Privacy Policy (CarDS Scan iOS App)

Effective date: March 26, 2026
Developer: Cardiovascular Data Science Lab (“CarDS Lab”)

1) Overview

CarDSScan is an iOS research application that performs local, on-device analysis of electrocardiograms (ECGs). The App includes image-based 12-lead ECG analysis (via camera or image import). All machine-learning models are bundled within the App. No internet connection is required to use core features, and the App does not transmit ECG data or predictions to any server by default.

The App is intended for research and educational purposes only and is not designed or approved for diagnosis or clinical decision-making.

This Privacy Policy explains what data the App processes, how it is used, and your choices.

2) Scope

This Policy applies to your use of the App on your device. If you are participating in a research study, your participation may also be governed by a separate informed consent and/or Institutional Review Board (IRB)/Ethics approval. If there is a conflict, the research consent controls for research data handling.

3) Account Information

To create an account and access the App, users are required to submit basic information, such as name, email, institution, and role/specialty. This information is used to verify eligibility for research studies and manage user accounts. Account information may be stored on secure systems managed by CarDS Lab to support account management and authentication.

4) What the App Processes (on device)

Depending on your use and permissions you grant, the App may process the following types of data locally on your device:

  • ECG images you capture with the camera or select from your photo library.

  • Derived outputs (model predictions, scores, or visualizations) produced on device.

  • Local diagnostic logs (e.g., error messages, time stamps) needed to troubleshoot the App. These remain on device unless you choose to share them.

The App does not require you to enter personal identifiers or patient information when scanning ECG images (e.g., name, email). If a study workflow asks you to enter a research ID or annotation, it is stored locally on your device unless you explicitly export it.

5) Data Sources and Permissions

  • Camera: Used to photograph 12-lead ECGs. Images stay on device unless you save/export them.

  • Photo Library: Used to select ECG images for analysis. Access is read-only.

You can change permissions at any time in iOS Settings → Privacy & Security.

6) No Automatic Collection, Sale, or Sharing

  • No automatic uploads: The App does not automatically send ECG data, predictions, or identifiers to the cloud or to CarDS Lab.

  • No third-party analytics/ads SDKs: We do not use advertising identifiers (IDFA) or cross-app trackers.

  • No sale or sharing for targeted advertising: We do not sell your data and do not share it for targeted advertising.

7) Optional User-Initiated Exports

You may choose to export or share outputs, ECG images, or logs (for instance, to your research team or to CarDS Lab for troubleshooting). When you initiate an export/share action, you control the destination (e.g., Files, Mail, AirDrop). Once exported, the data is outside the control of the App and is subject to the recipient’s policies.

8) On-Device Storage, Backups, and Retention

  • Storage: ECG inputs, outputs, and logs remain on your device unless you delete them or uninstall the App. AI-generated outputs and associated timestamps are stored in secure databases. ECG images are not stored on CarDS Lab servers.

  • Backups: Depending on your iOS settings, locally stored App data may be included in your device backups (e.g., encrypted iCloud backup or local iTunes/Finder backup). You control backup settings in iOS.

  • Retention: AI-generated outputs and timestamps stored in secure databases will be retained according to applicable data retention and security policies. Data persists on your device until you delete it, the App, or the relevant Health records (via the Health app).

9) Research Use

If you use the App as part of an approved research study, additional procedures may apply:

  • Your informed consent will describe what data is collected, how it may be shared by you or your study device, and who can access it as part of the research protocol.

  • The App itself does not transmit data automatically; any transfers must be initiated by you or configured by your institution in accordance with local requirements.

10) Security

We design the App so that core processing is on device. While we implement reasonable safeguards to protect data processed by the App, no software system can guarantee absolute security. You are responsible for:

  • Keeping your device updated and secured (passcode/biometrics).

  • Managing permissions and backups.

  • Exporting or sharing data only with trusted recipients.

11) Your Choices & Rights

  • Permissions: Grant or revoke Camera and/or photos access at any time in iOS Settings.

  • View/Correct/Delete (on device): You can delete App data by removing items within the App (if supported), and/or uninstalling the App.

  • Research rights: If used in a study, follow the instructions in your consent for exercising rights (e.g., withdrawal, access, correction, deletion).

  • Jurisdictional rights (GDPR/UK GDPR/CCPA/CPRA and others): Depending on your jurisdictional and applicable privacy laws, you may have rights to access, correct, delete, restrict, or port personal data. Because the App does not send your data to CarDS Lab by default, we may not possess any data to respond to such requests—most actions will occur on your device. If you believe CarDS Lab holds a copy (e.g., you emailed logs), contact us using the information below.

12) Age Requirements

The App is intended for adult clinicians or authorized research participants aged 18 or older.

13) Third-Party Components

The App uses Apple frameworks (e.g., HealthKit, Vision, CoreML) and may include third-party/open-source components (e.g., TensorFlow Lite) on device. These components operate locally; they do not receive your ECG data unless you initiate an export to them (the App does not do so by default). Licenses for third-party components are provided in the App or documentation.

14) International Transfers

By default, the App does not transmit your data to CarDS Lab or any server; therefore, there are no routine international transfers. If you voluntarily export data to an external service, that transfer is governed by the destination’s terms.

15) Changes to This Policy

We may update this Policy to reflect changes in the App, laws, or research practices. When we do, we will update the “Effective date” above. Your continued use after changes take effect means you accept the updated Policy.

16) Contact Us

Questions about privacy or this Policy:
Cardiovascular Data Science Lab (CarDS Lab)

Yale School of Medicine
Email: contact@cards-lab.org
Address: New Haven, CT, USA

17) Important Notices

  • The App is for research and educational purposes only and is not a medical device. The App and any outputs generated by it are not intended to diagnose, treat, cure, or prevent any disease, and should not be used for clinical decision making.

  • You control exports and sharing—use caution when sending or saving data outside of the App.