Privacy Policy

1. Scope

This Privacy Policy explains how Diagnosaur collects, uses, stores, and protects information when you use the Platform.

2. Data We Collect

• Account data: name, email, phone, authentication data.
• Usage data: interactions, feature usage, session metadata.
• Clinical query data: prompts and generated responses.
• Security logs: diagnostic and access records.

3. How We Use Data

• Provide and improve Platform functionality.
• Maintain security and prevent misuse.
• Comply with legal obligations.
• Improve model quality using anonymized/aggregated data where applicable.

4. Lawful Processing and Controls

Diagnosaur processes data for legitimate business operations, contractual delivery, security, and compliance. Where required, consent and data rights mechanisms are provided.

5. Data Sharing

Diagnosaur may share data with vetted service providers and infrastructure partners under contractual safeguards. We do not sell personal data.

6. Data Retention

Data is retained only as long as needed for operations, security, product improvement, and legal obligations.

7. Security Measures

We apply technical and organizational controls including encryption where applicable, access control, monitoring, and incident response procedures.

8. User Rights

Users may request account data access, correction, or deletion subject to legal and operational limits.

9. International Compliance Principles

Diagnosaur is based in India and aims to align with global privacy principles including GDPR-style concepts where applicable.

10. Contact

Privacy and legal queries: legal@diagnosaur.com