Privacy Policy

Privacy Policy

DoctChat is committed to maintaining the privacy, confidentiality, and security of users’ personal information. This Privacy Policy explains in detail how we collect, use, process, and protect information when users interact with our services, including MD Chat, Nutrition Coach, and other related tools on our website https://doctchat.xyz. It also describes your rights regarding your personal information and the measures we take to safeguard it.

Information We Collect

DoctChat collects several types of information to provide an optimized experience, facilitate communication, and ensure compliance with applicable laws. The categories of information collected include:

Personal Identifiers

These may include your name, email address, phone number, and any other identifiers you provide while using our services. For example, if you create an account, subscribe to updates, or contact our support via Contact Us, we will collect this data.

Health and Lifestyle Information

As a platform focused on health and life guidance, we may collect data you voluntarily provide through our AI chat interface, including:

  • Medical symptoms and history shared during consultations with MD Chat
  • Nutrition preferences or dietary information through our Nutrition Coach
  • Wellness and lifestyle choices, such as sleep patterns, fitness routines, and mental health concerns

This information is crucial to provide personalized recommendations and insights. We do not store sensitive data without user consent and ensure all data is protected according to industry standards.

Technical and Usage Data

We automatically collect technical information about your device and how you interact with DoctChat, including:

  • IP address, browser type, operating system, and device identifiers
  • Pages visited and time spent on our website or chatbot
  • Clicks, navigation paths, and other interaction metrics

This data allows us to enhance user experience, identify trends, and maintain the performance and security of our services.

Cookies and Tracking

DoctChat uses cookies and similar technologies to facilitate navigation, remember preferences, and measure engagement. Cookies may include:

  • Session cookies that expire after each visit
  • Persistent cookies for storing preferences and login sessions
  • Third-party tracking for analytics, marketing, and service improvement

You may manage cookie preferences through your browser or device settings. More information about our use of cookies is available in our Cookie Policy.

Third-Party Information

We may receive information from trusted third parties, such as analytics providers, healthcare organizations, and partners. These third-party sources help us improve accuracy, deliver better services, and ensure compliance with regulations.

How We Use Your Information

Your personal and health information is used only for legitimate purposes, including:

Service Delivery

We use collected information to provide personalized health guidance, AI-driven nutrition advice, mental wellness tips, and other AI-assisted recommendations. Interaction with MD Chat enables users to receive real-time suggestions, reminders, and resources aligned with their needs.

Communication and Notifications

DoctChat may use your contact information to:

  • Respond to inquiries submitted through Contact Us
  • Provide updates about new features, services, or content
  • Notify users of important privacy or security updates

Research and Analytics

We analyze aggregated and anonymized user data to improve service quality, identify trends, and understand the needs of our users. Insights derived from usage data help optimize the AI experience, refine content, and maintain service reliability.

Legal and Compliance

We may use personal information to comply with applicable laws, respond to lawful requests, enforce our Terms and Conditions (https://doctchat.xyz/terms-and-conditions), and protect the rights, property, and safety of our users.

Legal Bases for Processing (GDPR and International Users)

For users located in the European Union or other jurisdictions with privacy laws, DoctChat relies on the following legal bases for processing personal data:

  • Consent: Information provided voluntarily through chat interactions or form submissions
  • Performance of a Contract: To deliver requested services, such as nutrition guidance or health advice
  • Legal Obligation: Compliance with applicable laws, regulations, or court orders
  • Legitimate Interests: Improving services, preventing fraud, and enhancing user experience

For more information on your rights under GDPR, please visit our GDPR Compliance page.

Data Sharing and Disclosure

DoctChat respects the confidentiality of your information and does not sell, rent, or trade your personal data. However, we may share data under the following circumstances:

Service Providers

We may share personal information with trusted third-party providers who assist in hosting, analytics, AI services, and communication. These providers are contractually obligated to maintain confidentiality and comply with relevant data protection laws.

Legal Requirements

Information may be disclosed when required by law, regulation, or legal process. This includes compliance with subpoenas, court orders, or investigations by government authorities.

Business Transfers

In the event of a merger, acquisition, or sale of assets, your personal information may be transferred as part of the transaction. We ensure continued protection under this Privacy Policy.

Aggregated and Anonymized Data

We may share anonymized or aggregated data for research, analysis, or public health purposes. This data cannot be traced back to individual users.

Your Rights as a User

DoctChat is committed to transparency and empowering users to control their personal data. Depending on your jurisdiction, you may exercise the following rights:

Access to Personal Data

You have the right to request access to the personal data we collect and store about you. Requests can include information collected through MD Chat, Nutrition Coach, or other service interactions. To submit an access request, contact us via Contact Us.

