Not a privacy policy. A mathematical guarantee.
Your health questions stay on your device until you cryptographically authorise otherwise.
Runs entirely on your device. The Baby AI holds only general medical facts — no patient records, no personal history.
~/.consent-health/log.jsonl, owner-only permissionsNothing leaves your device unless you generate a sharing token. The sharing token is cryptographically bound to the recipient.
The CONSENT mechanism: a human types AUTHORIZE, a token is signed, the token is verified before data moves. No token — no movement.
ConsentHealth wraps any medical Baby AI — a small offline expert system compiled from a plain-text fact table using the NovaGlyph Kit. The Baby never connects to the internet and never stores your queries internally. The consent layer sits between you and the Baby.
When your query contains personal health markers — first-person language like "I have" or "my patient" — the wrapper pauses, shows you exactly what will be processed, and waits for you to type AUTHORIZE. If you do not type AUTHORIZE, the Baby never sees your query. If you type AUTHORIZE, a CONSENT token is generated and logged.
The CONSENT token is a signed JSON object. It contains a SHA-256 hash of your query (not the query itself), a timestamp, an expiry (24 hours), and an HMAC-SHA256 signature over all of those fields using a key that never leaves your device. The signature cannot be forged without that key. The hash binds the token to this exact query — a token for one question cannot be used to authorise a different question.
The shell wrapper cannot prevent you from copying the log file or running the Baby binary directly. The guarantee is narrower and more useful: every time ConsentHealth processes a personal health query, a cryptographic record exists that a human explicitly authorised that specific query at that specific time. If someone shares health data without using the wrapper, there is no token — and that absence is detectable in the audit log. For multi-party clinical deployments, pair this with full-disk encryption and the Ed25519 upgrade path described in DESIGN.md.
~/.consent-health/log.jsonl containing the timestamp, query hash, and token. The log is append-only.ConsentHealth is included in the NovaGlyph Kit. Build on the templates,
or adapt the wrapper to any domain.