Privacy Policy

R-Chief ("we", "our", or "us") operates the R-Chief Research mobile application (the "App"). This Privacy Policy explains how we collect, use, and protect your information when you use our App.

1. Information We Collect

Account Information

When you register or log in, we collect your name, email address, username, and institutional affiliation through our secure authentication system (Keycloak). This information is necessary to create and manage your account.

Research Activity

We collect data related to your use of the platform, including research projects you create or join, comments, contributions, and collaboration activity.

Device Information

We may collect basic device identifiers and operating system information to maintain app functionality and diagnose technical issues.

2. How We Use Your Information

• To provide and operate the R-Chief Research platform
• To authenticate your identity and maintain account security
• To enable collaboration between researchers within your institution
• To display leaderboard rankings and contribution statistics
• To communicate important updates about your account or the platform
• To improve the App and diagnose technical issues

3. Data Sharing

We do not sell your personal data. We do not share your information with third parties for advertising purposes. Your data may be shared only in the following limited circumstances:

• Within your institution: Your name, username, and research activity are visible to other users within your institutional environment as part of the collaboration features.
• Service providers: We use trusted infrastructure providers (including AWS) to host and operate the platform. These providers process data only as necessary to deliver our services.
• Legal requirements: We may disclose information if required by law or to protect the rights and safety of our users.

4. Data Security

We take the security of your data seriously. Authentication tokens are stored using device-level secure storage (iOS Keychain / Android Keystore). Data in transit is encrypted using TLS. Our servers are hosted on AWS infrastructure with industry-standard security controls.

5. Data Retention

We retain your account information for as long as your account is active. If you request account deletion, we will remove your personal data within 30 days, except where retention is required by law.

6. Your Rights

Depending on your location, you may have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your account and associated data
• Object to or restrict certain processing of your data

To exercise these rights, contact us at privacy@rchief.com.

7. Children's Privacy

The App is intended for use by medical professionals and students in higher education. We do not knowingly collect data from children under the age of 13. If you believe we have inadvertently collected such information, please contact us immediately.

8. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting the new policy on this page and updating the "Last updated" date. Continued use of the App after changes constitutes acceptance of the updated policy.

9. Contact Us

If you have questions about this Privacy Policy, please contact us at: