MedTripsAI

Privacy Policy

Last Updated: November 16, 2025

This Privacy Policy explains how MedTripsAI ("we", "our", "us") collects, uses, stores, and shares your personal information.

By using MedTripsAI, you consent to this Privacy Policy.

1. Information We Collect

A. Information You Provide

  • Name
  • Email address (required for login)
  • Phone number
  • Date of birth
  • Medical history & preferences
  • Travel requirements
  • Communication with clinics
  • Clinic business documentation
  • Reviews & ratings
  • Onboarding details (patient/clinic)

B. Automatically Collected Data

  • IP address
  • Device and browser type
  • Language settings
  • Usage data and click behavior
  • Session logs
  • Cookies (auth, preferences, analytics)

C. Payment Information

Handled securely by Stripe, including:

  • Payment intent IDs
  • Transaction status
  • Refund activity

We do not store card numbers.

2. How We Use Your Information

We use your information to:

  • Create and manage accounts
  • Facilitate clinic bookings
  • Provide AI-generated recommendations
  • Manage payments and refunds
  • Improve and personalize the Platform
  • Support clinics in delivery of services
  • Send notifications and updates
  • Provide travel assistance
  • Ensure platform safety and compliance
  • Analyze usage for product development

3. Legal Basis (if applicable)

MedTripsAI processes data under:

  • Consent
  • Contractual necessity
  • Legitimate interest (security, fraud prevention)
  • Legal obligations

4. Sharing Your Information

We share data with:

Clinics

For bookings, clinics receive:

  • Your name
  • Contact info
  • Medical notes you provide
  • Booking details

Service Providers

Including:

  • Stripe (payments)
  • Resend (emails)
  • Hosting (e.g., Vercel)
  • Analytics tools

Legal Authorities

If required by law.

We never sell your personal information.

5. Cookies & Tracking

Cookies are used for:

  • Authentication
  • User preferences
  • Localization
  • Analytics
  • Dark/light mode settings

You can disable cookies, but some features may not work.

6. Data Security

We use:

  • Encrypted connections (HTTPS)
  • Role-based access control
  • Secure authentication
  • Email verification
  • Encrypted database fields
  • PCI-compliant payments via Stripe
  • Audit logs for admin actions

No system is completely secure; we cannot guarantee absolute protection.

7. International Data Transfers

Your data may be processed in countries where our servers or vendors operate. We use safeguards such as Standard Contractual Clauses when required.

8. Data Retention

We retain:

  • Account data: until deletion
  • Booking/payment data: as legally required
  • Clinic verification documents: for compliance
  • Logs: per security policies

9. Your Rights

Depending on your jurisdiction, you may have rights to:

  • Access your data
  • Correct inaccuracies
  • Delete your account
  • Request data export
  • Opt out of certain processing
  • Withdraw consent

Contact: [Insert Contact Email]

10. Children's Privacy

MedTripsAI is not intended for individuals under 18. We do not knowingly collect data from minors.

11. Account Deletion

You may request deletion anytime. Certain records must be retained for legal/payment compliance.

12. Updates to This Policy

We may update this Privacy Policy at any time. We will notify users of material changes.