Correction and Rectification

Users may request corrections or updates to inaccurate or incomplete information. This ensures the AI-driven advice and recommendations remain accurate and relevant. Corrections can be requested for:

  • Personal identifiers such as name, email, or contact details
  • Health or lifestyle information provided to AI chat
  • Account or subscription preferences

Deletion of Personal Data

Users may request deletion of their personal information under certain circumstances, such as:

  • Withdrawal of consent
  • Termination of account
  • No longer needing the services provided by DoctChat

Deletion requests will be handled in accordance with applicable laws, while recognizing our obligations to retain data for legal compliance, fraud prevention, or contractual requirements.

Objection and Restriction of Processing

You have the right to object to the processing of your personal data for marketing purposes or other non-essential uses. Additionally, you may request restrictions on specific processing activities, such as profiling or analytics.

Data Portability

Where applicable, users can request their personal data in a structured, machine-readable format. This ensures that users can transfer information to other platforms or services without losing continuity in their health or lifestyle tracking.

For assistance in exercising these rights, please contact us at doctchat@gmail.com.

Data Retention

DoctChat retains user data only as long as necessary to fulfill the purposes outlined in this Privacy Policy. Retention periods vary based on:

  • Service provision requirements
  • Legal or regulatory obligations
  • Fraud detection and security purposes

After these purposes are fulfilled, personal data is securely deleted or anonymized. For example, historical AI chat sessions may be stored in encrypted archives for research purposes or to improve AI algorithms, but all personal identifiers are removed to protect user privacy.

Security Measures

Protecting your information is a top priority. DoctChat implements administrative, technical, and physical safeguards to secure data, including:

  • Encryption: Personal and health data transmitted through our platform is encrypted using industry-standard protocols such as TLS/SSL.
  • Access Controls: Only authorized personnel with strict confidentiality obligations can access sensitive data.
  • Monitoring: Continuous monitoring for suspicious activity and vulnerabilities.
  • Data Minimization: Collecting only necessary information to reduce risk exposure.

While we employ robust security measures, no online platform is completely immune to breaches. Users are encouraged to maintain strong passwords and secure their devices.

Children’s Privacy

DoctChat is not intended for individuals under the age of 13. We do not knowingly collect personal information from children. If a parent or guardian believes that their child has provided personal information to us without consent, they should contact doctchat@gmail.com to request deletion.

External guidelines for children’s privacy include resources from U.S. COPPA regulations and similar international standards.

AI and Health Data Considerations

Given that DoctChat relies on AI for health and lifestyle guidance, users should be aware of the following:

  • AI responses are generated based on algorithms and verified data, but they do not constitute a medical diagnosis.
  • DoctChat’s AI uses anonymized, aggregated data to improve recommendation accuracy while preserving user confidentiality.
  • Any information you provide may be used to enhance AI capabilities, optimize nutrition and wellness advice, and train AI models.

For additional context on AI data protection, you may refer to European Commission AI Guidelines.

International Data Transfers

DoctChat services are available globally. If you access our platform outside of the United States, your personal data may be transferred and processed in the United States or other countries where DoctChat operates. All transfers are conducted in compliance with applicable privacy laws, including GDPR.

You can learn more about your rights regarding international transfers at EU GDPR portal.

Third-Party Services and Links

Our platform may interact with third-party services, including analytics providers, AI infrastructure, and marketing partners. Examples include:

DoctChat does not control the data collection or privacy policies of third parties. Users are encouraged to review third-party privacy policies before providing personal information.

Legal Compliance

DoctChat complies with major privacy regulations, including:

  • GDPR: General Data Protection Regulation for EU users
  • CCPA: California Consumer Privacy Act for California residents
  • HIPAA Considerations: While DoctChat is an AI health advice platform, it takes HIPAA compliance seriously when handling sensitive health information

Further legal documents can be accessed via:

Updates to Privacy Policy

DoctChat may periodically update this Privacy Policy to reflect changes in regulations, technology, or business practices. Users are encouraged to check https://doctchat.xyz/privacy-policy for the latest updates. Significant changes will be communicated via email or platform notifications.

  • Extended GDPR and CCPA rights in detail
  • Detailed AI data processing and training practices
  • Comprehensive cookie and tracking policies
  • Third-party disclosures and partnerships
  • Retention schedules, deletion processes, and archival practices

Detailed GDPR and CCPA Rights

DoctChat fully respects your privacy rights under GDPR and CCPA, ensuring transparency, access, and control over your personal information. These laws empower users to manage how their data is collected, processed, and shared.

Rights Under GDPR

For users in the European Union, GDPR provides the following rights:

  • Right to Access: Users can request a copy of the personal data we hold. This includes information collected via MD Chat, Nutrition Coach, or blog interactions (https://doctchat.xyz/blog).
  • Right to Rectification: Users can correct inaccurate or incomplete data. For example, if your dietary or health details shared via the AI assistant are incorrect, you can request updates.
  • Right to Erasure: Users can request deletion of their personal information, subject to certain legal obligations. Requests may be made by contacting doctchat@gmail.com.
  • Right to Restrict Processing: Users may request that certain data processing activities be limited. This includes AI model training, analytics, or marketing communication.
  • Right to Data Portability: Users can obtain their data in a structured, commonly used, and machine-readable format. This ensures continuity if switching to another health service.
  • Right to Object: Users can object to processing for direct marketing purposes or profiling.

