Privacy Policy — ProstPlan AI

Version: 1.0.0 | Effective Date: March 2026 | Last Updated: March 3, 2026

1. Data Controller

ProstPlan AI is operated by [Entity Name / Developer], hereinafter "Controller". Controller / DPO contact: [insert email]

2. Data Collected

2.1 Data Categories

CategoryExamplesLegal Classification
Authentication DataEmail, name (via OAuth), provider IDPersonal data
Numeric Clinical DataPSA, Gleason, ISUP, prostate volume, PI-RADSHealth data (sensitive)
Medical Reports (PDF)Biopsy and MRI reportsHealth data (sensitive) + PHI
Usage DataAccess timestamps, actions performed, modules usedOperational metadata
Audit DataCalculation logs, physician changes, input hashesOperational metadata
Feedback DataError reports, problem type, descriptionPersonal data

2.2 Data NOT Collected

3. Processing Purpose

PurposeLegal Basis (GDPR)Legal Basis (LGPD)
Authentication and access controlArt. 6(1)(b) — contract performanceArt. 7, I — consent
PDF data extraction (via Gemini API)Art. 9(2)(a) — explicit consentArt. 11, I — specific consent
Clinical calculations (PRECE, PLND, etc.)Art. 9(2)(h) — preventive medicineArt. 11, II(f) — health protection
Audit and traceabilityArt. 6(1)(c) — legal obligationArt. 7, II — legal obligation compliance

4. Health Data Processing

Principles applied: Minimisation, Purpose limitation, Storage limitation (PDFs not persisted), Integrity and confidentiality (TLS 1.3, AES-256), Privacy by Design.

Explicit consent is obtained on first access to the Service and after each material update to the Privacy Policy.

5. Data Flow and Subprocessors

Subprocessors: Supabase (AWS) — authentication, Edge Functions; Google Cloud (Gemini API) — PDF extraction; Cloudflare — frontend hosting.

6. Data Retention

Data TypePeriod
Authentication dataWhile account is active
Report PDFsNo persistence — discarded after extraction
Audit logs5 years
Consent records5 years after relationship ends

7. Security Measures

Encryption in transit (HTTPS/TLS 1.3), encryption at rest (AES-256), OAuth 2.0 authentication, optional MFA, Row Level Security, rate limiting.

8. Data Subject Rights

Under GDPR and LGPD, the User has the right to: Access, Rectification, Erasure, Portability, Objection, Restriction, Consent withdrawal. To exercise your rights: contact the Controller. Response time: GDPR up to 30 days; LGPD up to 15 business days.

9. Cookies and Local Storage

The Service uses localStorage for clinical cases, language preference and version control. It does not use tracking, advertising or analytics cookies.

10. Policy Changes

Material changes will be communicated via in-app modal on next login. New consent will be requested if the change affects the legal basis or data categories processed.

11. Contact

To exercise your rights or for questions: Email: [insert DPO / controller email]. Form: Available in-app ("Report" button).

Version History

VersionDateChange
1.0.0March 2026Initial version

Back to ProstPlan AI