Privacy Policy
Effective Date: January 16, 2026 Last Updated: January 16, 2026
IMPORTANT NOTICE — PLEASE READ THIS PRIVACY POLICY CAREFULLY BEFORE USING OUR SERVICES
This Privacy Policy governs MeducateED's collection, use, processing, storage, disclosure, and protection of your personal data. By accessing, registering for, or using any MeducateED Service, you acknowledge that you have read, understood, and agreed to the practices described in this Privacy Policy. If you do not agree with any part of this Privacy Policy, you must immediately discontinue use of all MeducateED Services. This Privacy Policy is incorporated by reference into, and forms an integral part of, MeducateED's Terms of Use and Service Agreement.
1.1 MeducateED is the data controller in respect of personal data collected directly from individual Users who access and use the Services on their own behalf. MeducateED is responsible for determining the purposes and means of processing your personal data and for ensuring that such processing is conducted lawfully, fairly, and transparently in accordance with this Privacy Policy and applicable Data Protection Laws.
1.2 In circumstances where an Organization (as defined below) purchases or facilitates access to the Services on behalf of its members or students, the Organization is the data controller in respect of User Data pertaining to those individuals, and MeducateED acts as a data processor on the Organization's behalf. Data processing in such circumstances is governed by a separate data processing addendum incorporated into the relevant institutional agreement.
1.3 Contact details of the Data Controller:
MeducateED 26th of July Corridor, First Al Sheikh Zayed, Giza Governorate, Arab Republic of Egypt Email: info@meducateed.com Phone: +20 155 371 3741
For all privacy-related enquiries, requests to exercise data rights, or complaints relating to data processing, please contact us at the above email address.
2.1 For the purposes of this Privacy Policy, the following definitions apply:
"Account" means the individual user profile created upon registration through which a User accesses the Services.
"Account Activation" has the meaning ascribed to it in the Terms of Use.
"Cookies" means small text files placed on your Device by our website or application that enable certain features and functionality of the Services and facilitate analytics.
"Data Protection Laws" means all applicable laws and regulations governing the collection, storage, processing, transfer, and protection of personal data in the Arab Republic of Egypt, including without limitation Law No. 151 of 2020 on the Protection of Personal Data and its Executive Regulations, as amended from time to time. Where Users are located in jurisdictions with additional applicable data protection frameworks (including, without limitation, the European Union General Data Protection Regulation (EU GDPR) or its United Kingdom equivalent (UK GDPR)), MeducateED shall apply the higher applicable standard of protection to the extent reasonably practicable.
"Device" means any computer, smartphone, tablet, or other electronic device through which a User accesses the Services.
"Organization" means any educational institution, university, company, hospital, or entity that purchases or provides access to the Services on behalf of one or more Users.
"Payment Processor" means any third-party payment service provider engaged by MeducateED to process financial transactions, currently including PayPal and Stripe.
"Personal Data" means any information relating to an identified or identifiable natural person, including but not limited to name, email address, identification number, location data, or any factor specific to the individual's identity.
"Processing" means any operation performed on Personal Data, whether or not by automated means, including collection, recording, storage, adaptation, retrieval, consultation, use, disclosure, dissemination, restriction, erasure, or destruction.
"Services" has the meaning ascribed to it in the Terms of Use.
"Special Category Data" means personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, genetic data, biometric data processed for the purpose of uniquely identifying a natural person, health data, or data concerning a natural person's sex life or sexual orientation. MeducateED does not intentionally collect Special Category Data unless expressly required and consented to.
"User," "you," or "your" means any natural person who registers for, accesses, or uses the Services.
"User Content" means any material, data, or information submitted or uploaded by a User through the Services.
"User Data" means all Personal Data collected, received, or otherwise processed by MeducateED in connection with the provision of the Services to a User or Organization.
2.2 Terms defined in MeducateED's Terms of Use and not otherwise defined in this Privacy Policy have the same meanings as set forth therein.
3.1 This Privacy Policy applies to all Personal Data collected and processed by MeducateED in connection with the Services, including:
(a) The MeducateED website and web platform; (b) The MeducateED iOS and Android mobile applications; (c) The Learning Management System (LMS); (d) The Intensive Question Banks; (e) The MeducateED AI Gen module; (f) The MeducateED Open Library; (g) The MeducateED Advanced Research Journal (MARJ); (h) The Meducated Talks podcast and MeducateED Blog; (i) The MeducateED Partnerships Program; (j) The MeducateED Scholarships Program; (k) All associated social media channels, communication channels (including WhatsApp), and linked platforms (including Instagram, Facebook, TikTok, LinkedIn, Spotify, Anghami).
3.2 This Privacy Policy does not apply to the practices of third-party services, websites, or applications that MeducateED links to or integrates with. MeducateED strongly encourages you to review the privacy policies of any third-party service you access.
