Effective Date: June 8, 2026

Orchestr Inc. ("we", "us", "our") operates the EMERGY emergency department management system, available on the web, iOS (including an Apple Watch companion), and Android. This Privacy Policy explains what data we collect, how we collect it, how it is used, and who it is shared with.

1. Information We Collect

Account Data: When a staff member signs up, we collect their name and email address. Authentication is handled by Google Firebase Authentication using email/password or Sign in with Apple; passwords are never stored by us in plain text. Each account is associated with a hospital and a role (Front Desk or Doctor), and an account identifier (Firebase UID).

Patient (Health) Data: Front-desk staff enter patient information used to triage and manage care, which may include name, date of birth, chief complaint, triage notes, vital signs (heart rate, blood pressure, temperature, oxygen saturation), allergies, medications, blood type, insurance identifier, assigned doctor/specialty, bed, severity (ESI) level, and queue status. This is health information and is stored in Google Firebase Firestore, scoped to your hospital.

Device & Notification Data: If you enable notifications, we store a push notification token and platform identifier on your account so we can deliver patient-queue alerts.

Camera: During triage, staff may turn on a live camera preview to visually assess a patient. This preview is shown only on the device — camera frames are not recorded, stored, or uploaded, and are not sent to any AI model.

We do not use third-party advertising or analytics SDKs, and we do not track you across other companies' apps or websites.

2. How We Use Your Information

• To authenticate your identity and provide access to your hospital's dashboard
• To manage the patient priority queue within your hospital
• To deliver patient-queue notifications you have opted into
• To provide AI-assisted triage suggestions (see Section 4)
• To maintain, secure, and improve the EMERGY platform, and to communicate service or security notices

3. Data Storage and Security

Account and patient data is stored in Google Firebase (Firestore and Authentication) on Google Cloud infrastructure. Firebase Authentication protects credentials using industry-standard methods. Patient data is isolated per hospital — no hospital can access another hospital's records.

4. AI-Assisted Triage

iOS and Android apps — on device: The mobile triage assistant runs an AI model (Llama 3.2) entirely on your device using on-device inference. The model file is downloaded once from a public model host (Hugging Face); after that, triage runs offline. No patient data is transmitted to any external or third-party AI service from the mobile apps.

Web app — server processing: If you use the optional AI triage assistant in the web app, the clinical text you enter (such as the chief complaint and triage notes) is sent to our own AI inference service, operated by us as a data processor, to generate a suggested severity level and clinical reasoning. This data is processed to service your request and is not sold, used to train third-party models, or shared for advertising. AI suggestions are decision support only and do not replace clinician judgment.

5. Data Sharing and Service Providers

We do not sell or rent your personal data or patient data. We share data only with service providers that process it on our behalf to operate the app, each of which provides protections consistent with this policy: Google Firebase (authentication, database, hosting) and Expo (app delivery and push notification routing). The web AI triage assistant is processed by our own inference service as described in Section 4. Data may otherwise be disclosed only if required by law or to protect the rights and safety of our users.

6. Data Retention

Account and patient data is retained as long as your hospital account is active. You may request deletion of your account and associated data by contacting us or via the in-app account deletion option.

7. Your Rights

You have the right to access, correct, or delete your personal data. Hospital administrators can manage patient records through the dashboard. For account-level requests, contact us at the email below.

8. Children's Privacy

EMERGY is intended for use by healthcare professionals. We do not knowingly collect data from individuals under 18 as users. Patient data entered by staff may include minors' information as part of hospital operations.

9. Changes to This Policy

We may update this policy from time to time. Changes will be posted on this page with an updated effective date.

10. Contact

For questions about this Privacy Policy, contact Orchestr Inc.