Skip to content
RX INSIGHT

Privacy Policy

Last updated: March 30, 2026

1. Information We Collect

Account Information

When you create an account, we collect your email address and password (encrypted). We use Supabase for authentication, which stores your credentials securely.

Medication Data

When you save medications to your cabinet, we store the drug name and your personal notes. This is health-related information. We treat it with the highest level of care.

  • We store which medications you save, when you saved them, and any notes you add.
  • This data is used solely to provide you with safety alerts, weekly digests, and your personalized dashboard.
  • We do not sell, share, or provide your medication data to any third party.
  • We do not use your medication data for advertising or marketing purposes.

Payment Information

Payment processing is handled entirely by Stripe. We do not store your credit card number, CVV, or billing address on our servers. We store your Stripe customer ID to manage your subscription status.

Usage Data

We use Vercel Analytics to collect anonymous usage data (page views, performance metrics). This data does not identify individual users and does not include medication information.

2. How We Use Your Information

  • Recall Alerts: We check your saved medications against FDA recall data daily and send email alerts for new recalls.
  • Weekly Digests: We send weekly email summaries of safety data for your saved medications.
  • Dashboard: We display your saved medications with safety status information.
  • Account Management: We use your email for authentication, password resets, and subscription management.

3. Third-Party Services

We use the following third-party services to operate:

  • Supabase — Authentication and database hosting
  • Stripe — Payment processing
  • Resend — Email delivery (recall alerts and weekly digests)
  • Vercel — Application hosting and analytics
  • OpenAI — AI-generated summaries (drug names and aggregated safety data are sent to generate summaries; no personal information is included)

Each of these services has their own privacy policy. We do not send your email address, personal notes, or any identifying information to OpenAI. Only drug names and aggregated public safety data are used for AI summary generation.

4. Data Retention

  • Your saved medications are retained as long as your account is active.
  • You can delete individual medications from your cabinet at any time.
  • If you delete your account, all associated data (saved medications, notes, alert history) will be permanently deleted.
  • API response caches are temporary (1 hour to 7 days) and contain only public government data, not personal information.

5. Data Security

We use industry-standard security measures including encrypted connections (HTTPS), encrypted password storage, and secure authentication tokens. Your medication data is stored in a managed database with access controls. However, no system is 100% secure, and we cannot guarantee absolute security.

6. Your Rights

  • Access: You can view all data we store about you through your dashboard and cabinet.
  • Deletion: You can delete your saved medications at any time. Contact us to delete your entire account.
  • Opt-out: You can unsubscribe from email communications at any time.
  • Data Export: Contact us to request an export of your data.

7. Children

RX Insight is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us.

8. Changes to This Policy

We may update this Privacy Policy at any time. We will note the "Last updated" date at the top of this page. Continued use of the Service after changes constitutes acceptance.

9. Contact

For privacy questions or data requests, contact us at privacy@rxinsight.app.