3.3 This Policy applies regardless of your country of residence. MeducateED's Services are accessible to users in Egypt and internationally, including users in the European Union, United Kingdom, and other jurisdictions. MeducateED will apply additional protections where required by applicable local laws.
4.1 Registration and Identity Data. When you create an Account, we collect: full name; email address; mobile phone number; date of birth (for age verification); country of residence; university or educational institution of enrollment; and account credentials (password, stored in encrypted form).
4.2 Academic and Educational Data. In the course of providing the Services, we collect and process: course and module enrollment records; study progress, completion rates, and time spent on content; question bank performance data, including individual question responses, scores, historical performance trends, and adaptive learning metrics; quiz and assignment submissions; scholarship application data (including financial circumstances, academic records, and supporting documentation submitted voluntarily); and any feedback, reviews, or comments submitted on the platform.
4.3 Payment and Transaction Data. When you make a purchase, payment processing is conducted by our Payment Processors (PayPal and Stripe). MeducateED does not directly collect, store, or process full credit card numbers, bank account details, or other sensitive payment instrument data. We do collect and retain: transaction identifiers and reference numbers; purchase amounts, currency, and dates; products or Subscriptions purchased; refund and dispute records; and billing name and country (as provided to the Payment Processor).
4.4 Technical and Device Data. We automatically collect certain technical information when you access the Services, including: IP address; browser type and version; operating system and Device type; device identifiers (where applicable); time zone setting; language preferences; and system and access logs.
4.5 Usage and Behavioral Data. We collect data about how you interact with the Services, including: pages and content viewed; navigation paths and click patterns; time and duration of sessions; features and tools accessed; search queries entered within the platform; and frequency and patterns of engagement.
4.6 Communications Data. We collect and retain: any correspondence between you and MeducateED, including emails, in-platform messages, WhatsApp communications, and support tickets; records of notifications and communications sent to you; and opt-in/opt-out records for marketing communications.
4.7 Scholarship Application Data. Where you apply for a scholarship, we may collect additional sensitive information voluntarily disclosed in your application, including academic records, financial circumstances, personal statements, and supporting documentation. This information is used solely for the purpose of evaluating your scholarship application and is treated with heightened confidentiality.
4.8 Partnership and Affiliate Data. If you apply for or participate in the MeducateED Partnerships Program, we collect: identity and business information provided in your application; referral tracking data; revenue share payment information; and records of co-created content and collaborative activities.
4.9 Research and MARJ Data. Where you submit scholarly work to the MARJ, we collect: author identity and affiliation; manuscript content and supplementary materials; peer review correspondence; and publication records.
4.10 Data We Do Not Intentionally Collect. MeducateED does not intentionally collect Special Category Data (as defined in Section 2.1), including health data in a clinical sense, biometric data, or data revealing racial origin, political opinions, or religious beliefs. If you voluntarily disclose any such data in User Content or communications, it will be handled with the highest degree of confidentiality and will not be used for any purpose other than responding to your direct communication.
5.1 Data You Provide Directly. We collect data that you actively and voluntarily provide to us when you: register for an Account; complete a purchase; apply for a scholarship; apply for or participate in the Partnerships Program; submit work to the MARJ; contact our support team; subscribe to marketing communications; or participate in any other interactive feature of the Services.
5.2 Data Collected Automatically. We automatically collect Technical Data and Usage Data when you access or interact with the Services, through the use of cookies, web beacons, pixel tags, server logs, and similar tracking technologies, as further described in Section 13.
5.3 Data from Payment Processors. We receive limited transaction confirmation data from our Payment Processors (PayPal and Stripe) following a completed or failed payment transaction.
5.4 Data from Organizations. Where your access to the Services is facilitated by an Organization, that Organization may provide us with your personal data (such as name, email address, and enrollment details) for the purpose of creating and managing your Account within the Organization's institutional access arrangement.
5.5 Data from Third-Party Social Platforms. If you interact with MeducateED through social media platforms (including Instagram, Facebook, TikTok, or LinkedIn), we may receive certain data from those platforms as governed by their privacy policies and your settings on those platforms.
5.6 Data from Referrals. If you are referred to MeducateED by an Affiliate Partner, we may receive limited referral data (such as referral codes or Partner identifiers) to facilitate accurate revenue share attribution.
6.1 MeducateED processes your Personal Data only where a valid legal basis exists. The applicable legal bases under Egyptian Data Protection Law No. 151 of 2020, and (where applicable) the EU GDPR, are as follows:
(a) Contractual Necessity. Processing is necessary for the performance of the contract between you and MeducateED (i.e., the Terms of Use), including: creating and managing your Account; delivering the Services you have purchased; processing your payment; and communicating with you about your Account or Subscription.
