Skip to main content

Privacy Policy

Last updated: 2026-04-29

What we collect on this website

When you use the contact form we collect your name, email address, optional subject, and message. We also log your IP address and user-agent string for abuse prevention. Standard web-server logs (request path, timestamp, response code) are retained for operational purposes.

We do not use advertising trackers or sell your data.

Retention

Contact-form submissions are automatically deleted after 18 months unless they are part of an active ongoing conversation. This is enforced by a nightly automated process. Web-server logs are rotated on a shorter cycle determined by our infrastructure provider.

Legal basis (GDPR)

  • Legitimate interest — processing contact-form submissions to respond to your enquiry and to prevent abuse.
  • Consent — for any optional cookies or tracking features we may add in future (none are active at launch).

Your rights (GDPR & CCPA)

You have the right to:

  • Access the personal data we hold about you.
  • Request correction of inaccurate data.
  • Request erasure of your data (“right to be forgotten”).
  • Receive your data in a portable format.
  • Object to or restrict processing.
  • Withdraw consent at any time (where processing is based on consent).

To exercise any of these rights, email contact@dioscorium.ai. We will respond within 30 days.

Clinical data

Patient and clinical data is not handled through this website. Clinical AI services process data exclusively under separate, institution-specific Data Processing Agreements (DPAs) with our hospital and research partners. Those engagements are governed by HIPAA, GDPR, and applicable national law as appropriate.

Third-party services

  • Cloudflare Turnstile — CAPTCHA-style bot protection on the contact form. Cloudflare processes the challenge response; Cloudflare Privacy Policy.
  • Resend — transactional email delivery for contact-form notifications. Resend receives the sender email and message content; Resend Privacy Policy.

Cookies

At launch this site uses strictly necessary cookies only — session management and CSRF protection. No analytics, advertising, or tracking cookies are set. If we introduce optional cookies in future, we will update this policy and implement a consent mechanism.

Changes to this policy

We may update this policy as our services evolve. Material changes will be announced on this page with an updated “Last updated” date. Continued use of this website after changes are posted constitutes acceptance of the revised policy.

Contact

For privacy enquiries: contact@dioscorium.ai

Mailing address: [Dioscorium AI — address to be confirmed]