Rights Under CCPA

For California residents, the CCPA provides rights similar to GDPR:

  • Right to Know: Users may request information about the categories of personal data collected and how it is used or shared.
  • Right to Delete: California residents may request deletion of their personal data, except where retention is required for legal compliance or contractual obligations.
  • Right to Opt-Out of Sale: DoctChat does not sell personal information; however, we provide transparency about potential third-party sharing.
  • Right to Non-Discrimination: Exercising privacy rights will not result in service denial or reduced access.

For more details, visit GDPR Compliance. External resources include the EU GDPR portal and California Attorney General’s CCPA guide.

AI Data Processing Practices

DoctChat employs AI technologies to provide health and lifestyle guidance. Users should understand the nature of AI processing:

AI Model Training

  • AI models are trained using anonymized and aggregated user interactions, ensuring that no personally identifiable information is used without consent.
  • Data collected via MD Chat may be used to enhance response accuracy, generate insights, and optimize the user experience.

AI Recommendations

  • Recommendations generated by AI are based on general medical knowledge, wellness research, and nutritional guidance.
  • While the AI aims to provide accurate advice, it does not replace professional medical consultation. Always refer to medical guidelines or consult your healthcare provider.

Transparency and Explainability

  • DoctChat prioritizes explainable AI, meaning users are informed how recommendations are generated.
  • Users can inquire about the AI logic via Contact Us.

Third-Party AI Providers

  • AI infrastructure may involve third-party providers. All partners are bound by confidentiality agreements and comply with relevant privacy laws.
  • For AI infrastructure policies, refer to OpenAI privacy practices.

Cookies and Tracking Policies

Cookies and tracking technologies are integral to enhancing user experience.

Types of Cookies

  • Essential Cookies: Required for the functionality of chat services, account access, and secure login sessions.
  • Performance Cookies: Track usage patterns to optimize platform performance.
  • Functional Cookies: Remember user preferences, such as chat themes or notification settings.
  • Advertising Cookies: DoctChat may work with approved third-party ad providers to display non-personally identifiable content based on general interests.

Managing Cookies

Users can manage or disable cookies via browser settings. Additional guidance is available on our Cookie Policy. For general online privacy resources, see European Commission on Cookies.

Data Retention and Deletion Policies

DoctChat retains personal data for periods necessary to deliver services or comply with legal obligations.

Retention Schedule

  • Account Information: Retained until account closure or deletion request.
  • AI Chat Sessions: Retained in encrypted archives for up to 24 months for service optimization.
  • Marketing Data: Retained until unsubscribed or for statutory limits.

Deletion Process

  • Users can request deletion via Contact Us or email (doctchat@gmail.com).
  • Upon deletion, data is removed from active systems and anonymized backups unless legally required for retention.

Third-Party Disclosures

DoctChat integrates with third-party services to improve health guidance:

  • Analytics Providers: For usage metrics, performance insights, and reporting.
  • Healthcare Resources: Trusted external platforms like HealthIllusion provide educational references.
  • Payment Processors: For premium services, transactions are handled by compliant providers without storing financial data on our servers.

DoctChat is not responsible for third-party privacy practices. Users should review external policies before sharing information.

Security Measures

Protecting personal and health data is paramount:

  • Encryption: TLS/SSL encryption for all data transmission.
  • Access Control: Strict permissions for staff accessing personal data.
  • Monitoring: Continuous threat detection and response protocols.
  • Physical Security: Secured servers and restricted access facilities.

While all measures are implemented, no system is completely secure. Users are encouraged to use strong passwords and maintain device security.

Children’s Privacy

DoctChat services are not intended for children under 13.

  • Parents or guardians can request deletion of any data inadvertently collected.
  • Compliance is maintained with COPPA regulations (FTC COPPA Rule).

International Users

DoctChat operates globally. By using our services, users consent to international data transfers.

  • Data may be stored and processed in countries with different privacy laws, including the United States.
  • Transfers comply with GDPR, CCPA, and other applicable regulations.
  • Users may request information about the legal basis of transfers at GDPR Compliance.

Legal Disclaimers

  • AI advice is not a substitute for professional medical consultation.
  • Users should consult licensed healthcare professionals for diagnosis, treatment, or emergency guidance.
  • Visit DoctChat Medical Guidelines for evidence-based practices.
  • External reference: HealthIllusion Guidelines

Updates to Privacy Policy

DoctChat may update this Privacy Policy to reflect regulatory changes, technology updates, or business practices.

  • Updates will be published on Privacy Policy.
  • Significant changes may be communicated via email or platform notifications.

Effective Date: October 14, 2025
Last Updated: October 14, 2025