Privacy policy

• Account email.The address you use to receive sign-in links. We don't ask for a password.
• Case content. The complaint, intake answers, test results, treatment notes, and chat messages you type into Robyn — plus the AI-generated reasoning produced from them.
• Technical logs. Timestamps, IP address, user-agent, error traces, and rate-limit counters needed to operate the service and prevent abuse.
• Product analytics. Page views, button clicks, and aggregate flow metrics used to understand which parts of the product are working.
• Session recordings. Microsoft Clarity records interactions on the public landing page only — clicks, scrolls, and rage-clicks. We do not enable Clarity inside authenticated pages where your case content lives. If you prefer not to be recorded, an ad/privacy blocker that blocksclarity.ms will silently disable it.

• Auth session cookie. Set after you click a sign-in link, used to keep you signed in. Required.
• CSRF token cookie. Issued by Auth.js to protect sign-in forms. Required.
• Local-storage flag(dxd-health-disclaimer-ack) so we don't ask you to re-acknowledge the health policy on every visit from the same device.

We don't set advertising cookies. We don't use third-party trackers for ads.

Robyn relies on a small set of vendors to operate. Each one processes the listed data on our behalf:

• Vercel — application hosting and edge logging. Receives request metadata and IP addresses.
• Neon — Postgres database. Stores your account, case content, and intake answers at rest.
• Resend — sends sign-in emails. Receives your email address and the one-time link.
• Anthropic — provides the Claude models used for case reasoning. Your case content is sent to the API to generate output. Anthropic does not train on Claude API inputs by default.
• Microsoft Clarity — session analytics on the public landing page only (see above).

We do not sell or rent data to any of these vendors or to anyone else.

Application data is stored in the United States (Vercel and Neon US regions). Email delivery (Resend) and AI inference (Anthropic) may route through other regions as part of normal operation.

• Account & case content — until you ask us to delete it, or until the account has been inactive for an extended period.
• Technical logs — typically rolled off within 30 days.
• Backups — case content may persist briefly in encrypted database backups after deletion before backups rotate.

You can request access to, correction of, or deletion of any data we hold about you by emailing support@robynhealth.com from the address on your account. We'll confirm and act within 30 days. You can also object to processing or withdraw consent — note that withdrawing consent for required processing (e.g. authentication) means we can't keep the account open.

Robyn is for adults (18+). We don't knowingly collect data from anyone under 18. If you believe a child has signed up, email support@robynhealth.com and we'll delete the account.

We'll update this page as Robyn evolves. Material changes will be communicated via the email on your account before they take effect.

Questions, requests, or complaints about privacy: support@robynhealth.com.