Privacy Policy | MedQueri.ai

MedQueri.ai ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our systematic review and meta-analysis platform.

1. Information We Collect

Information You Provide

Account information: name, email address, password, and organization details
Research data: PICO questions, search strategies, screening decisions, extracted data, and analysis results
Uploaded documents: PDF files of research articles for data extraction
Payment information: billing address and payment method details (processed by Stripe)
Communications: messages sent through our contact forms or support channels

Information Collected Automatically

Usage data: pages visited, features used, time spent on the platform
Device information: browser type, operating system, IP address
Cookies and similar technologies: see our Cookie Policy

2. How We Use Your Information

We use the information we collect to:

Provide, maintain, and improve our services
Process your systematic reviews using AI-powered features
Process payments and manage your subscription
Communicate with you about updates, support, and promotional materials
Analyze usage patterns to improve user experience and platform performance
Ensure security and prevent fraud or unauthorized access
Comply with legal obligations

3. Data Security

We implement appropriate technical and organizational measures to protect your personal information, including:

Encryption of data in transit and at rest
Secure cloud infrastructure hosted on AWS
Regular security assessments and updates
Access controls and authentication mechanisms
Employee training on data protection practices

While we strive to protect your information, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.

4. Third-Party Services

We use trusted third-party services to operate our platform:

AWS (Amazon Web Services): Cloud hosting, authentication, and file storage
MongoDB Atlas: Database services
Stripe: Payment processing
Anthropic (Claude API): AI-powered features for screening and data extraction
Sentry: Error monitoring. We deliberately send only an internal user ID and email so issues can be reproduced and resolved.
Google Analytics 4: Aggregate product analytics (page paths, navigation patterns). We send an internal user ID and two non-identifying flags (whether you have a paid plan, whether you belong to an organization). We do not send your name, email, project data, search results, or any clinical content. Cookies are denied by default via Google’s Consent Mode.

These services have their own privacy policies, and we encourage you to review them.

5. Your Rights

Depending on your location, you may have the following rights:

Access: Request a copy of your personal data
Correction: Request correction of inaccurate data
Deletion: Request deletion of your data
Data Portability: Request a machine-readable copy of your data
Objection: Object to certain processing activities
Withdraw Consent: Withdraw consent where processing is based on consent

To exercise these rights, please contact us at our contact page.

6. Data Retention

We retain your personal information for as long as your account is active or as needed to provide you services. You may request deletion of your account and associated data at any time. Some information may be retained for legal, audit, or security purposes.

7. Children's Privacy

Our services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children.

8. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date.

9. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us through our contact page.