Privacy policy

If you create an account, we store your email address, your saved trials, and any saved searches you've asked us to email you about. If you use our "describe your situation" feature, the text you type is sent to OpenAI's API to extract the condition, age, and location. We do not store the raw free-text unless you're signed in and explicitly save it as an alert.

Every search you run is logged to our own database so we can see what people are looking for and where they're searching from. Each log entry contains the condition, location, and age you entered; the mode (Help or Earn); the city and state derived from your IP address at the network edge; and, if you're signed in, your user ID. We use this to understand demand — e.g. "a lot of people in Philadelphia are searching for breast cancer trials" — and to prioritize which trial sites to partner with. Raw IP addresses are never stored; only the resulting city / region.

When you open a search page we try to pre-fill the "Near" field with a close city so you don't have to type your location. On production hosting, the city and state are computed at our CDN edge from your IP address — no browser permission prompt, no lat/lng, just a coarse city-level approximation. On other deployments, or when the edge header is missing, we fall back to a public IP-geolocation service (ipapi.co) which performs the same IP → city lookup. You can always clear or change the pre-filled value before searching.

We use PostHog to measure product analytics (which pages load, which buttons get clicked, what searches are submitted). PostHog is configured with session recording turned off and autocapture of sensitive inputs disabled. Traffic to PostHog is reverse-proxied through our own domain so the requests aren't singled out by ad blockers; you can still block them via your browser's privacy settings. The server-side search log described above is independent of PostHog and is visible only to our team through an authenticated admin page.

We don't sell your data. We don't run third-party advertising trackers. We don't share your saved searches or saved trials with sponsors or trial sites. We don't store precise location (lat/lng) or raw IP addresses.

Clerk handles authentication and stores your email on our behalf. Supabase hosts the database (including the search log). OpenAI processes the free-text you optionally submit. Resend sends the alert emails. PostHog receives product-analytics events. Vercel hosts the application and provides the edge geo headers. When platform geo headers are unavailable, ipapi.co performs the IP → city lookup. We have data-processing agreements with these providers where applicable.

You can delete your account and all associated data at any time from your profile page, or by emailing privacy@trialpath.app. If you live in a jurisdiction with formal privacy rights (GDPR, CCPA, etc.), those rights apply to the data we hold about you and we'll honor requests within 30 days. Search log entries tied to your user ID are deleted with your account; pre-signin (guest) entries are pseudonymous and retained only in aggregate.

Every trial listing on TrialPath comes directly from the public ClinicalTrials.gov API. We do not host, modify, or republish trial data; we fetch it on demand and cache it briefly. If a trial record changes on ClinicalTrials.gov, ours updates within an hour.

Questions? privacy@trialpath.app.