MedixGPT

Privacy Policy

Last updated: January 2026

Your Privacy at a Glance

Encrypted

All data encrypted in transit and at rest

No Selling

We never sell your personal information

Your Control

Delete your data anytime

1. Information We Collect

Account Information

When you create an account, we collect:

  • Full name and email address
  • Educational institution and year of study
  • Medical specialization (if applicable)
  • Password (encrypted and never stored in plain text)

Usage Data

We automatically collect:

  • Questions you ask and AI responses received
  • Session timestamps and duration
  • Device type, browser, and operating system
  • IP address and general location (country/city level)

Payment Information

Payment processing is handled by third-party providers (Razorpay/Stripe). We do not store full credit card numbers on our servers.

2. How We Use Your Information

We use collected information to:

  • Provide and improve the MedixGPT service
  • Personalize your learning experience
  • Process payments and manage subscriptions
  • Send important account and service updates
  • Analyze usage patterns to enhance features
  • Ensure security and prevent fraud
  • Comply with legal obligations

3. Data Sharing and Disclosure

We do NOT sell or rent your personal information. We may share data with:

  • Service Providers: Cloud hosting (AWS/GCP), analytics, payment processors
  • AI Partners: OpenAI (for ChatGPT functionality) - conversations are processed per their privacy policy
  • Legal Requirements: When required by law or to protect rights and safety
  • Business Transfers: In case of merger, acquisition, or asset sale

4. Data Security

We implement industry-standard security measures:

  • TLS/SSL encryption for data in transit
  • AES-256 encryption for data at rest
  • Regular security audits and vulnerability assessments
  • Access controls and authentication requirements
  • Secure cloud infrastructure with automated backups

However, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security.

5. Data Retention

We retain your account information and conversation history for as long as your account is active. After account deletion, we may retain anonymized data for analytics purposes. Chat histories are retained for 90 days for free users and up to 1 year for paid subscribers.

6. Your Privacy Rights

You have the right to:

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate information
  • Deletion: Request deletion of your account and data
  • Portability: Receive your data in a machine-readable format
  • Opt-out: Unsubscribe from marketing emails

To exercise these rights, email privacy@medixgpt.com.

7. Cookies and Tracking

We use cookies and similar technologies for:

  • Authentication and session management
  • User preferences and settings
  • Analytics and performance monitoring

You can control cookies through your browser settings, but some features may not function properly if disabled.

8. International Data Transfers

Your data may be processed in servers located outside India, including the United States and European Union. We ensure appropriate safeguards are in place to protect your information in accordance with this Privacy Policy.

9. Children's Privacy

MedixGPT is not intended for users under 18 years of age. We do not knowingly collect information from children. If you believe we have inadvertently collected such data, please contact us immediately.

10. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of significant changes via email or through the Service. The "Last updated" date at the top reflects the most recent revision.

11. Contact Us

For privacy-related questions or concerns, please contact:

Email: privacy@medixgpt.com