Legal

Privacy Policy

Last updated: January 29, 2026

1. Introduction

N1 Research, LLC ("n1.care", "we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our healthcare data management platform and services.

2. Information We Collect

We collect the following types of information:

2.1 Account Information

  • Name and email address
  • Professional credentials and license information
  • Organisation and practice information
  • Billing and payment information

2.2 Protected Health Information (PHI)

When you use our services, you may upload or input patient health information, including:

  • Medical records and test results
  • Biomarker data and lab values
  • Diagnoses and treatment information
  • Genetic information
  • Procedure histories

2.3 Usage Information

  • Log data (IP address, browser type, pages visited)
  • Device information
  • Feature usage patterns

3. How We Use Your Information

We use collected information to:

  • Provide, maintain, and improve our services
  • Process medical records and generate health reports
  • Communicate with you about your account and services
  • Process payments and manage billing
  • Ensure security and prevent fraud
  • Comply with legal obligations
  • Conduct research and analytics to improve our platform (using de-identified data only)

4. HIPAA Compliance

As a platform handling Protected Health Information (PHI), we are committed to HIPAA compliance:

  • We implement administrative, physical, and technical safeguards to protect PHI
  • We enter into Business Associate Agreements (BAAs) with covered entities
  • We limit access to PHI to authorised personnel only
  • We maintain audit logs of PHI access and modifications
  • We provide breach notification as required by law

5. Data Security

We employ industry-standard security measures to protect your information:

  • Encryption of data in transit (TLS) and at rest (XChaCha20-Poly1305)
  • Multi-factor authentication (TOTP, hardware keys, backup codes)
  • Comprehensive audit logging of all authentication events and data access
  • Rate limiting and brute-force protection on all endpoints
  • Automatic session timeouts and access controls

6. Data Sharing and Disclosure

We do not sell your personal information. We may share information with:

  • Service providers who assist in operating our platform (under strict confidentiality agreements)
  • Law enforcement or regulatory bodies when required by law
  • Professional advisors (lawyers, accountants) as necessary
  • Successors in the event of a merger, acquisition, or sale

7. Data Retention

We retain your information for as long as necessary to provide our services and comply with legal obligations. Medical records are retained according to applicable healthcare regulations. You may request deletion of your account, subject to legal retention requirements.

8. Your Rights

Depending on your location, you may have the right to:

  • Access your personal information
  • Correct inaccurate data
  • Request deletion of your data
  • Object to or restrict processing
  • Data portability
  • Withdraw consent

For PHI, patients may exercise their HIPAA rights through their healthcare provider.

9. Cookies and Tracking

We use essential cookies for authentication and security. We may also use analytics cookies to understand how our platform is used. You can manage cookie preferences through your browser settings.

9.1 Functional Cookies

We use the following functional cookies to improve your navigation experience across our marketing site (n1.care) and application (app.n1.care). These cookies contain no personal data — only simple flags to route you to the correct page.

  • n1_auth — Indicates an active login session. Set on login, cleared on logout. Expires after 30 days. Used to show a "Open Dashboard" link instead of a signup prompt.
  • n1_known — Indicates you have previously created an account. Set on login, not cleared on logout. Expires after 1 year. Used to show a "Log In" link instead of a signup prompt for returning users.

These cookies are set on the .n1.care domain, are first-party only, and are not used for analytics, advertising, or tracking purposes.

10. Children's Privacy

Our services are intended for healthcare professionals and are not directed to individuals under 18 years of age. We do not knowingly collect personal information from children.

11. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for such transfers, including standard contractual clauses where applicable.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on our platform or by email. Your continued use of our services after such changes constitutes acceptance of the updated policy.

13. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at:

N1 Research, LLC
Email: longevity@n1.care