Privacy Policy

1. Introduction

Center Your Patient, LLC (“Center Your Patient,” “we,” “us,” or “our”) is a limited liability company established in Philadelphia, Pennsylvania. We operate Center Your Patient, a clinical reference tool delivered as a Chrome extension for licensed healthcare providers.

This Privacy Policy describes how we collect, use, share, and protect your personal information when you use our website, Chrome extension, and related services (collectively, the “Service”). By using the Service, you agree to the practices described in this policy.

2. Information We Collect

Account Information

When you create an account, we collect:

• Email address
• Full name
• Country of residence
• States in which you are licensed to practice
• Provider type (e.g., physician, nurse practitioner, etc.)

Usage Data

We collect information about how you interact with the Service, including subscription status and general feature usage analytics. This data helps us improve the product and is not linked to any patient information.

Payment Information

Payments are processed by Stripe, Inc. We do not store your credit card number, CVV, or full payment card details on our servers. Stripe may share with us limited information such as the last four digits of your card, card type, and billing address for record-keeping and support purposes. Please refer to Stripe's Privacy Policy for details on how they handle your payment data.

3. How We Use Your Information

We use the information we collect to:

• Provide, operate, and maintain the Service
• Process subscription payments and manage billing
• Communicate with you about product updates, support inquiries, and account-related matters
• Analyze usage patterns to improve features and user experience
• Comply with legal obligations and enforce our Terms of Service

4. Information Sharing

We do not sell, rent, or trade your personal information to third parties. We do not share your data with advertisers.

We share limited information with the following service providers, solely to operate the Service:

• Stripe — payment processing and subscription management
• Supabase — authentication and database hosting
• Google — OAuth authentication (only if you choose to sign in with Google)

We may also disclose information if required by law, regulation, legal process, or governmental request, or to protect the rights, property, or safety of Center Your Patient, our users, or the public.

5. Data Security

We take the security of your information seriously. Measures we employ include:

• Encryption in transit using TLS (Transport Layer Security) for all data transmitted between your browser and our servers
• Encryption at rest for stored data
• Use of SOC 2 certified infrastructure providers (Supabase, Stripe)
• Access controls limiting employee and contractor access to personal data on a need-to-know basis

No method of transmission over the Internet or electronic storage is completely secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee absolute security.

6. Data Retention

We retain your personal information for as long as your account is active or as needed to provide you the Service. If you wish to delete your account and associated data, you may contact us at centeryourpatient@gmail.com, and we will process your request in accordance with applicable law, including the GDPR right to erasure.

We may retain certain information as required by law or for legitimate business purposes, such as fraud prevention or financial record-keeping.

7. Your Rights

Depending on your jurisdiction, you may have the right to:

• Access the personal information we hold about you
• Correct inaccurate or incomplete information
• Delete your personal information (right to erasure)
• Object to or restrict certain processing of your data
• Data portability — receive your data in a structured, machine-readable format

To exercise any of these rights, please contact us at centeryourpatient@gmail.com. We will respond within 30 days.

8. Cookies

We use minimal, session-based cookies solely for authentication purposes. These cookies are necessary to keep you signed in and to maintain your session. We do not use advertising cookies, tracking pixels, or third-party analytics cookies.

9. Children's Privacy

Center Your Patient is intended for use by licensed healthcare providers and is not directed at individuals under the age of 18. We do not knowingly collect personal information from anyone under 18. If we learn that we have collected information from a person under 18, we will promptly delete it.

10. International Users

Our Service is operated from and data is stored in the United States. If you access the Service from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States, where data protection laws may differ from those in your country.

For users in the European Union or European Economic Area, we process your data in compliance with the General Data Protection Regulation (GDPR). The legal bases for our processing include your consent, the performance of our contract with you, and our legitimate business interests.

11. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable law. If we make material changes, we will notify you by email or by posting a prominent notice on our website prior to the change becoming effective. Your continued use of the Service after any changes constitutes acceptance of the updated policy.

12. Contact

If you have questions or concerns about this Privacy Policy or our data practices, please contact us: