Table of Contents
MedSwipe ("we," "our," or "us") respects your privacy. This Privacy Policy explains what data we collect, how we use it, and the choices you have when using the MedSwipe mobile and web application (the "App").
Information We Collect
- Account Information: When you register with an email address, we collect your name (if provided) and email to create your account and authenticate you.
- Usage Information: Through Firebase analytics, we record the questions you answer, scores, CME credits earned, timestamps, device type, and IP address. This helps us improve content, generate CME certificates, and ensure platform integrity.
- Payment Information (Processed by Stripe): When you purchase a subscription or pay-per-credit package, your billing details and card data are submitted directly to Stripe. MedSwipe receives only non-sensitive data (e.g., Stripe customer ID, plan type, last four digits of the card) needed for receipts, subscription status, and fraud prevention. Stripe's separate Privacy Policy governs its handling of your payment data.
- Communications: If you email support, respond to surveys, or opt into marketing updates, we keep those messages so we can respond and improve our services. You may unsubscribe from non-transactional emails at any time.
How We Use Your Information
- Provide, maintain, and improve the App and its educational content
- Track CME progress and generate verifiable certificates
- Process payments and manage subscriptions via Stripe
- Detect and prevent fraud or misuse
- Send transactional emails (e.g., receipts, CME certificates) and, with your consent, occasional product updates or promotions
Sharing and Disclosure
- Service Providers: We share data only with trusted vendors essential to our operations—Firebase (hosting/analytics) and Stripe (payments). Each provider may process data solely to deliver its service.
- Legal & Safety: We may disclose information if required by law or to protect our rights, users, or the public.
- No Sales: We do not sell or rent your personal information.
Data Security
We use HTTPS/TLS encryption, restrict internal access on a need-to-know basis, and regularly review security controls. Full card numbers are never handled or stored by MedSwipe.
Your Rights
Depending on your jurisdiction (e.g., CCPA, GDPR), you may have rights to access, correct, delete, or port your data, and to object to certain processing. Email support@medswipeapp.com to make a request.
Data Retention
- Account & CME records: retained for the life of the account and up to 7 years after deletion (for accreditation audits).
- Payment metadata: retained for required tax/accounting periods (usually 7 years).
- Support emails: retained for up to 2 years.
International Transfers
If you access the App outside the United States, your information may be transferred to—and processed in—the U.S. We rely on appropriate safeguards such as Standard Contractual Clauses where required.
Changes to This Policy
We may revise this Policy from time to time. Material changes will be announced via email or in-App notice. Continued use after the effective date constitutes acceptance.
Contact
Questions about privacy? Email support@medswipeapp.com.