Privacy Policy Effective Date: 20 April 2026

This Privacy Policy explains how Medxcalc.com (“Service”, “we”, “us”) collects, uses, stores, and protects information when you use our platform. By using the Service, you agree to the terms of this Privacy Policy. 2. Information We Collect a. Information You Provide Account Information: Email address and username provided during registration. Clinical Inputs: Numerical or categorical data entered into calculators (e.g., Creatinine levels, Burn percentage). Communications: Information provided when contacting support via our official email. CRITICAL: Users are strictly advised not to enter identifiable patient information (e.g., Names, Phone Numbers, Aadhaar IDs). Any clinical input should be de-identified before entry. b. Automatically Collected Information Technical Data: IP address (anonymized), device type, browser version, and operating system. Usage Logs: Pages visited, duration of sessions, and specific calculators utilized to ensure system stability and clinical accuracy. c. Payment Information Payments are processed via Razorpay. We do not store sensitive payment details (e.g., full card numbers or CVV) on our servers. All such data is handled securely by Razorpay in accordance with PCI-DSS standards. 3. How We Use Information We use the collected data to: Operate the clinical calculators and "bookai" analysis tools. Process subscriptions and verify payment status via Razorpay webhooks. Improve AI model responses and system logic (using non-identifiable data). Ensure security and prevent unauthorized access to professional accounts. 4. AI & Third-Party Processing Some features of this Service utilize Large Language Models (LLMs) provided by third parties (e.g., OpenAI). Data sent to these APIs is for real-time processing only. We do not use your inputs to train public AI models. You must ensure no protected health information (PHI) is included in AI chat queries. 5. Patient Data & De-Identification The Service is designed to function without the need for identifiable patient data. No Names or IDs: Any field requesting "Patient ID" should be filled with a generic or internal reference only. Data Minimization: We only process the minimum numerical data required to produce a calculated clinical score. 6. Data Storage & Security We implement industry-standard safeguards, including: Encryption: All data is encrypted in transit via HTTPS (SSL/TLS). Database Security: Access controls are strictly limited to authorized administrative personnel. Vulnerability Monitoring: Regular checks of our Django backend to prevent common exploits. 7. Data Retention Active Accounts: We retain your account information as long as your account is active. Logs: Technical logs are periodically purged or anonymized. Request for Deletion: You may request the deletion of your account and associated data by contacting us. 8. Third-Party Services We rely on the following primary providers: Payment Gateway: Razorpay (India). Hosting/Infrastructure: To provide the web server and database. AI Providers: To power clinical assistant features. These providers maintain their own privacy policies which govern their data handling. 9. Your Rights (DPDP Act 2023 - India) In accordance with applicable laws in India, you have the right to: Access & Correction: Request a summary of the personal data we hold about you. Withdrawal of Consent: Withdraw consent for data processing at any time (which may limit your access to the Service). Grievance Redressal: Contact our Grievance Officer regarding any privacy concerns. Nomination: The right to nominate an individual to exercise your rights in the event of death or incapacity. 10. Cookies We use essential cookies to maintain your login session and remember user preferences. You may disable cookies in your browser, but some parts of the Service (like the Member Dashboard) may cease to function. 11. Children’s Privacy This Service is a professional tool intended only for users aged 18 and above. We do not knowingly collect data from minors. 12. Changes to This Policy We reserve the right to update this policy to reflect changes in law or our service features. Continued use of the Service after an update constitutes acceptance of the new terms. 13. Contact Information For privacy inquiries or to exercise your data rights, please contact: Email: drmedicalcalculations@gmail.com Final Mandatory Notice Medxcalc.com and its developers are not responsible for the misuse of the Service involving the unauthorized entry of sensitive or identifiable patient data. The User assumes all liability for ensuring compliance with local medical privacy laws (e.g., DISHA in India).