Privacy Policy
Last Updated: February 3, 2026
1. Introduction
MedSchool Companion ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website at medschoolcompanion.com and our mobile applications (iOS and Android), collectively referred to as the "Services."
By using our Services, you agree to the collection and use of information in accordance with this policy.
2. Information We Collect
2.1 Information You Provide
- Account Information: When you create an account, we collect your email address, name, and password (encrypted).
- Profile Information: Medical school affiliation and graduation year (optional).
- User Content: Course materials, lecture notes, documents, and study materials you upload or create.
- Payment Information: When you subscribe, payment processing is handled by Stripe (web) or Apple/Google (in-app purchases). We do not store your full credit card details.
- Support Communications: Information you provide when contacting customer support.
2.2 Information Collected Automatically
- Usage Data: How you interact with our Services, features used, and study patterns.
- Device Information: Device type, operating system version, unique device identifiers, browser type, and mobile network information.
- Log Data: IP address, access times, pages viewed, app crashes, and other system activity.
2.3 Mobile App-Specific Data
When you use our mobile applications, we may collect:
- Device Identifiers: Such as your device's advertising identifier (IDFA on iOS, Advertising ID on Android) only with your consent.
- App Performance Data: Crash logs, performance metrics, and diagnostics to improve app stability.
- Local Storage: Data stored locally on your device for offline access and app functionality.
2.4 Information from Third Parties
If you sign in using Google, Facebook, or Apple, we receive your name, email address, and profile picture from these providers.
3. How We Use Your Information
We use your information to:
- Provide and maintain our Services
- Process your subscription and payments
- Generate AI-powered practice questions, summaries, and study materials from your uploaded content
- Improve and personalize your experience
- Send important service updates and notifications
- Send push notifications (with your consent) for study reminders and updates
- Respond to your questions and provide support
- Analyze usage patterns to improve our platform
- Detect, prevent, and address technical issues and security threats
4. How We Share Your Information
We do not sell your personal information. We may share information with:
- Service Providers: Third parties that help us operate our Services (e.g., cloud hosting, payment processing, AI services, analytics).
- Legal Requirements: When required by law or to protect our rights.
- Business Transfers: In connection with a merger, acquisition, or sale of assets.
5. Third-Party Services
Our Services use the following third-party services:
- Amazon Web Services (AWS): Cloud hosting and storage
- Stripe: Payment processing (web)
- Apple App Store: In-app purchases and subscriptions (iOS)
- Google Play Store: In-app purchases and subscriptions (Android)
- Anthropic (Claude AI): AI-powered features (practice question generation, summaries, AI tutoring)
- Google/Facebook/Apple: Social sign-in options
Each of these services has their own privacy policies governing their use of your information.
6. Data Security
We implement industry-standard security measures to protect your information, including:
- Encryption of data in transit (HTTPS/TLS)
- Encryption of data at rest
- Secure password hashing
- Regular security assessments
- Access controls and authentication
- Secure data centers (AWS)
7. Your Rights and Choices
You have the right to:
- Access: Request a copy of your personal data
- Correction: Update or correct your information via your account settings
- Deletion: Request deletion of your account and data (see our Data Deletion page)
- Portability: Export your data in a standard format
- Opt-out: Unsubscribe from marketing emails
- Push Notifications: Disable push notifications through your device settings
- Tracking: Opt out of tracking through your device's privacy settings (iOS App Tracking Transparency)
8. App Tracking and Analytics
Our mobile apps may use analytics tools to understand app usage and improve the user experience. We:
- Do not track you across other companies' apps or websites
- Do not share your data with data brokers
- Only collect analytics data to improve our Services
- Respect your device's tracking preferences (iOS App Tracking Transparency)
9. In-App Purchases and Subscriptions
When you make in-app purchases or subscribe through our mobile apps:
- Payments are processed by Apple (iOS) or Google (Android)
- We receive confirmation of your purchase but not your payment details
- Subscription management is handled through your device's app store settings
- Refunds are subject to Apple's and Google's refund policies
10. Data Retention
We retain your information for as long as your account is active or as needed to provide Services. You may delete your account at any time, which will remove your personal data according to our data deletion policy.
Some data may be retained for legal compliance, dispute resolution, or enforcement of our agreements.
11. Children's Privacy
Our Services are not intended for children under 13 years of age (or 16 in certain jurisdictions). We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.
12. International Users
If you are accessing our Services from outside the United States, please be aware that your information may be transferred to and processed in the United States, where data protection laws may differ from those in your country.
13. California Privacy Rights
California residents have additional rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information we collect, request deletion, and opt out of the sale of personal information. We do not sell personal information.
14. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page, updating the "Last Updated" date, and sending you a notification through our Services or via email.