer support, digital engagement, and research tools. If you participate in an IRB-approved research study, clinical oversight is provided by Massachusetts General Hospital (MGH). Any health information collected in that context is governed by HIPAA and the Notice of Privacy Practices provided by MGH.

Please read this Privacy Policy carefully to understand our policies and practices regarding your information and how we will treat it. If you do not agree with our policies and practices, your choice is not to use AriasHealth.ai, Inc.’s Websites or Applications. By accessing or using our Websites or Applications, you agree to this Privacy Policy. This Privacy Policy may change from time to time (see “Changes to This Policy”). Your continued use of our Websites or Applications after we make changes is deemed to be acceptance of those changes, so please review this Privacy Policy periodically for updates.

II. CHILDREN UNDER THE AGE OF 18

Our Websites and Applications are not intended for children under the age of 18. Individuals under 18 are not permitted to use our Services or provide any information through our Websites or Applications.

We do not knowingly collect Personal Data from anyone under 18. If we become aware that we have inadvertently collected such information, we will promptly delete it from our systems. If you believe that someone under 18 has provided us with information, please contact us at info@ariashealth.ai so we can take appropriate action.

III. DATA WE COLLECT AND HOW WE OBTAIN IT

We may collect different types of information from and about users of our Websites and Applications, including Personal Information, Protected Health Information (PHI), User Data, Web Tracking Information, and information from third parties.

A. Information You Provide to Us

The information we collect on or through our Websites or Applications may include:

• Registration Information: Information you provide by filling in forms on our Websites or Applications, including registration, intake, waitlist sign-up, or eligibility forms. If you join our waitlist, we will collect your name and email address solely to contact you about future updates. Waitlist participation does not create an account, grant access to Services, or establish any provider-patient relationship.
• Correspondence: Records and copies of your communications (including email addresses and phone numbers), if you contact us.
• Surveys and Questionnaires: Your responses to surveys or questionnaires for research or service improvement.
• Transactions: Details of any transactions you carry out through our Websites or Applications, including billing information if payment functionality is introduced in the future.
• Demographics and Preferences: Information you voluntarily provide about your demographics, interests, or preferences, which may be used to help improve group matching and engagement.
• Searches and Feedback: Search queries or feedback submitted through our Websites or Applications.
• Account Credentials: Username, password, and other identifiers used to access the Services.
• Problem Reports: Information provided when reporting problems with our Websites or Applications.
• Peer-Support Participation: Information you provide as part of your participation in peer-support groups, structured digital activities, or AI-enabled group matching.

User Contributions: You may also provide information to be published or displayed (“posted”) in peer-support groups or other community areas of the Websites or Applications, or transmitted to other users of the Websites or Applications (collectively, “User Contributions”). Your User Contributions are posted on and transmitted to others at your own risk. Although we limit access to certain areas, no security measures are perfect or impenetrable. We cannot control the actions of other users with whom you share contributions. Therefore, we cannot and do not guarantee that your User Contributions will not be viewed by unauthorized persons. We may use anonymized or aggregated User Contributions for research or marketing. To support user safety and improve service quality, authorized personnel or automated tools may review communications within the Services. Such monitoring is limited to permitted purposes and subject to applicable safeguards.

B. Protected Health Information (PHI)

If you participate in an IRB-approved research study with Massachusetts General Hospital (MGH), we may collect health-related data, including medical history, survey responses, behavioral health information, or engagement with structured modules. All PHI is governed by HIPAA and the Notice of Privacy Practices provided by MGH. AriasHealth.ai, Inc. does not use PHI for marketing or commercial purposes and only uses or discloses PHI in compliance with HIPAA, law, and IRB protocols.

C. Information We Collect Automatically

As you navigate through and interact with our Websites and Applications, we may use automatic data collection technologies to collect certain information, including:

• Usage Data: Details of your visits, such as traffic data, location, logs, referring/exit pages, date and time of access, error information, and clickstream data.
• Device Information: Information about your computer or mobile device, such as your IP address, operating system, browser type, device model, unique device identifiers, and application version.
• Cookies and Similar Technologies: See Section IV (Cookies and Tracking Technologies) for details on cookies, web beacons, flash cookies, analytics, and session replay technologies.

This information helps us to:

• Estimate our audience size and usage patterns.
• Store information about your preferences, allowing us to personalize your experience.
• Improve our Websites, Applications, and peer-support programs.
• Recognize you when you return to our Websites or Applications.

D. Information from Third Parties

We may also collect information about you from third-party sources, including:

• Research Partners: Such as Massachusetts General Hospital (MGH) in the context of IRB-approved research studies.
• Business Partners: Such as referral organizations, universities, or healthcare institutions collaborating with us.
• Service Providers: Such as analytics vendors, payment processors, or technology platforms that support our Services.
• Public Sources: Such as publicly available information, consistent with applicable laws.

IV. USE OF COOKIES AND DIGITAL TRACKING TOOLS

As you navigate through and interact with our Websites and Applications, we may use automatic data collection technologies to gather information about your device, browsing actions, and usage patterns. These technologies help us improve our Services, provide a more personalized experience, and maintain the security and integrity of our platforms.

A. Information Collected Automatically

We may collect:

• Usage Data: Details of your visits, such as traffic data, location, logs, referring/exit pages, date and time of access, error information, and clickstream data.
• Device Information: Information about your computer or mobile device, including IP address, operating system, browser type, device model, unique device identifiers, and application version.

B. Technologies We Use

• Cookies (or Browser Cookies): Small text files placed on your computer or device to recognize your browser and store preferences. You may refuse cookies by activating the appropriate setting on your browser or mobile device, but disabling cookies may limit access to certain parts of our Services.
• Web Beacons (Pixel Tags/Clear GIFs): Small electronic files that allow us to count users who have visited certain pages, opened an email, or otherwise measure engagement with content.
• Flash Cookies: Local stored objects used to collect and store information about your preferences and navigation. Flash cookies are not managed by the same browser settings as browser cookies.
• Session Replay: Technology that may capture your interactions with our Websites or Applications (e.g., clicks, scrolling, form inputs) to improve usability and support troubleshooting. By using our Websites or Applications, you consent to this form of capture.
• Analytics: We may use analytics tools to understand how users access and use the Services. These tools may also track your activities across time and third-party services to associate devices, analyze usage trends, and deliver relevant content.

C. Third-Party Use of Cookies

Some cookies and tracking technologies are placed by third parties, either alone or in conjunction with our systems. These third parties may collect information about your online activities over time and across different websites and services. Such information may be associated with your Personal Data or aggregated to inform interest-based advertising or other targeted content.

We do not control how these third parties’ technologies operate or how they may use the data they collect. If you have questions about targeted content or advertising, you should contact the responsible provider directly. For information on how you can opt out of receiving targeted advertising, see Section VI: Your Choices Regarding Data Use and Disclosure.

V. DISCLOSURE OF YOUR INFORMATION

We do not sell, rent, or otherwise disclose your Personal Data for purposes other than those outlined in this Privacy Policy. We may disclose aggregated or de-identified information about our users, and information that does not identify any individual, without restriction.

We may disclose Personal Data that we collect or you provide as described in this Privacy Policy:

• To Affiliates, Contractors, and Service Providers: With vendors and third parties we use to support our operations. These services may include IT and infrastructure support, analytics, communications, marketing, payment processing, and customer service.
• To Research Partners: In the context of IRB-approved studies with Massachusetts General Hospital (MGH), in accordance with HIPAA and the Notice of Privacy Practices provided by MGH.
• To Successors or Buyers: In the event of a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of our assets, in which Personal Data held by AriasHealth.ai, Inc. is among the assets transferred.
• To Fulfill the Purpose You Provide: For example, if you request to be connected to a peer-support group, we may disclose limited information necessary to enable that participation.
• With Consent: For any other purpose disclosed by us when you provide the information, with your explicit consent.

