Privacy Policy

Doctria ("we," "our," or "us") operates the Doctria mobile application and the doctria.io website. This Privacy Policy explains what information we collect, how we use it, and the choices you have. By using Doctria, you agree to the practices described here.

Account information. When you register, we collect your name, email address, medical specialty, and username.

Content you post. Clinical case descriptions and images you choose to share on the platform. You are solely responsible for ensuring this content contains no Protected Health Information (PHI) before posting.

Usage data. We collect standard log data including IP address, device type, operating system, pages visited, and timestamps to operate and improve the service.

Communications. If you contact us or join the waitlist, we retain those communications and your email address.

We use the information we collect to:

• Operate and maintain the Doctria platform
• Send you product updates, launch notifications, and service announcements
• Respond to your questions and support requests
• Monitor and improve the safety, security, and performance of the service
• Comply with applicable legal obligations

We do not sell your personal information to third parties.

Your data is stored using Supabase, a cloud database provider with infrastructure hosted on AWS. We implement industry-standard security measures including encryption in transit (TLS) and at rest. No method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.

The Doctria website uses essential cookies required for the site to function. We do not currently use advertising or tracking cookies. We may use anonymized analytics to understand aggregate usage patterns.

We use the following third-party services to operate Doctria:

• Supabase — database, authentication, and file storage
• Vercel — website hosting
• Resend — transactional email delivery
• Google / Apple — optional social sign-in

Each provider operates under its own privacy policy and data processing terms.

You may request access to, correction of, or deletion of your personal data at any time by contacting us at privacy@doctria.io. We will respond within 30 days. If you are located in the European Economic Area, you have additional rights under GDPR, including the right to data portability and the right to lodge a complaint with your local supervisory authority.

We retain your account information for as long as your account is active. If you delete your account, we will remove your personal data within 30 days, except where retention is required by law or legitimate business purposes.

Doctria is intended for licensed medical professionals and is not directed at individuals under the age of 18. We do not knowingly collect personal information from minors.

We may update this Privacy Policy from time to time. We will notify registered users of material changes via email or in-app notification. Continued use of Doctria after changes become effective constitutes acceptance of the revised policy.

Questions about this Privacy Policy? Reach us at privacy@doctria.io.