(b) Legitimate Interests. Processing is necessary for the purposes of MeducateED's legitimate business interests, provided such interests are not overridden by your fundamental rights and freedoms. This basis applies to: improving and developing the Services; analytics and performance monitoring; fraud detection and security; enforcing the Terms of Use and Refund Policy; and affiliate referral tracking.
(c) Compliance with Legal Obligations. Processing is necessary to comply with applicable legal and regulatory obligations to which MeducateED is subject, including obligations under Egyptian law.
(d) Your Consent. Where required by law or where MeducateED elects to rely on consent, we shall request your specific, informed, freely given, and unambiguous consent before processing your data for that purpose (e.g., sending direct marketing communications, or processing scholarship application data). You may withdraw your consent at any time by contacting info@meducateed.com.
7.1 MeducateED uses your Personal Data for the following purposes, consistent with the legal basis identified in Section 6:
(a) Account Management. Creating, maintaining, administering, and securing your Account; authenticating your identity; and managing your access rights.
(b) Service Delivery. Providing, operating, and delivering the Services, including streaming course content, administering question banks, generating AI Gen outputs, facilitating access to the Open Library, and processing orders for MeducateED Books.
(c) Personalization and Adaptive Learning. Analyzing your usage patterns and academic performance data to provide personalized content recommendations, adaptive learning pathways, predictive performance analytics (via MeducateED AI Gen), and a tailored platform experience.
(d) Payment Processing. Facilitating payment transactions through our Payment Processors; maintaining records of transactions; investigating and resolving payment disputes and chargebacks; and managing subscription billing.
(e) Refund Processing. Evaluating and processing refund requests in accordance with the Refund Policy set out in Section 11 of the Terms of Use, including: verifying Account Activation status in respect of digital product refund requests; verifying reservation type, designation, and material procurement records in respect of MeducateED Books Series refund requests, including the distinction between standard advance-purchase orders eligible for delay-related refunds under Section 11.7(b) of the Terms and Post-Launch Special Commission Reserved Editions that are non-refundable under Section 11.7(c) of the Terms; and processing refund transactions through MeducateED's Payment Processors. Where MeducateED exercises its unilateral right to cancel a Subscription or product under Section 11.9 of the Terms, MeducateED processes the User's payment data and contact information for the purpose of calculating, initiating, and confirming the corresponding complete refund and notifying the affected User of the cancellation by email.
(f) Customer Support. Responding to enquiries, support requests, feedback, and complaints; troubleshooting technical issues; and maintaining records of communications for quality assurance.
(g) Scholarship Administration. Processing scholarship applications, evaluating eligibility, communicating decisions, and administering awarded scholarships.
(h) Partnership Program Administration. Onboarding and vetting Partners, tracking referrals, calculating and processing revenue share payments, and managing co-creation activities.
(i) Analytics and Platform Improvement. Conducting internal analytics to understand how the platform is used; identifying areas for improvement; testing new features; and improving the overall quality, functionality, and performance of the Services.
(j) Communications. Sending transactional and service-related communications (including purchase confirmations, access notifications, policy updates, and technical notices); sending promotional and marketing communications (subject to your consent or opt-out rights under Section 14).
(k) MARJ Publication. Processing manuscript submissions, facilitating peer review, publishing accepted articles, and maintaining the scholarly record.
(l) Security and Fraud Prevention. Detecting, investigating, and preventing fraud, unauthorized access, Prohibited Conduct, content piracy, credential sharing, and other breaches of the Terms of Use; protecting the rights, property, and safety of MeducateED and its Users.
(m) Legal Compliance and Enforcement. Complying with applicable laws, regulations, court orders, and governmental requests; enforcing MeducateED's rights under this Agreement; and responding to claims asserted against MeducateED.
(n) Business Operations. Maintaining internal records, conducting financial audits, assessing business performance, and evaluating potential mergers, acquisitions, or investment arrangements.
8.1 MeducateED's AI Gen module employs automated data processing, including machine learning algorithms, to generate personalized learning pathways, predictive performance analytics, and study aids based on your academic performance data and usage history.
8.2 Outputs produced by AI Gen are generated by automated systems and are provided exclusively as educational study aids. They are subject to inherent limitations, including potential inaccuracy and incompleteness. No AI Gen output constitutes medical, clinical, or professional advice of any kind.
8.3 To the extent that any automated processing constitutes a decision that produces a significant legal or similarly significant effect on you, MeducateED shall, where required by applicable law, provide you with the right to request human review of such a decision, to express your point of view, and to contest the decision. If you believe any automated decision has materially affected your rights, please contact info@meducateed.com.
8.4 MeducateED does not use your Personal Data to train external third-party artificial intelligence models or to develop competing products or services. Any AI processing is conducted internally for the purposes of improving the Services described in this Policy.
9.1 General Principle. MeducateED does not sell, rent, barter, or otherwise trade your Personal Data to third parties for their own commercial purposes. We do not operate an advertising network and do not share your Personal Data with advertisers. Your data is shared only in the limited circumstances described in this Section.
