At Lotus, your trust is everything to us. We’ve built the world’s first primary care AI co-pilot—one that’s deeply connected to your health history, wearables, and insurance plan—to give you personalized insights that empower your health decisions. But none of this matters unless your data is safe.

We don’t take that responsibility lightly.

This article explains exactly how we protect your data—from the moment you sign up, through every chat and insight—so you can focus on your health, knowing that your privacy is fully respected and defended.

You're in Full Control

Let’s start with what matters most: you own your data. Always.

• Only you can access your health profile and conversations.

• You can delete your account at any time, on your own terms.

• Before beginning any health record sync, we require your explicit consent to treatment.

Lotus was built to put you in charge of your health. That includes how your data is stored, accessed, and erased.

Secure Onboarding from the Start

Before we ever access your health data, we make sure it’s really you requesting it. Here’s how:

• ID Verification with Face Match: We use secure, real-time facial matching with a government-issued ID. This ensures no one can pretend to be you and pull your medical records.

• Health Record Syncing via Trusted Networks: Once verified, we securely connect to a trusted network of health systems (called a Health Information Exchange, or HIE). This network already helps over 75% of U.S. hospitals coordinate patient care—and we use it to gather your records, encrypted end-to-end.

From the beginning, your information is guarded by healthcare-grade security standards.

End-to-End Encryption—Across Everything

All of your data—whether it’s your health records, wearable data, chat history, or insurance info—is encrypted at every stage.

• In Transit: When data moves (like when syncing records or talking to the AI), it’s protected by secure HTTPS protocols.

• At Rest: When it’s stored in our systems, it’s encrypted using advanced, industry-standard encryption techniques.

• Zero Plaintext Credentials: Sensitive keys (like those used to access your health records) are never stored in plain text.

Our engineering team constantly audits and hardens our systems to prevent unauthorized access—even from inside.

Who Can Access Your Data Internally?

Only clinicians and developers with security clearance can access your health records—and only when you explicitly consent.

For example, if you’re being connected to a clinician for support with a sensitive health concern, or if you’re having trouble retrieving your data, we may request permission to access your information to help.

Access is never assumed. Every interaction is logged, tightly restricted, and reviewed to make sure your privacy is always respected.

Why We Care

You’ve entrusted us with your most personal information. That’s not just a technical responsibility—it’s a human one.

We believe your health data belongs to you, and no one else. Everything we build, every policy we write, and every line of code we ship is grounded in that belief.

If you ever have questions about how your data is protected, reach out. We’re here to answer.

Stay well,

The Lotus Team