Skip to main content

Privacy Policy

Effective: 4 July 2026 · Version 2026-07

1. Introduction

This Privacy Policy explains what personal data Web of Medicine (the "Service") collects, how we use it, who we share it with, and the rights you have over it. It applies to the Web of Medicine mobile apps and website.

2. Data We Collect

Account information. When you sign up we collect your email address, name, medical specialty, professional role, institution, country, and, optionally, your medical registration number.

Reading activity. As you use the Service we record activity such as cards viewed, papers read, likes and dislikes, and search queries. This powers your personalized feed and reading history.

Device and usage analytics. We collect technical information such as device type, operating system, app version, and in-app events, used to understand how the Service is used and to improve it.

Push tokens. If you enable notifications, we store the push token needed to deliver them. You can disable notifications at any time in your device settings.

3. How We Use Your Data

  • Personalized feed ranking: your specialty, reading activity, and likes and dislikes are used to rank the papers shown in your feed.
  • Leaderboard: reading activity may appear on an in-app leaderboard. You can opt out of the leaderboard in your Profile settings.
  • Product analytics: aggregated usage data helps us understand and improve the Service.
  • Email: we send transactional email (such as account and security messages) and, with an unsubscribe link in every message, marketing email about the Service. You can unsubscribe from marketing email at any time.

4. AI Processing

The Service uses third-party AI providers to generate summaries, podcasts, gradings, images, and answers. Paper text and the queries you type may be processed by these providers: OpenAI, Google, OpenRouter, and fal.ai.

Never enter patient data. You must not input patient-identifiable information or any other protected health information into the Service. The Service is designed for published literature, not patient records, and no patient data should ever be entered into it.

5. Third-Party Processors

We use the following service providers to operate the Service:

  • Supabase: database, authentication, and storage
  • Vercel: application hosting
  • Brevo: transactional email
  • EmailOctopus: marketing email
  • RevenueCat: subscription management and in-app purchases
  • Google AdMob: advertising shown on the free tier
  • OpenAI, Google, OpenRouter, fal.ai: AI processing as described above

Each processor receives only the data needed to perform its function and is bound by its own contractual and legal obligations. We do not sell your personal data.

6. Data Retention

We keep your account data for as long as your account exists. When you delete your account, in the app or by emailing support@webofmedicine.ai, we remove your profile and reading history. Some records may be retained for a limited period where the law requires it, for example billing records.

7. Your Rights

You can access, correct, delete, and export the personal data we hold about you. Depending on where you live, you may have additional rights under laws such as the GDPR or the CCPA, including the right to object to or restrict certain processing and the right to lodge a complaint with a supervisory authority. To exercise any of these rights, contact support@webofmedicine.ai. We honor such requests regardless of jurisdiction where reasonably practicable.

8. Security

We protect your data with measures including encryption in transit, access controls, row-level security on our database, and structured logging that redacts sensitive fields. No system is perfectly secure; if we become aware of a breach affecting your data, we will notify you as required by law.

9. Children

The Service is intended for healthcare professionals and students and is not directed at anyone under 18. We do not knowingly collect personal data from anyone under 18. If you believe a person under 18 has created an account, contact us and we will delete it.

10. International Transfers

Our service providers may store and process data in countries other than your own, including the United States. Where data is transferred out of a jurisdiction that restricts international transfers, we rely on appropriate safeguards such as standard contractual clauses offered by our processors.

11. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you through the app or by email before the changes take effect. The current version and effective date are always shown at the top of this page.

12. Contact

Questions about this policy or about your data can be sent to support@webofmedicine.ai.