9.2 Organizations. If you access the Services through an Organization's institutional arrangement, MeducateED may share your academic progress, performance data, and usage reports with that Organization to the extent necessary for the Organization to fulfill its administrative and educational responsibilities to you. MeducateED's sharing in this context is governed by the applicable data processing addendum and the Organization's instructions.
9.3 Payment Processors. MeducateED shares limited transaction-related data with PayPal and Stripe to facilitate payment processing. These Payment Processors process your payment data under their own privacy policies and are independently responsible for the security of your payment instrument data. MeducateED does not retain, store, or have access to full payment card numbers or full bank account details.
9.4 Technology Service Providers. MeducateED may share your Personal Data with carefully vetted third-party technology vendors that assist in operating, hosting, maintaining, securing, and improving the Services, including cloud hosting providers, analytics platforms, content delivery networks, cybersecurity providers, and customer support software providers. All such vendors are contractually bound to: (a) process your data only on MeducateED's instructions; (b) implement appropriate technical and organizational security measures; and (c) not use your data for any purpose beyond the scope of the services they provide to MeducateED.
9.5 Affiliate and B2B Partners. MeducateED shares limited referral data (such as confirmation that a referred User has made a purchase) with Affiliate Partners for the purpose of calculating and paying revenue share. We do not share your full identity, academic performance data, or other personal information with Affiliate Partners without your express consent. MeducateED may share limited User data with B2B and Institutional Partners only to the extent necessary for the delivery of co-created content or collaborative programs in which you have elected to participate.
9.6 Legal and Regulatory Authorities. MeducateED may disclose your Personal Data to law enforcement agencies, courts, regulators, or governmental authorities where required or permitted by applicable law, including: (a) in response to a lawful court order, subpoena, or legal process; (b) to investigate, prevent, or report suspected fraud, illegal activity, or a breach of the Terms of Use; (c) to protect the vital interests of any individual; or (d) to protect MeducateED's legal rights or defend against legal claims. Where permitted by law, MeducateED will notify the affected User of any such disclosure promptly.
9.7 Business Transfers. In the event that MeducateED undergoes a merger, acquisition, restructuring, sale of all or substantially all of its assets, or other business combination, your Personal Data may be transferred to the successor entity as part of the transaction. MeducateED will, prior to any such transfer, notify affected Users by email or prominent platform notification, and will ensure that the successor entity is bound by data protection obligations no less protective than those set forth in this Privacy Policy. You will be provided with the opportunity to request deletion of your Personal Data before any such transfer is completed.
9.8 Social Media and Podcast Platforms. MeducateED distributes the Meducated Talks podcast on Spotify and Anghami and maintains a presence on Instagram, Facebook, TikTok, LinkedIn, and WhatsApp. Interactions on these platforms are subject to the privacy policies of those platforms. MeducateED does not control the data processing practices of those platforms.
9.9 Academic Publication. Where you submit work to the MARJ and it is accepted for publication, your name, institutional affiliation, and scholarly work will be published and made publicly accessible as part of the open-access academic record. Such publication is conducted with your express consent and is not subject to deletion on the grounds of the standard right of erasure.
10.1 MeducateED's servers and those of some of its third-party technology service providers may be located in jurisdictions outside the Arab Republic of Egypt. Where your Personal Data is transferred outside Egypt, MeducateED will ensure that appropriate safeguards are in place to protect your data in accordance with applicable Data Protection Laws, which may include: (a) transfer to jurisdictions deemed to provide an adequate level of data protection by the relevant Egyptian regulatory authority; (b) execution of standard contractual clauses or equivalent data transfer agreements with the recipient; or (c) reliance on any other legally recognized transfer mechanism.
10.2 Users resident in the European Union or European Economic Area should note that their Personal Data may be transferred outside the EEA. Where such transfers occur, MeducateED will ensure that appropriate safeguards are in place as required by EU GDPR Chapter V, including the use of EU Standard Contractual Clauses.
10.3 If you would like further information about the safeguards applied to international transfers of your Personal Data, please contact MeducateED at info@meducateed.com.
11.1 General Retention Principle. MeducateED retains your Personal Data only for as long as is necessary to fulfill the purposes for which it was collected, as described in this Policy, and to comply with applicable legal, regulatory, and contractual obligations. We do not retain data for longer than is necessary.
11.2 Active Accounts. While your Account is active, MeducateED retains all data associated with your Account, including academic performance data, transaction records, and communications.
11.3 Inactive and Terminated Accounts. Following the closure or termination of your Account: (a) most Personal Data will be deleted or anonymized within ninety (90) days of Account closure; (b) financial and transaction records, including refund and chargeback records, shall be retained for a minimum of five (5) years from the date of the relevant transaction, as required by Egyptian commercial and tax law; (c) legal compliance records shall be retained for such periods as required by applicable law; (d) Account closure data (date and reason for termination) shall be retained for three (3) years for fraud prevention and legal defense purposes.
