Effective Date: April 21st, 2025
Last Updated: April 21st, 2025
At Neural Nanosphere, we are committed to protecting your privacy and the security of your data. This Privacy Policy explains how we collect, use, store, share, and protect your information when you use Neural Nanosphere (“we,” “our,” or “the Service”), our AI-powered research platform built for advanced biomedical and healthcare analysis.
This policy complies with both the General Data Protection Regulation (GDPR) in the European Union and the Health Insurance Portability and Accountability Act (HIPAA) in the United States. By using Neural Nanosphere, you agree to the practices outlined below.
This Privacy Policy applies to all users of the Neural Nanosphere platform, whether accessed through a web browser, API, or on-premise deployment. It covers any personal information, Protected Health Information (PHI), research content, or usage data that is collected or processed during your use of the platform.
It applies to both individual users and institutional customers such as hospitals, research centers, universities, and laboratories. This policy does not apply to third-party applications or external data sources that may integrate with our platform unless specifically stated.
Neural Nanosphere collects different types of information depending on how you interact with the platform and your deployment method (cloud or on-premise).
We collect personal and organizational information such as your name, title, institutional affiliation, email address, role, and contact details. We also log account-related activity including login timestamps, IP addresses, and user preferences.
When you use the platform, you may upload data including research papers, clinical datasets, EMRs, genomic files, experimental notes, or lab protocols. These may include personal data or PHI if you are using Neural Nanosphere in a healthcare or regulated setting.
We also store and process AI-generated research outputs, including task breakdowns, citations, and structured summaries. Additionally, we collect technical metadata such as browser type, device details, crash reports, and anonymized usage analytics to help improve platform functionality and performance.
We use your data to deliver, secure, and improve the platform. This includes processing research queries, managing your user account, storing your research history, customizing your experience, and providing customer support.
We also use your data to enforce platform security, detect anomalies, monitor performance, and protect against fraud or unauthorized access. In cases where you grant permission, we may use anonymized data to improve our AI models, develop new features, or generate institutional insights.
We may process data to comply with our legal obligations under healthcare and data protection laws, including HIPAA and GDPR.
If you are located in the European Union or European Economic Area, we process your personal data under the following legal bases:
For users in the United States operating in a healthcare context, Neural Nanosphere is fully HIPAA-compliant. We protect Protected Health Information (PHI) with strict technical, administrative, and physical safeguards.
All PHI is encrypted during transmission and at rest. Access is governed by role-based permissions, multi-factor authentication, and audit logs. We will enter into a Business Associate Agreement (BAA) with any covered entity or business associate that requires one under HIPAA.
We never use PHI for secondary purposes without your authorization, and PHI is never shared with third parties except under contract and legal obligation.
We do not sell or rent your data to anyone. We only share your data in the following cases:
We retain data only as long as necessary to fulfill the purposes for which it was collected, including providing services, meeting legal obligations, resolving disputes, and enforcing agreements.
Your user account data is retained while your account is active and for a limited period after closure to support recovery, legal requests, or administrative needs. Input data, research uploads, and generated outputs are stored for durations configured by your organization or until manually deleted.
You may request deletion of your personal data or uploaded content at any time by contacting us or using platform features, depending on your deployment configuration. We will comply with such requests unless we are required to retain the data under applicable law.
If you are a user in the European Union, you have the following rights under the GDPR:
If you are a user in the United States and your data includes PHI protected by HIPAA, you have the right to access your medical data, request corrections, receive an accounting of disclosures, and request restrictions on certain uses or disclosures.
To exercise your rights, contact us at support@neuralnanosphere.com. We may require verification of your identity before fulfilling sensitive requests.
We take robust security measures to protect your data from unauthorized access, alteration, disclosure, or destruction. These include:
Our systems are designed to meet or exceed industry best practices for cybersecurity, healthcare software, and research data protection.
If your data is transferred from the EU to the United States or another country outside the European Economic Area, we ensure that such transfers comply with GDPR requirements. We rely on legally approved mechanisms such as Standard Contractual Clauses and Data Processing Agreements to maintain appropriate safeguards.
We also offer EU-based data residency options and on-premise deployments for institutions with strict localization requirements.
Neural Nanosphere is not intended for individuals under 18 years of age. We do not knowingly collect personal data from minors. If we become aware that a minor’s data has been submitted, we will promptly delete it and take appropriate measures.
We may update this Privacy Policy to reflect changes in technology, law, or our platform’s functionality. When we make significant changes, we will notify you through the platform or via email. The updated policy will always include the “Last Updated” date at the top.
Your continued use of Neural Nanosphere after any update means you accept the new terms.
If you have questions about this Privacy Policy, your data rights, or our data protection practices, please contact us:
If you are located in the European Union and believe your rights have been violated, you have the right to lodge a complaint with your local Data Protection Authority.