Privacy Policy

Effective Date: January 12, 2026

1. Introduction

Welcome to ClinSim. We are committed to protecting your personal information. This Privacy Policy explains how we collect, use, and share your data when you use our mobile application ("App") and website.

Controller (Responsible Person):

Johannes Bauersachs
Lissi-Kaeser-Str. 6, 80797 München, Germany
Email: clinsim.service@gmail.com

2. Information We Collect

A. Account Data (Supabase)

When you register, we collect and store:

  • Email Address: To secure your account and allow login.
  • User ID: To track your learning progress.
  • Profile Data: Username, Streak, Rank, and XP (Gamification data).

B. Payment Information (Stripe)

We offer paid "Premium" subscriptions.

  • We do NOT store your credit card or bank details.
  • All payments are processed securely by our partner Stripe, Inc.
  • Stripe provides us with a status (e.g., "Payment Successful") which we link to your account to unlock features.

C. Clinical Simulation Data (AI)

Our App uses Google Gemini (AI) to simulate patient dialogues.

  • How it works: When you interact with a virtual patient, your text input is processed by Google Gemini to generate a medical response.
  • Privacy Guard: We do NOT send your personal identifiers (Email, Name) to the AI. Only the anonymized medical simulation context is processed.

3. How We Use Your Data

We use your data strictly to:

  1. Provide the simulation service and save your progress.
  2. Process your subscription via Stripe.
  3. Analyze anonymized gameplay data to improve the difficulty of clinical cases.

4. Data Sharing (Third Parties)

We share data only with the following necessary service providers:

  • Supabase: Backend & Database Hosting.
  • Stripe: Payment Processing.
  • Google (Vertex AI/Gemini): AI Text Generation.
  • Vercel: Website Hosting.

5. Data Retention & Deletion

  • Retention: We keep your data as long as your account is active.
  • Deletion: You can delete your account at any time within the App settings ("Delete Account"). This will permanently remove your email and personal data from our servers.

6. Your Rights (GDPR)

Under the GDPR, you have the right to access, correct, or delete your personal data. To exercise these rights, please contact us at clinsim.service@gmail.com.