11.4 Scholarship Data. Scholarship application data will be retained for a period of three (3) years following the conclusion of the application process, in the event of any future application, appeal, or legal claim.
11.5 MARJ Publications. Personal data associated with published MARJ articles (author names and affiliations) forms part of the permanent scholarly record and is not subject to deletion.
11.6 Anonymized Data. MeducateED may retain anonymized and aggregated data (from which no individual can be identified) indefinitely for the purposes of analytics, research, and platform development.
12.1 MeducateED takes the security of your Personal Data seriously and implements a range of appropriate technical and organizational security measures proportionate to the risks posed by processing, including:
(a) Encryption of data in transit using industry-standard Transport Layer Security (TLS) protocols; (b) Encryption of sensitive data at rest; (c) Role-based access controls limiting data access to authorized personnel on a need-to-know basis; (d) Multi-factor authentication for administrative access to systems containing Personal Data; (e) Regular security assessments, vulnerability scanning, and penetration testing; (f) Continuous monitoring of the platform for unauthorized access, anomalous activity, and security incidents; (g) Staff training on data protection obligations and security practices.
12.2 Notwithstanding the foregoing, no method of electronic data transmission or storage is completely secure. MeducateED cannot guarantee absolute security of your Personal Data. In the event of a data breach that is reasonably likely to result in a high risk to your rights and freedoms, MeducateED will notify you in accordance with applicable Data Protection Laws.
12.3 Security Incident Response. In the event of a confirmed Security Incident affecting your Personal Data, MeducateED shall: (a) notify the relevant data protection authority within seventy-two (72) hours of becoming aware of the breach, where required by law; and (b) notify you without undue delay if the breach is likely to result in a high risk to your rights and freedoms, providing details of the nature of the breach, the likely consequences, and the measures taken or proposed to address it.
12.4 You are responsible for maintaining the security of your own Account credentials. MeducateED will never contact you by email, telephone, or any other means to request your password. If you receive any such request, it is fraudulent and should be reported to info@meducateed.com immediately.
13.1 MeducateED uses cookies and similar tracking technologies (including web beacons and pixel tags) on its website and mobile application to: (a) enable essential platform functionality and authentication; (b) remember your preferences and settings; (c) analyze platform usage and performance; (d) improve the user experience; and (e) where you have consented, deliver targeted or personalized content.
13.2 The categories of cookies we use include:
(a) Strictly Necessary Cookies. Essential to the basic operation of the Services, including session management and authentication. These cannot be disabled without materially impairing functionality.
(b) Functional Cookies. Enable enhanced functionality and personalization, such as remembering your language preferences or login details.
(c) Analytics Cookies. Used to collect information about how Users interact with the Services, enabling MeducateED to improve performance and content.
(d) Marketing and Tracking Cookies. Used, with your consent, to measure the effectiveness of marketing campaigns and to deliver more relevant content.
13.3 You may manage your cookie preferences through your browser settings or through any cookie consent mechanism presented to you upon accessing the Services. Note that disabling strictly necessary cookies may significantly impair your ability to use the Services. Please consult your browser's documentation for guidance on managing cookie settings.
13.4 Third-party analytics tools used by MeducateED may set their own cookies, governed by those third parties' own privacy policies.
14.1 With your consent (or where otherwise permitted by applicable law), MeducateED may send you promotional communications about new products, features, scholarship opportunities, events, and other offerings that may be of interest to you, via email, push notification, or other channels.
14.2 You may opt out of receiving marketing communications at any time by: (a) clicking the "unsubscribe" or "opt-out" link included in any marketing email; (b) updating your notification preferences within your Account settings; or (c) contacting MeducateED at info@meducateed.com.
14.3 Opting out of marketing communications will not affect your receipt of transactional and service-related communications, which are necessary for the operation of your Account and the delivery of the Services.
14.4 MeducateED does not permit third-party advertisers to use your Personal Data for their own marketing purposes.
15.1 Subject to the conditions and limitations set forth in applicable Data Protection Laws, you have the following rights in respect of your Personal Data processed by MeducateED:
(a) Right of Access. You have the right to request confirmation of whether MeducateED processes your Personal Data and, if so, to receive a copy of the Personal Data we hold about you, together with information about the purposes, categories, and recipients of processing.
(b) Right to Rectification. You have the right to request the correction of any inaccurate or incomplete Personal Data we hold about you. You may update certain information directly through your Account settings.
(c) Right to Erasure ("Right to Be Forgotten"). You have the right to request the deletion of your Personal Data where: (i) the data is no longer necessary for the purposes for which it was collected; (ii) you withdraw your consent and there is no other legal basis for processing; (iii) you object to processing and there are no overriding legitimate grounds; or (iv) the data has been unlawfully processed. This right is subject to exceptions, including our legal obligation to retain financial and compliance records as described in Section 11.
