The service may process account details, authentication metadata, prompts, responses, document library content, usage logs, and administrative audit information needed to operate the app.

The service is not designed for patient-identifiable health information and users must avoid submitting it.

Data may be used to authenticate users, deliver answers, retrieve library content, maintain security, investigate misuse, and improve service administration.

Authorized infrastructure and model providers may process data on the operator's behalf to deliver the service.

If you submit patient-identifiable or otherwise restricted personal data despite the rules, the operator may remove the content, restrict access, and take other protective action.

Users remain responsible for ensuring that anything they upload or type is lawful and appropriately de-identified before submission.

Account, chat, and document data may be retained for operational, security, and audit needs unless deleted under the service's retention settings or administrative process.

Access to stored data should be limited to authorized users and administrators with a legitimate operational need.

Questions about privacy, retention, or deletion should be directed to the service operator or your organization's administrator.

If the operator expands the app to handle regulated health data in the future, this notice should be replaced or updated before that use begins.