Privacy Policy

My Health Price collects only the minimum information needed to operate the service. Specifically:

• Anonymous session identifiers. When you visit the site, we assign a randomly generated UUID (universally unique identifier) to your browser session. This ID contains no personal information and cannot identify you. It exists solely to prevent automated abuse such as spam submissions and to maintain basic rate limiting. See Section 3 for more detail.
• User-submitted content. If you submit a review, post in the community forum, or fill out our feedback form, we store that content in our database. This content is voluntarily provided by you. Reviews and forum posts are displayed publicly and anonymously.
• Aggregate usage data. We may collect aggregate, non-identifiable statistics such as the total number of page views, which states are most searched, or which procedures are most compared. This data is always aggregated — it is never linked to individuals.

We do not require you to create an account to use any feature of My Health Price.

My Health Price is designed from the ground up to avoid collecting sensitive information. We explicitly do not collect:

• Your name, email address, phone number, or mailing address
• Your insurance ID, member ID, or policy information
• Your health history, diagnoses, conditions, or medications
• Payment card numbers or financial account information
• Your Social Security number or government-issued ID
• Precise geolocation data (we do not request GPS or fine-grained location permissions)
• Information about your healthcare providers or treatment history

We are not a health insurance company, hospital, or healthcare provider. We do not transmit any information to hospitals or insurers on your behalf.

A UUID session identifier is a string of random characters — for example,7f3a1c09-4e2b-4d8a-b1d6-2c5a0f9e3b12— generated by your browser when you first visit the site. It is stored in your browser's local storage or a cookie.

This ID is completely random and is not linked to your identity in any way. We cannot determine who you are from a UUID alone. The sole purpose of the session ID is to:

• Prevent duplicate votes on “Was this helpful?” ratings
• Rate-limit forum and review submissions to reduce spam
• Maintain your locally-saved preferences (such as your preferred state filter)

You can clear this ID at any time by clearing your browser's local storage and cookies. Doing so has no effect other than resetting your saved preferences.

Reviews, forum posts, and feedback submissions are stored anonymously. We do not attach your name, email, or any personally identifying information to this content.

PHI filtering.We run automated screening on all user-submitted content to detect and flag potential Protected Health Information (PHI) — such as names, insurance IDs, diagnosis codes, or other information that could identify an individual's health status. Content that appears to contain PHI may be held for review or automatically redacted before publication. This system is not perfect, so we ask that you please do not include any personal health information in submissions.

You may request removal of content you submitted by using our feedback form and referencing the post or review. We will process removal requests promptly.

We may use privacy-respecting analytics tools to understand how visitors use My Health Price in aggregate. Any analytics tool we use is configured to:

• Anonymize or hash IP addresses before storage
• Not set cross-site tracking cookies
• Not build user profiles or behavioral advertising segments

Search terms and procedure queries are excluded from any analytics data shared with third-party tools. We do not share what you searched for with any analytics provider.

If My Health Price displays advertising in the future, we commit to the following standards:

• Advertisements will be configured to exclude health search data from targeting parameters. We will not pass procedure names, search terms, or hospital lookups to advertising networks for targeting purposes.
• We will not sell personal health information to advertisers or data brokers under any circumstances.
• Any advertising partnerships will be disclosed clearly on the page where ads appear.

User-submitted content (reviews, forum posts, feedback) is retained until you request its removal. We do not automatically purge content on a time schedule.

Search historyis not retained in any database linked to individuals. We may retain aggregate counts (e.g., “MRI was searched 200 times today”) for operational purposes, but these counts contain no individual-level data.

Anonymous session IDs stored in your browser persist until you clear them locally. We may retain session IDs on our server for up to 90 days for spam prevention purposes, after which they are purged.

My Health Price uses the following third-party infrastructure providers:

• Supabase (database and backend infrastructure). User-submitted content and price data are stored in a Supabase PostgreSQL database. Supabase is SOC 2 compliant. Review their privacy policy at supabase.com/privacy.
• Vercel(web hosting and CDN). My Health Price is hosted on Vercel's infrastructure. Vercel may process standard web request logs (IP addresses, user agent strings) in the course of serving the site. Review their privacy policy at vercel.com/legal/privacy-policy.

We do not share your data with these providers beyond what is necessary to operate the service. We do not sell data to third parties.