Skip to main content

Privacy Policy

Last updated: April 5, 2026

1. Overview

TransparentMedz (“we”, “our”, “us”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our medicine price comparison platform. We comply with the Personal Information Protection and Electronic Documents Act (PIPEDA) in Canada, applicable US state privacy laws, and India's Digital Personal Data Protection Act (DPDP).

2. Information We Collect

Account Information

When you create an account: email address, name, country, city, and optionally a phone number for SMS alerts.

Usage Data

Search queries, pages visited, features used, and interaction patterns. We use this to improve the Service and personalize your experience.

User-Submitted Data

Drug prices, pharmacy reviews, and receipt photos you voluntarily submit. Receipt photos are processed for price extraction and are not stored permanently.

Payment Information

Premium subscription payments are processed by Stripe. We do not store your credit card details. Stripe's privacy policy applies to payment processing.

3. What We Do NOT Collect

We do not collect: prescription details, health conditions, medical history, insurance policy numbers, or any Protected Health Information (PHI). TransparentMedz is a price comparison tool, not a healthcare provider. We show prices, not prescriptions.

4. How We Use Your Information

  • Provide and maintain the Service
  • Send price alert notifications (email and SMS)
  • Process premium subscription payments
  • Improve search accuracy and drug recommendations
  • Detect and prevent fraud and abuse
  • Comply with legal obligations

5. Data Security

We use industry-standard security measures including: 256-bit TLS encryption for all data in transit, encrypted database storage via Supabase (AES-256), secure authentication with bcrypt password hashing, and role-based access controls. Receipt photos are processed in memory and not stored after extraction.

6. Third-Party Services

  • Supabase — Database hosting and authentication
  • Stripe — Payment processing (PCI Level 1 compliant)
  • Anthropic (Claude) — AI pharmacy assistant responses
  • Twilio — SMS alert delivery
  • Resend — Email delivery
  • Vercel — Application hosting
  • Sentry — Error monitoring (no personal data sent)

7. Cookies

We use essential cookies for: authentication sessions, country/language preferences, and theme selection. We use analytics cookies (Plausible Analytics, which is privacy-focused and does not use personal data) to understand usage patterns. You may control cookie preferences through our cookie consent banner.

8. Your Rights

Depending on your jurisdiction, you may have the right to: access your personal data, correct inaccurate data, delete your account and associated data, export your data in a portable format, withdraw consent for optional data processing, and file a complaint with your local data protection authority. To exercise these rights, contact privacy@transparentmedz.com.

9. Data Retention

Account data is retained for as long as your account is active. Price submissions are retained indefinitely as part of the public database. If you delete your account, your personal information will be removed within 30 days, but anonymized price data may be retained. Analytics data is aggregated and does not contain personal identifiers.

10. Contact

For privacy inquiries: privacy@transparentmedz.com
Data Protection Officer: dpo@transparentmedz.com