Doctor DeepDoctor Deep

Privacy Policy

Last updated: April 30, 2026

Doctor Deep is a Chrome extension that helps physicians analyse, in real time, the contents of a medical chart open in their Medical Information System (MIS), check it against international clinical standards, and produce a patient management plan. This Policy describes which data the extension and connected backend process, how we use them, and what rights you have.

1. What data we receive

  • MIS page contents. When the doctor explicitly triggers an analysis, the extension reads the medical chart text from the active browser tab (history, complaints, diagnoses, prescriptions, test results). The extension does not read pages in the background and does not transmit data without a user action.
  • Technical metadata. Request ID, timestamp, token/clinic identifier, request size and language, response code, processing duration, extension version.
  • Extension settings. Backend URL and access token that the doctor or clinic admin saves locally in chrome.storage.local.

The extension does not collect cookies, passwords, browsing history, payment-card data, and does not track tabs outside the analysis flow.

2. Where data is sent

Chart text is sent over HTTPS to our backend (doctordeep.lovable.app). The backend forwards the text to LLM provider Anthropic (Claude API) to generate the audit and management plan. Anthropic processes the data per its own policy and, under the API terms, does not use it for training models.

We do not share chart contents with any third parties other than the LLM provider above, and we do not sell data.

3. How long data is stored

  • Chart contents are not stored on our side after the response is returned. The text is processed in memory and discarded when the request completes.
  • Technical logs (request metadata without contents) are kept for up to 90 days and used for error diagnostics, billing and abuse protection.
  • Local extension settings live only in the doctor's browser and are removed when the extension is uninstalled.

4. Who has access

  • The doctor who initiated the analysis — sees the result in their browser.
  • The clinic owner / admin — has access to their clinic's accounts and technical logs (without chart contents).
  • A limited number of Doctor Deep engineers — for service operation and incident response, under NDA.
  • Anthropic (LLM provider) — only at the moment a request is processed.

5. Data deletion

Since we do not store chart contents, there is no need to delete individual medical records on our side. To delete a doctor's account, access tokens and related technical logs, contact your clinic owner/admin — they revoke the token and initiate account removal. If your clinic wants to fully delete the workspace and all logs, email ceo@pillovr.com.

6. Security

All requests between the extension, backend and LLM provider go over TLS. Backend access requires a token. We follow the principle of minimal storage: chart contents are not retained, and logs are de-identified and time-limited.

7. Policy changes

We may update this Policy. The last update date is shown at the top of the page. We will notify clinic owner accounts by email about material changes.

8. Contact

For any questions about data, privacy and deletion: ceo@pillovr.com.