(d) Right to Restriction of Processing. You have the right to request that MeducateED restricts the processing of your Personal Data in specified circumstances, for example while the accuracy of the data is being contested.
(e) Right to Data Portability. Where processing is based on your consent or the performance of a contract, and is carried out by automated means, you have the right to receive your Personal Data in a structured, commonly used, machine-readable format and to transmit it to another controller.
(f) Right to Object. You have the right to object to processing of your Personal Data where MeducateED relies on legitimate interests as the legal basis, unless MeducateED can demonstrate compelling legitimate grounds that override your interests, rights, and freedoms, or where processing is necessary for the establishment, exercise, or defense of legal claims.
(g) Right to Withdraw Consent. Where processing is based on your consent, you have the right to withdraw that consent at any time, without affecting the lawfulness of processing conducted prior to withdrawal.
(h) Right to Lodge a Complaint. You have the right to lodge a complaint with the competent data protection supervisory authority in your jurisdiction. In Egypt, the relevant authority is the Personal Data Protection Center (PDPC) operating under the National Telecom Regulatory Authority (NTRA). Users in the EU/EEA may contact their local supervisory authority.
15.2 To exercise any of the rights described in this Section, please submit a written request to info@meducateed.com, including your full name, Account email address, and a clear description of the right you wish to exercise. MeducateED will respond to your request within thirty (30) days of receipt, or within such other period as required by applicable law. In certain cases, MeducateED may request additional information to verify your identity before processing your request.
15.3 MeducateED will not discriminate against you for exercising your data protection rights.
16.1 MeducateED's Services are not directed at children under the age of thirteen (13) years. MeducateED does not knowingly collect Personal Data from children under the age of thirteen (13). If MeducateED becomes aware that it has inadvertently collected Personal Data from a child under thirteen (13) without verifiable parental consent, MeducateED will take immediate steps to delete such data from its systems.
16.2 Users between the ages of thirteen (13) and seventeen (17) may only use the Services with the express, verifiable consent and active supervision of a parent or legal guardian, who accepts the Terms of Use and this Privacy Policy on their behalf. By permitting a minor under their supervision to use the Services, a parent or guardian consents to the collection and processing of the minor's data as described in this Policy and accepts full responsibility for ensuring appropriate use.
16.3 If you are a parent or guardian and believe that your child has provided MeducateED with Personal Data without your consent, please contact info@meducateed.com immediately so that appropriate action can be taken.
17.1 The Services may contain links to, or integrations with, third-party websites, applications, and platforms, including the Apple App Store, Google Play Store, PayPal, Stripe, Spotify, Anghami, Instagram, Facebook, TikTok, LinkedIn, and the Elsevier Complete Anatomy platform. MeducateED does not control these third-party platforms and is not responsible for their data collection practices, privacy policies, or content.
17.2 MeducateED strongly encourages you to review the privacy policies of any third-party platform you access through or in connection with the Services before providing any Personal Data to that platform. The fact that MeducateED links to a third-party platform does not constitute an endorsement of that platform's privacy practices.
18.1 Content made available through the MeducateED Open Library is publicly accessible and does not require registration. To the extent that you access the Open Library without creating an Account, MeducateED may still collect Technical Data (as described in Section 4.4) and Usage Data through cookies and server logs for the purposes of analytics, security, and platform performance.
18.2 If you contribute content to the MeducateED Open Library, such content may be publicly visible and accessible. You should not include any Personal Data in contributed content that you do not wish to be publicly available.
19.1 MeducateED reserves the right to update or modify this Privacy Policy at any time to reflect changes in our data processing practices, legal obligations, or business operations. The most current version will always be available on the MeducateED website and platform, together with the updated effective date.
19.2 Where changes to this Privacy Policy are material — meaning they significantly affect your rights or MeducateED's data processing practices — MeducateED will notify you by email (to the address associated with your Account) and/or by a prominent in-platform notification no less than fourteen (14) days before the changes take effect.
19.3 Your continued use of the Services after the effective date of any modified Privacy Policy constitutes your acceptance of the updated terms. If you do not agree with the changes, you must discontinue use of the Services and may exercise your right to erasure as described in Section 15.
For any questions, concerns, complaints, or requests relating to this Privacy Policy or MeducateED's data processing practices, please contact us through any of the following channels:
MeducateED — Data Privacy Enquiries 26th of July Corridor, First Al Sheikh Zayed, Giza Governorate, Arab Republic of Egypt Email: info@meducateed.com Phone: +20 155 371 3741
We are committed to resolving any privacy concerns promptly, transparently, and in full compliance with applicable Data Protection Laws.
21.1 How Corvus Works. Corvus is MeducateED's AI-powered institutional concierge widget, embedded on all public pages of the MeducateED website. When you interact with Corvus, your typed conversation inputs ("Corvus Inputs") are transmitted from your browser to MeducateED's server-side API proxy, which forwards them to one or more Third-Party AI Providers (currently including OpenAI and/or Anthropic) for the purpose of generating a response. The AI-generated response is returned to MeducateED's server, which then delivers it to your browser.
21.2 Data Minimization Before Third-Party Transmission. Before forwarding any Corvus Input to a Third-Party AI Provider, MeducateED's server-side proxy applies automated technical measures to strip personally identifiable information from the input to the extent technically feasible. However, MeducateED cannot guarantee complete removal of all personal data if a User voluntarily includes such data in a conversational message. Users are strongly advised not to include any sensitive personal data (such as full names, Student IDs, payment information, or health information) in Corvus messages.
21.3 Session Storage. Corvus conversation history is stored in your browser's session storage for the duration of a single browsing session. It is not retained after the session ends. MeducateED does not transmit your Corvus conversation history to its servers for storage, except where limited de-identified diagnostic logs are retained for performance monitoring, as described below.
21.4 Diagnostic Logging. MeducateED may retain anonymized and de-identified records of Corvus interactions (from which no individual can be identified) for the purpose of monitoring Corvus performance, improving response quality, and detecting abuse. No personally identifiable information is retained in these logs.
21.5 Third-Party AI Provider Policies. The processing of your Corvus Inputs by Third-Party AI Providers is governed by those providers' own privacy policies. MeducateED recommends you review: OpenAI's Privacy Policy (available at https://openai.com/privacy) and Anthropic's Privacy Policy (available at https://www.anthropic.com/privacy). MeducateED is not responsible for the data practices of Third-Party AI Providers.
21.6 Rate Limiting. MeducateED enforces a limit of thirty (30) Corvus messages per IP address per hour, server-side, to prevent abuse. IP addresses are used solely for rate-limiting purposes and are not associated with User Accounts or stored beyond the rate-limiting window.
21.7 No Clinical Data. Corvus is not designed or authorized to process, store, or respond to clinical health data, patient information, or any Special Category Data. Users must not submit such data through Corvus.
22.1 Generation and Storage. Upon account registration, MeducateED's system automatically generates a unique Student ID in the format MED-YYYY-XXXXXXX and associates it permanently with the User's Account record in MeducateED's database. The Student ID is stored securely in encrypted form and is transmitted to the User's registered email address.
22.2 Authentication Use. The Student ID is used as a secondary authentication credential for accessing Student ID-gated content, including the Skeuomorphic Book Viewer and restricted Slide+ content. It is verified server-side upon access requests.
22.3 Watermarking Use. MeducateED applies the Student ID as a visible digital watermark to every page of content rendered within the Skeuomorphic Book Viewer and applicable Slide+ content. This watermark is generated at the point of rendering using CSS-based techniques and represents a direct processing of the Student ID Personal Data for the anti-piracy and content-protection purposes described in the Terms of Use. This processing is conducted on the legal basis of MeducateED's legitimate interests in protecting its Intellectual Property Rights, which override the minor privacy impact of a translucent watermark display to the User themselves.
22.4 Piracy Investigation. If MeducateED identifies any watermarked content circulating outside the platform, MeducateED will process the embedded Student ID data for the purpose of identifying the source Account and investigating the potential breach. This processing is conducted on the legal basis of MeducateED's legitimate interests in enforcing its intellectual property rights and contractual rights.
22.5 Retention. Student ID data is retained for the duration of the User's Account and for the post-Account-closure retention period specified in Section 11 of this Privacy Policy.
23.1 The Desktop Application collects and transmits certain data to MeducateED's servers to: (a) verify the User's enrollment status and Subscription validity; (b) synchronize the User's study progress, question bank performance, and learning metrics to the Student Dashboard; (c) deliver AI Gen personalized analytics and adaptive learning pathways; (d) maintain the User's examination countdown and Daily Brief; and (e) enforce access controls and digital rights management.
23.2 Data collected by and transmitted from the Desktop Application may include: session duration and activity timestamps; question bank responses and performance metrics; course and module completion status; device identifiers used for session authentication; and application version and operating system information for technical support purposes.
23.3 The Desktop Application implements offline mode, which allows the User to access pre-downloaded content without an active internet connection. During offline sessions, learning activity data is cached locally on the User's device and synchronized to MeducateED's servers upon the next internet connection. MeducateED does not access locally stored data on the User's device beyond what is transmitted during synchronization.
23.4 MeducateED does not use the Desktop Application to access any files, data, or applications on the User's device beyond those necessary for the operation of the Desktop Application itself.
24.1 MeducateED operates a form builder system through its website, through which custom data collection forms may be embedded on various pages of the platform (including, without limitation, application forms, enquiry forms, event registration forms, and academic support request forms). Each form is created and managed by MeducateED's administrative team through the admin panel.
