Your privacy and the confidentiality of your medical data are core to this application. We follow strict privacy-by-design principles to ensure your information is secure, private, and never retained beyond what is necessary to generate your requested analysis.
Data Handling
Uploaded files (PDF, JPG, TXT) are processed temporarily in server memory and are never stored permanently. Reports are generated on-demand and made immediately available for on-screen viewing and download. Upon user logout, any server-side report file is automatically deleted. No personal identifiers or medical content are stored, reused, or shared with any party.
Third-Party Services
This application integrates with trusted external services and providers that enable authentication, AI processing, and secure payments. All third-party partners are fully compliant with GDPR and other international data protection standards. No uploaded content or identifiable information is shared with these providers beyond what is strictly necessary to fulfill the user's request.
Security
All data transmission is encrypted using HTTPS. API keys, authentication tokens, and credentials are securely managed using environment variables on the server. No user credentials or medical data are logged, stored, or visible to the development team.
Your Rights and Data Privacy
This application is designed to require minimal data. Since no user data or uploaded files are stored beyond logout:
- Your data is not retained, and most GDPR and CCPA rights (e.g., deletion, correction, access) are fulfilled by design.
- You may contact the developer by email for any additional questions or clarifications.
Standards and Compliance
We follow principles outlined in: