1. Commitment to Privacy
ExSimu, a premium medical simulation subsidiary of RER MedApps, values the privacy of medical professionals and students. This protocol details our methodology for managing personal information with the highest level of clinical and digital integrity. By using our 15,000+ original question banks, you consent to the practices described herein.
2. Data Collection Architecture
We categorize the information we collect into three distinct tiers to ensure purpose-limited processing and maximum security.
2.1 Account Creation & Identity (Required)
To establish your professional account and grant access to our proprietary clinical assets, we require your full name and a valid professional email address. These identifiers are used solely for account management, security verification, and critical service communications.
2.2 Professional Context (Optional)
To enhance the relevance of our "Gap Analysis" engine, users may optionally provide their medical specialty, medical school, or current year of study. Providing this information helps us tailor our high-yield Q-banks to your specific clinical trajectory, though it is not a requirement for platform use.
2.3 Performance Metrics & Simulation Data
We record granular performance data: simulation scores, response times, and subject-area mastery levels. This data is used to generate personalized clinical insights and mastery reports for your individual review.
3. Data Handling & Security Principles
We implement rigorous technical and organizational measures to protect your professional data from unauthorized access or disclosure.
3.1 Absolute Prohibition of Data Sale
ExSimu does not sell, rent, or trade your personal information to third parties. Your professional data is treated with the same confidentiality expected in a clinical environment. We do not monetize your data for advertising or external marketing purposes.
3.2 Encrypted Storage
All personal and performance data is stored in secure, encrypted environments. We utilize industry-standard protocols to ensure that your clinical history and identifiers remain confidential and protected throughout their lifecycle.
4. Financial Transparency & Reselling
ExSimu prioritizes financial security through industry-leading partnerships. We do not process or store sensitive payment credentials on our own infrastructure.
5. Data Retention & Deletion Rights
We empower our users with full control over their professional data history on the ExSimu platform.
5.1 Self-Service Deletion
Users have the ability to delete their account and all associated performance data directly through the account settings on the ExSimu platform. This action triggers an immediate removal of your profile from our active production database.
5.2 Deletion via Request
Alternatively, users may request the permanent deletion of their data by contacting our compliance team at support@exsimu.com. Upon receiving a verified request, all personal identifiers will be purged within 30 days. We may retain anonymized, non-identifiable performance data solely for the purpose of improving platform simulation logic.
6. Regulatory Rights (GDPR & CCPA)
We provide full support for your statutory rights. Depending on your location, you may exercise the following:
- Right to Access: Full portability of your personal simulation history.
- Right to Rectification: Immediate correction of clinical profile inaccuracies.
- Right to Erasure: Complete removal of personal data upon request.
- Right to Object: The ability to opt-out of non-essential analytical processing.
7. Compliance & Contact
For inquiries regarding data governance, clinical data processing, or the specific application of this protocol, please reach out to the RER MedApps compliance department at support@exsimu.com.