ClinBox

Privacy Policy

How ClinBox handles your data and privacy
Dec 4, 2025

Introduction

ClinBox is a case‑centric workspace for long‑term conditions. It helps you centralize medical information, chat with AI using full case context, and generate doctor‑ready Visit Briefs, Timelines and Key Dates. This policy explains what we process, how we protect it, and the choices you have.

What Data We Process

  • Account information you provide (e.g., email).
  • Basic usage analytics for reliability and abuse prevention.
  • Case content you add as “Sources” (visit notes, lab results, symptoms, medications). Our MVP is text‑first.

Important: ClinBox is designed for de‑identified medical text. Please do not upload personal identity information (e.g., full name, phone number, ID numbers, address, insurance IDs, face photos).

How We Use Data

  • Provide features such as context‑aware chat, Visit Brief, Timeline and Key Dates.
  • Run daily medical‑model benchmarks and auto‑route the best model for your chats.
  • Maintain security, reliability and improve product quality.

Security

We use industry‑standard safeguards:

  • TLS 1.3 for data in transit
  • AES‑256 encryption for data at rest
  • bcrypt for password hashing

Security on the internet is never absolute; we will keep improving but cannot guarantee 100% risk elimination.

What You Should Not Upload

  • Do not upload personally identifiable information (PII) or protected health information (PHI) that can directly identify you.
  • If you upload files containing identity information, you are solely responsible for that decision and any resulting risk. We will make commercially reasonable efforts to protect data but cannot guarantee zero risk.

If you believe an accidental upload occurred and want help or a refund, contact us at info@clinbox.org.

Data Retention & Deletion

  • You can delete your content from within the product. Routine backups may retain data for a limited period before rolling out.
  • Minimal operational logs may be kept for fraud prevention.

Third‑Party Processors

We rely on infrastructure and service providers (e.g., hosting, storage, analytics, and AI model APIs) to operate features. These processors act under contracts and may use data only as needed to provide services to ClinBox.

Children

ClinBox is intended for adults. If you are under the age of majority in your jurisdiction, use ClinBox only with the involvement of a parent or guardian.

Changes to This Policy

We may update this policy. Material changes will be posted here with an updated “effective date”.

Contact

For privacy questions, data deletion, or refunds, contact: info@clinbox.org

By using ClinBox, you consent to this privacy policy and agree to its terms.