We may also disclose your Personal Data:

• For Legal Compliance: To comply with any court order, law, or legal process, including responding to government or regulatory requests.
• To Protect Rights and Safety: If we believe disclosure is necessary or appropriate to protect the rights, property, or safety of AriasHealth.ai, our users, or others. This may include exchanging information with other companies and organizations for fraud prevention and credit risk reduction.
• To Enforce Agreements: To apply our Terms of Use and other agreements, including for billing and collection purposes.

VI. YOUR CHOICES ABOUT DATA USE AND SHARING

We strive to provide you with control over the Personal Data you provide to us. You may exercise choices about how your information is used, including marketing, tracking technologies, and disclosures to third parties.

A. Tracking Technologies and Advertising

• You may configure your browser to refuse all or some browser cookies, or to alert you when cookies are being sent.
• On mobile devices, you may have similar options within your operating system or browser settings.
• Please note: disabling cookies or similar tools may prevent access to certain parts of our Websites or Applications or limit functionality.

B. Promotional Communications

• If you do not wish to have your email address used by AriasHealth.ai, Inc. for promotional messaging, you may opt out at any time by clicking the unsubscribe link at the bottom of our emails or by contacting us at info@ariashealth.ai.
• This opt-out does not apply to information provided for research participation, peer-support enrollment, or other services that are core to our operations.

C. Third-Party Advertising

• We do not control third-party tracking or advertising technologies. These third parties may collect information about your online activities over time and across different websites or applications.
• If you wish to opt out of interest-based advertising, you can use tools provided by industry groups such as the Network Advertising Initiative (NAI) or the Digital Advertising Alliance (DAA).

D. Research Participation

• If you are a research participant in an IRB-approved study with Massachusetts General Hospital (MGH), you may have additional rights regarding your health information under HIPAA. For questions regarding PHI collected in that context, please refer to the Notice of Privacy Practices provided by MGH or contact the research team.

VII. YOUR RIGHTS REGARDING YOUR INFORMATION

You may review, update, or request deletion of your Personal Data at any time, subject to certain limitations described below.

A. Accessing and Correcting Your Information

• You may request access to the Personal Data we hold about you by contacting us at info@ariashealth.ai.
• If you have an account with AriasHealth.ai, Inc., you may also review and update certain information directly through the account settings or preferences in the Application.
• If you believe any Personal Data we hold about you is incomplete or inaccurate, you may request that we correct it.

B. Deletion of Information

• You may request deletion of your Personal Data by contacting us at info@ariashealth.ai.
• We may not be able to accommodate a deletion request if we believe doing so would violate any law, legal obligation, or IRB protocol, or cause the information to become incorrect.
• Deleting your Personal Data may also require deletion of your account and termination of your access to our Services.

C. Research Participants

• If you participate in an IRB-approved study with Massachusetts General Hospital (MGH), your rights to access, correct, or delete health information are governed by HIPAA and MGH’s Notice of Privacy Practices. Requests to exercise these rights should be directed to MGH or the study team, not AriasHealth.ai, Inc.

D. Limitations

• We may retain limited information as required by law, for fraud prevention, recordkeeping, or research integrity purposes.
• In certain cases, we may de-identify or aggregate Personal Data so that it is no longer linked to you. This information may be retained indefinitely.

VIII. TRACKING PREFERENCES AND DO-NOT-TRACK SIGNALS

We may use automated data collection technologies to track activity across our Websites and Applications. These technologies allow us to analyze usage, improve Services, and better understand how users interact with peer-support groups and digital tools.

Some web browsers and mobile devices permit you to send “Do Not Track” (DNT) signals to websites and online services. At this time, AriasHealth.ai, Inc. does not respond to Do Not Track signals. We may continue to collect information about your online activity even if such a signal is received.

