Privacy Policy for CodeResus

Effective date: February 17, 2026

CodeResus ("we", "our", or "us") provides a mobile application used to record and summarize Code Blue events. This Privacy Policy explains what information we process, how we use it, and your choices.

Information We Process

When you use the app, we may process:

• Recorder-provided profile and session details (for example: recorder name and unit/location)
• Clinical event records entered during a session (for example: timestamps, event type, medication entries including RxNorm code, notes, and correction/audit entries)
• Subscription and billing status information through RevenueCat (for subscription management)
• Basic technical/network status needed for app features (for example: offline/online state for queued exports)

We do not use the app to collect precise location data, contacts, call logs, SMS, photos, or advertising identifiers for ad targeting.

How Information Is Used

We use information to:

• Run core app functionality (session capture, audit log generation, summary/export creation)
• Store session data locally on your device for continuity and offline use
• Deliver exports to your configured backend endpoint (if enabled by your deployment)
• Process and manage subscriptions through RevenueCat
• Maintain reliability, security, and service operations

Data Storage and Transfers

• Local device storage: Session and export queue data are stored locally using app storage.
• Optional backend transfer: If your deployment configures an export endpoint, exports are transmitted to that endpoint over HTTPS.
• Subscription provider: RevenueCat may process subscription-related identifiers and transaction metadata as a service provider.

Sharing of Information

We do not sell personal information.

We may share information only:

• With service providers that support app operations (such as RevenueCat for subscription processing)
• With your organization-controlled backend systems when export delivery is configured
• When required by law or to protect rights, safety, and security

Data Retention

Data is retained for as long as needed to provide app functionality and satisfy legal/operational requirements. Locally stored session data may remain on-device until removed by the user or app lifecycle actions. Data received by backend systems is retained according to that system's policies.

Security

We use reasonable administrative, technical, and organizational measures to protect information. No method of transmission or storage is guaranteed to be 100% secure.

Children's Privacy

The app is not directed to children under 13, and we do not knowingly collect personal information from children under 13.

Your Rights and Choices

Depending on your location, you may have rights regarding access, correction, deletion, or restriction of your personal information. To make a request, contact us using the details below.

Third-Party Services

This app uses third-party services, including:

• RevenueCat (subscription management): https://www.revenuecat.com/privacy

If your deployment uses a custom export backend, that backend may have additional privacy terms controlled by your organization.

Changes to This Policy

We may update this Privacy Policy from time to time. The updated version will be posted at the policy URL with a revised effective date.

Contact Us

If you have questions about this Privacy Policy or data practices, contact:

• Company/Developer: Smarty Bytes Innovation
• Email: smartybytes2@gmail.com
• Address: Toronto, Canada