Privacy Policy

Last updated: April 2026

1. Introduction

ToxiClear AI (“we”, “us”, or “our”) is committed to protecting your privacy. This Privacy Policy explains what information we collect, how we use it, and your rights regarding your data. By creating an account or using ToxiClear AI, you agree to the practices described in this policy.

2. Information We Collect

When you create an account, we collect:

First and last name
Email address
Phone number (optional)
Password (stored securely — we never see your plain-text password)

When you use the app, we may collect:

Drug interaction queries you submit (not linked to your identity on the free tier)
Health profile information you voluntarily provide in Premium (conditions, medications, allergies, age) — this is used only to personalize your interaction analysis and is never sold or shared
Usage data such as which features you use and how often (via PostHog analytics, anonymized)

3. How We Use Your Information

We use the information we collect to:

Provide and improve the ToxiClear AI service
Personalize your interaction analyses when health profile data is provided
Send account-related emails (verification, password reset)
Contact you about important updates to the service
Comply with legal obligations

We do NOT:

Sell your personal information to any third party
Share your health profile data with advertisers
Use your drug queries to build advertising profiles
Store interaction queries linked to your identity without your knowledge

4. Data Storage and Security

Your account data is stored securely using Supabase, a trusted database platform with industry-standard encryption. Health profile information is encrypted at rest. We use HTTPS for all data transmission. While we take security seriously, no system is 100% secure — please use a strong, unique password.

Sensitive health profile information including medical conditions, medications, and allergies is encrypted before storage using AES encryption. This information is only readable by you when logged into your account.

5. Third-Party Services

ToxiClear AI uses the following third-party services to operate:

Supabase — database and authentication
Groq AI — AI language model for generating interaction explanations
OpenFDA — public FDA drug database (no personal data sent)
DailyMed — FDA's structured drug label database (no personal data sent)
NIH RxNorm — public drug naming database (no personal data sent)
PharmGKB/ClinPGx — Stanford's pharmacogenomics database (no personal data sent)
Stripe — payment processing for Premium (we never see or store your full card details)
PostHog — anonymized usage analytics

Each of these services has its own privacy policy governing their data practices.

6. Health Information Disclaimer

ToxiClear AI is an educational tool, not a medical service. Any health information you provide in your profile is used solely to personalize educational content. It is not reviewed by medical professionals, not stored in any medical record system, and not subject to HIPAA. Do not rely on ToxiClear AI for medical decisions. Always consult a qualified healthcare professional.

7. Your Rights

You have the right to:

Access the personal data we hold about you
Correct inaccurate information
Delete your account and all associated data at any time
Opt out of non-essential communications

To exercise any of these rights, contact us at: toxiclearai@gmail.com

8. Children's Privacy

ToxiClear AI is not intended for children under 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal information, please contact us immediately at toxiclearai@gmail.com.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify registered users of significant changes via email. Continued use of the service after changes constitutes acceptance of the updated policy.

10. Contact

If you have any questions about this Privacy Policy, contact us at: toxiclearai@gmail.com