Account information: Email address and name provided when creating an administrator account.
Department information: Department name, slug, and configuration settings.
Protocol content: Protocol PDFs uploaded by administrators and the extracted text and drug information derived from them. Protocol content belongs to the uploading department.
Device identifiers: When a crew member opens the crew app, we generate and store a random device ID (stored in the browser's local storage). This ID, along with the browser user agent string and access timestamps, is stored to help departments manage crew access.
Device names: If a department enables device activation, crew members provide a device name (e.g., "M81Tablet"). This name is stored associated with the device ID.
Usage timestamps: First seen and last seen timestamps for each device accessing crew protocols.
Error reports: Protocol issue reports submitted by crew members through the "Report" button, including the section name and description of the issue.
Billing information: Payment is processed by Stripe. MedicDex does not store credit card numbers or full payment details.
What We Don't Collect
Patient health information (PHI). MedicDex is a protocol reference tool — no patient data is entered or stored.
Location data.
Call information or ePCR data (except what crew members voluntarily include in error reports).
Personal information from crew members beyond a device name if device activation is enabled by their department.
How We Use Your Information
To provide and operate the MedicDex service.
To allow department administrators to manage crew access and identify devices.
To process billing through Stripe.
To send transactional emails (parse complete notifications, welcome emails) via Resend.
To improve the service and diagnose technical issues.
Data Retention
Protocol content: Retained as long as the department account is active. Deleted upon account termination.
Device sessions: Retained for 2 years from last activity, then deleted.
Parse jobs: Retained for 90 days, then deleted.
Account information: Retained until account deletion is requested.
Data Sharing
We do not sell your data. We share data only with:
Supabase: Database and storage provider. Data is stored in US-based servers.
Anthropic: AI processing for protocol parsing. Page text from uploaded PDFs is sent to Anthropic's API for extraction. Anthropic's data usage policy applies.
Stripe: Payment processing.
Resend: Transactional email delivery.
Netlify: Hosting and serverless functions.
Security
MedicDex uses industry-standard security practices including encrypted data transmission (HTTPS), row-level security in the database, and hashed access codes. Administrator sessions expire after 8 hours of inactivity.
Your Rights
Department administrators may request deletion of their department's data by contacting support@medicdex.com. Data deletion requests are processed within 30 days.