Privacy Policy
Last Updated: January 7, 2025
1. Introduction
MedSchool Companion ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website and services at medschoolcompanion.com.
2. Information We Collect
2.1 Information You Provide
- Account Information: When you create an account, we collect your email address, name, and password (encrypted).
- Profile Information: Medical school affiliation and graduation year (optional).
- User Content: Course materials, lecture notes, documents, and study materials you upload or create.
- Payment Information: When you subscribe, payment processing is handled by Stripe. We do not store your full credit card details.
2.2 Information Collected Automatically
- Usage Data: How you interact with our services, features used, and study patterns.
- Device Information: Browser type, operating system, and device identifiers.
- Log Data: IP address, access times, and pages viewed.
2.3 Information from Third Parties
If you sign in using Google, Facebook, or Apple, we receive your name, email address, and profile picture from these providers.
3. How We Use Your Information
We use your information to:
- Provide and maintain our services
- Process your subscription and payments
- Generate AI-powered quizzes, summaries, and study materials from your uploaded content
- Improve and personalize your experience
- Send important service updates and notifications
- Respond to your questions and provide support
- Analyze usage patterns to improve our platform
4. How We Share Your Information
We do not sell your personal information. We may share information with:
- Service Providers: Third parties that help us operate our services (e.g., cloud hosting, payment processing, AI services).
- Legal Requirements: When required by law or to protect our rights.
- Business Transfers: In connection with a merger, acquisition, or sale of assets.
5. Third-Party Services
Our service uses the following third-party services:
- Amazon Web Services (AWS): Cloud hosting and storage
- Stripe: Payment processing
- OpenAI: AI-powered features (quiz generation, summaries)
- Google/Facebook/Apple: Social sign-in options
6. Data Security
We implement industry-standard security measures to protect your information, including:
- Encryption of data in transit (HTTPS/TLS)
- Secure password hashing
- Regular security assessments
- Access controls and authentication
7. Your Rights and Choices
You have the right to:
- Access: Request a copy of your personal data
- Correction: Update or correct your information via your account settings
- Deletion: Request deletion of your account and data (see our Data Deletion page)
- Portability: Export your data in a standard format
- Opt-out: Unsubscribe from marketing emails
8. Data Retention
We retain your information for as long as your account is active or as needed to provide services. You may delete your account at any time, which will remove your personal data according to our data deletion policy.
9. Children's Privacy
Our services are not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13.
10. International Users
If you are accessing our services from outside the United States, please be aware that your information may be transferred to and processed in the United States.
11. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last Updated" date.