๐Ÿ”’ Privacy Policy

Last updated: 2026-02-07

Overview

MedLens is designed with privacy as its core principle. We do not collect, store, or share personal data. The tool operates anonymously by design.

Data Collection

  • No accounts: No email, username, password, or any form of registration is required.
  • No tracking: We do not use cookies, analytics, or fingerprinting technologies.
  • No IP logging: IP addresses are used only for rate-limiting during your session and are not persisted.
  • No personal data: We do not collect names, emails, phone numbers, or any identifying information.

Image Handling

  • EXIF stripping: All metadata (GPS location, device info, timestamps) is removed from uploaded images before processing.
  • In-memory processing: Images are processed entirely in server memory. They are never written to disk.
  • Immediate deletion: Images are deleted from memory immediately after analysis is complete.
  • No storage: Original images are never stored, cached, or backed up.
  • Camera capture: When using the camera feature, photos are captured client-side and transmitted directly for analysis. They are not stored on our servers.

Report Storage

  • Text-only reports: If you choose to save a report, only the text analysis is stored (never the image).
  • Random identifiers: Reports are stored with random UUIDs โ€” not linked to any user identity.
  • Automatic deletion: Reports are automatically deleted after 24 hours.
  • Manual deletion: You can delete your report immediately at any time using the "Delete Now" button.

AI Processing

  • Images may be sent to a third-party AI service (e.g., OpenAI) for analysis. This transmission uses encrypted HTTPS connections.
  • The AI service's own data policies apply to the processing of your image. We recommend reviewing their privacy policy.
  • We strip all metadata before sending images to minimize data exposure.

Content Policy

  • Adults only (18+): This tool is intended for adult use only.
  • CSAM prevention: Any content suspected to involve minors will be refused. The image will not be processed or stored. A minimal security event is logged without the image.
  • Medical context: Sensitive images including intimate areas are permitted only in a medical context for adults.

Security

  • Rate limiting is applied to prevent abuse.
  • File uploads are validated for type, size, and file signature.
  • MIME type and magic byte verification prevent file spoofing.
  • All data transmission uses HTTPS encryption.

Limitations

  • This tool is NOT a medical device.
  • It does NOT provide diagnoses or medical advice.
  • It should NOT be used for emergencies.
  • Always consult a qualified healthcare professional.
โ† Back to Home