Privacy Policy

Your Privacy is Our Priority

At YANA, we believe in complete transparency about how we handle your data. We're committed to protecting your privacy while providing you with the best mental health support possible.

Data Collection and Usage

Understanding what information we collect and how we use it

Information We Collect

Voice recordings during check-ins (processed in real-time and not stored)
Basic profile information (name, email) for account management
Journal entries and emotional check-in data (stored with end-to-end encryption)
Usage analytics (anonymized and aggregated)

How We Use Your Data

To provide personalized mental health insights and recommendations
To improve our AI models' understanding of emotional patterns (using anonymized data only)
To facilitate secure sharing with your trusted connections

AI Processing and Analysis

How we use AI to support your mental health journey

AI Models and Processing

We use OpenAI's models for conversation analysis and insights generation
Voice analysis is performed using specialized emotion detection models
All AI processing is done in real-time with immediate data disposal
Personal identifiers are replaced with tokens before processing with AI models
AI responses are sanitized to remove any potential PHI before displaying to users
We maintain HIPAA-compliant Business Associate Agreements with all AI service providers

HIPAA Compliance

How we protect your health information under HIPAA regulations

Protected Health Information (PHI)

YANA is designed with HIPAA compliance at its core. We implement comprehensive measures to protect all Protected Health Information (PHI), including:

Field-level encryption using AES-256-GCM for all PHI data fields
Secure key management with strict access controls
Data anonymization for all external service interactions
Response sanitization to prevent accidental information leakage
Comprehensive compliance testing and real-time monitoring

PHI Fields We Protect

Our HIPAA compliance extends to all personal health information throughout our application, including:

Personal identifiers (names, contact info)
Medical history and diagnoses
Treatment plans and objectives
Mental health assessment scores

Journal entries and emotional data
Provider notes and recommendations
Appointment details and records
Insurance and billing information

Data Security and Protection

How we keep your information safe and secure

Security Measures

End-to-end encryption for all stored data using AES-256-GCM encryption
Regular security audits and penetration testing by third-party security experts
Strict access controls and multi-factor authentication for all system access
Real-time monitoring and automated alerts for potential security issues
Comprehensive encryption coverage tracking through our HIPAA compliance dashboard

Additional Protections

HTTPS encryption for all data in transit
Secure cloud infrastructure with redundant backups
Regular vulnerability scanning and immediate patch management
Comprehensive incident response plan with breach notification procedures

Your Rights and Control

Understanding and managing your data rights

Your Data Rights

Access your personal data that we've collected
Request correction of inaccurate or incomplete information
Delete your data (with some exceptions required by law)
Restrict or object to certain processing activities
Request a portable copy of your data
Withdraw consent for optional processing at any time

Contact Us

How to reach us with privacy questions or concerns

If you have any questions about this Privacy Policy or our data practices, please contact us at:

Email: support@yana-ai.com

Privacy Officer: YANA AI LLC

Address: 2810 N Church St #712893 Wilmington DE 19802

Policy Updates

How we'll notify you about changes

We may update this Privacy Policy from time to time. The latest version will always be posted on our website with the effective date. For significant changes, we'll notify you via email or through the app.

Last Updated: June 03, 2025