Privacy Policy

Last updated: March 22, 2026

1. Information We Collect

Arceum collects your email address when you voluntarily submit it through one of our capture forms — including the newsletter signup in the footer, the waitlist form on the pricing page, the cost calculator waitlist, and the contact form. We do not collect your name unless you provide it in a contact message.

When you use the Denial Resolver tool, you may upload or paste de-identified claim data including denial codes (CARC/RARC), payer names, procedure codes, and billed amounts. Arceum does not request or store Protected Health Information (PHI) as defined by HIPAA — including patient names, dates of birth, Social Security numbers, or member IDs. Uploaded files are processed in memory and are not stored after analysis is complete.

2. How We Store Your Data

Email addresses are stored in our email platforms (Loops.so and Resend) and our application database hosted on Supabase (PostgreSQL). All data is encrypted at rest and in transit using industry-standard TLS. We do not store passwords — authentication is managed through Supabase Auth with cookie-based sessions.

3. How We Use Your Information

We use your email address for:

  • Sending denial code updates, product news, and billing insights (newsletter)
  • Notifying you when Arceum Pro launches (waitlist)
  • Delivering resolution plans and appeal letters you request
  • Responding to messages you submit via the contact form

We do not send unsolicited commercial email. Every email we send includes an unsubscribe link.

4. AI Processing and Data Handling

Arceum uses AI (powered by Anthropic's Claude API) to generate appeal letters and assist with denial resolution analysis. When you use these features:

  • What is sent: De-identified claim data only — denial codes, billed amounts, payer names, and procedure codes. No patient identifiers are ever transmitted.
  • Retention: Data sent to Anthropic's API is automatically deleted within 30 days per Anthropic's data retention policy.
  • No model training: Your data is never used to train AI models. Arceum uses Anthropic's commercial API under terms that explicitly prohibit training on customer data (Commercial Terms, Section B).
  • File handling: Uploaded CSV files are processed in memory on our servers and are not stored after analysis is complete.

5. Third-Party Sharing and Sub-Processors

We do not sell, rent, or share your personal information with third parties for marketing purposes. Your data is shared only with the sub-processors listed below, which are necessary to operate the service:

  • Loops.so — email delivery, contact management, and newsletter
  • Resend — transactional email delivery (resolution plans, appeal letters)
  • Anthropic (Claude API) — AI-powered appeal letter generation and denial analysis
  • Supabase — application database and authentication
  • Vercel — hosting and infrastructure
  • PostHog — anonymous product analytics (no PII transmitted)

6. Cookies and Analytics

Arceum uses PostHog for product analytics. PostHog is configured to anonymize IP addresses and does not receive your email address or any other PII. We use a first-party cookie to track anonymous session behavior (pages visited, features used). No third-party advertising cookies are used.

7. Data Retention

We retain your email address for as long as you are subscribed or on our waitlist. Resolution plans and appeal letters are retained in your account until you request deletion. You may request deletion at any time by emailing privacy@tryarceum.com. We will delete your record within 30 days of a confirmed deletion request.

8. Data Breach Notification

In the event of a data breach affecting your personal information, Arceum will notify affected practices within 72 hours of confirming the breach. Notification will be sent via email and will include the nature of the breach, the data affected, and steps being taken to mitigate impact.

9. Children's Privacy

Arceum is a B2B tool intended for healthcare billing professionals. We do not knowingly collect personal information from children under 13.

10. Changes to This Policy

We may update this policy as the product evolves. Material changes will be communicated via email to subscribers. The "last updated" date at the top of this page always reflects the current version.

11. Payer Resolution Intelligence

Arceum displays denial resolution guidance specific to healthcare payers such as UnitedHealthcare, Aetna, and Blue Cross Blue Shield of Arizona. This guidance — including appeal processes, phone numbers, portal URLs, deadlines, and recommended resolution steps — is derived from publicly available provider administrative guides and educational materials published by these payers.

Arceum is not affiliated with any healthcare payer. Payer-specific information is provided for educational and informational purposes and may not reflect the payer's most current policies. For the most current requirements, consult the applicable payer's provider portal or administrative guide directly.

No personal information about you or your patients is shared with any payer as a result of displaying this resolution guidance. Payer-specific guidance is static content displayed based on the denial code and payer name — it does not involve any data exchange with the payer.

12. Contact

Questions about this policy? Email us at privacy@tryarceum.com.