We may also use automated data collection technologies to gather information about your online activities over time and across third-party websites or services (known as “behavioral tracking”). These practices are common and help improve personalization and relevance of the Services.

If you do not wish to be tracked for interest-based advertising, you may use tools provided by industry organizations (such as the Network Advertising Initiative or the Digital Advertising Alliance) to opt out of behavioral tracking across third-party platforms.

IX. DATA SECURITY

We implement administrative, technical, and physical safeguards designed to protect your Personal Data from accidental loss and from unauthorized access, use, alteration, or disclosure. These measures include encryption, secure servers, role-based access, and ongoing monitoring of systems for vulnerabilities.

The safety and security of your information also depends on you. If you create an account and choose a password to access certain parts of our Websites or Applications, you are responsible for keeping this password confidential. We ask that you do not share your password with anyone.

While we take reasonable precautions, no method of transmitting information over the Internet or storing information electronically is completely secure. We cannot guarantee the security of your Personal Data transmitted through our Websites or Applications. Any transmission of information is at your own risk.

For participants in IRB-approved research studies conducted with Massachusetts General Hospital (MGH), additional safeguards apply. Data collected in that context is governed by HIPAA, federal research regulations, and IRB protocols. AriasHealth.ai, Inc. only handles such data in compliance with these standards and does not use research data for commercial purposes.

We are not responsible for the circumvention of any privacy settings, security measures, or device protections contained on our Websites, Applications, operating systems, or personal devices.

X. USE OF ARTIFICIAL INTELLIGENCE (AI)

AriasHealth.ai, Inc. incorporates artificial intelligence (AI) technologies to enhance our Services. AI is used to improve peer-support group formation, personalize content delivery, and analyze de-identified engagement data to strengthen our ability to reduce loneliness and support the brain–heart connection.

• No Clinical Diagnosis or Treatment
  Our AI does not provide medical advice, diagnosis, or treatment. It is designed to support digital engagement, community building, and research insights only.
• Applications of AI
  AI may be used to:
  • Assist with matching participants into peer groups based on compatibility and availability.
  • Provide personalized educational content and resilience-building modules.
  • Identify de-identified trends to help us improve user experience and inform research studies.
• Human Oversight
  All AI processes are subject to human oversight. For IRB-approved studies conducted with Massachusetts General Hospital (MGH), the design and use of AI are subject to IRB protocols and HIPAA requirements.
• Data Protections
  When AI processes data, it is applied primarily to anonymized or aggregated information. Personal Data and Protected Health Information (PHI) are not used for commercial AI training without explicit consent. We do not share User Content with external AI providers for their independent model training.
• Transparency
  AriasHealth.ai, Inc. is committed to transparency in how AI supports our Services. Updates regarding the use of AI will be reflected in this Privacy Policy.

XI. CHANGES TO OUR PRIVACY POLICY

We may update or modify this Privacy Policy from time to time. It is our policy to post any changes we make to this Privacy Policy on this page, with a notice that the Privacy Policy has been updated on the Website’s home page or the Application’s home screen.

If we make material changes to how we treat users’ Personal Data, we will notify you by email (if you have provided an email address as part of your account or participation) and/or through a prominent notice on our Websites or Applications.

The date this Privacy Policy was last revised is identified at the top of the page. You are responsible for ensuring that we have an up-to-date, active, and deliverable email address for you, and for periodically visiting our Websites and Applications to review this Privacy Policy for any updates.

By continuing to use our Services after any changes become effective, you acknowledge and accept the revised Privacy Policy.

XII. CONTACT INFORMATION

If you have any questions, concerns, complaints, or suggestions regarding this Privacy Policy or our data practices, you may contact us at:

AriasHealth.ai, Inc.
2485 Huntington Drive, #228
San Marino, CA 91108
Email: info@ariashealth.ai

If you are a research participant, you may also contact your study team or the IRB as listed in your informed consent documents.