Privacy Policy

Last updated: 2 March 2026

Data We Collect

  • Email address — used for authentication (magic-link sign-in) and service notifications (e.g. rate limit warnings).
  • API usage logs — endpoint, HTTP method, status code, query parameters, organisation name, and timestamp. Logged per API request for usage tracking and rate limiting.
  • Cookies — we use two functional cookies: an authentication cookie (meducateapi_auth) and a theme preference cookie. Neither is used for tracking or advertising.

What We Do Not Collect

  • We do not collect IP addresses.
  • We do not use analytics, tracking pixels, or advertising cookies.
  • We do not collect passwords — authentication is passwordless via email links.

Purpose

Data is collected solely to operate the service: authenticate users, enforce rate limits, monitor API usage, and send transactional emails.

Data Retention

Your data is retained for as long as your account exists. When you delete your account, all associated data (usage logs, API keys, organisation) is permanently deleted.

Third Parties

  • Resend — email delivery service. Receives your email address to send authentication and notification emails.
  • OpenAI — used to process and structure medical topic data. No user personal data is sent to OpenAI.

Data Location

Data is stored in the United States via Railway (hosting) and Resend (email). By using the service, you consent to this transfer.

Your Rights

You have the right to:

  • Access your data via the dashboard.
  • Delete your account and all associated data from the dashboard settings.
  • Data portability — contact us to request an export of your data.

Contact

For privacy-related requests, email will@meducateapi.com.

An unhandled error has occurred. Reload 🗙

Rejoining the server...

Rejoin failed... trying again in seconds.

Failed to rejoin.
Please retry or reload the page.

The session has been paused by the server.

Failed to resume the session.
Please reload the page.