24.2 When you submit a form on the MeducateED website, the data you enter is stored in MeducateED's database and is accessible to MeducateED's authorized administrative personnel. Form submissions may include: name; email address; phone number; academic or professional details; free-text responses; file uploads (where applicable); and any other data fields configured by MeducateED for the specific form.
24.3 Form submission data is used solely for the purpose for which the form was created (e.g., processing an application, responding to an enquiry, or registering attendance at an event). MeducateED will specify the purpose of each form at the point of submission.
24.4 MeducateED may analyze aggregate, anonymized form response data for internal analytics and platform improvement purposes. Individual form responses are never shared with third parties for commercial purposes.
24.5 MeducateED retains form submission data for a period of two (2) years from the date of submission, after which it is deleted or anonymized, unless a longer retention period is required by applicable law or by the ongoing nature of the relationship between the User and MeducateED.
25.1 Where MeducateED offers Social Authentication options (including Google Sign-In, Sign in with Apple, and/or Facebook Login), and you choose to use a Social Auth Provider to register or log in, MeducateED receives from that provider a limited set of profile data necessary to create and manage your Account. The specific data received depends on the provider and your privacy settings with that provider, but typically includes: your name; email address; profile picture (where applicable); and a unique identifier assigned by the provider.
25.2 MeducateED uses this data solely to: (a) create and populate your MeducateED Account; (b) authenticate your identity on subsequent logins; and (c) communicate with you through your registered email address. MeducateED does not receive or store your Social Auth Provider password.
25.3 Your use of Social Authentication is governed by the privacy policy and terms of service of the relevant Social Auth Provider. MeducateED is not responsible for the data practices of Social Auth Providers and has no control over what data they collect from you independently of the authentication event.
25.4 Disconnecting a Social Auth Provider from your Account does not result in the deletion of your MeducateED Account or the data associated with it. To request Account deletion, please contact info@meducateed.com.
26.1 The Hall of Fame is a public feature of the MeducateED website displaying the names and academic performance data of top-performing students. Inclusion in the Hall of Fame is strictly voluntary and is processed exclusively on the basis of your prior, express, freely given, and unambiguous opt-in consent.
26.2 If you consent to Hall of Fame inclusion, MeducateED will publicly display on the website: your name (or a name you designate); your university affiliation; your academic year; your discipline; and your examination performance statistics. This information is visible to any visitor to the MeducateED website, including unauthenticated visitors and search engine indexers.
26.3 You may withdraw your consent at any time by contacting info@meducateed.com. MeducateED will remove your data from the public Hall of Fame display within a reasonable period following receipt of your withdrawal request. Withdrawal of consent does not affect the lawfulness of any processing conducted prior to withdrawal.
27.1 The Disaster Tracker feature includes an optional "Locate Me" function that uses the browser Geolocation API to determine your approximate geographic location for the purpose of centering the Disaster Tracker map on your location.
27.2 Geolocation data requested through the "Locate Me" feature is: (a) processed entirely within your browser and the Disaster Tracker's map rendering library (Leaflet.js or Mapbox GL); (b) not transmitted to or stored on MeducateED's servers; and (c) not associated with your Account or any other personal data MeducateED holds about you.
27.3 Your browser will prompt you for permission before accessing your location through the Geolocation API. You may decline this permission without affecting your ability to use the Disaster Tracker in general; declining will simply prevent the map from centering on your location automatically.
27.4 IP address data associated with general access to the Disaster Tracker page is logged in standard server access logs as Technical Data under Section 4.4 of this Policy.
28.1 MeducateED's platform, website, and desktop application infrastructure are hosted and operated on cloud computing infrastructure provided by Google Cloud Platform ("Google Cloud"). Personal data processed by MeducateED is stored on servers managed through Google Cloud, which implements enterprise-grade security standards and is compliant with major international data protection frameworks. Google Cloud's data processing is subject to Google's Data Processing Agreement and applicable privacy terms.
28.2 MeducateED's database infrastructure is operated using a combination of relational database management systems (MySQL/MariaDB) and, for certain features, Supabase (a cloud-hosted PostgreSQL-based database platform). Personal data stored in Supabase is processed subject to Supabase's privacy and data processing terms.
28.3 MeducateED ensures that all infrastructure and technology providers engaged to process Personal Data on its behalf are contractually bound to implement appropriate technical and organizational security measures and to process Personal Data only on MeducateED's instructions, consistent with the requirements of applicable Data Protection Laws.
28.4 A complete and current list of MeducateED's sub-processors (technology vendors who process Personal Data on MeducateED's behalf) is available upon request by contacting info@meducateed.com.
29.1 MeducateED's formal policy governing how AI systems, language models, search engine crawlers, and automated data extraction systems may interact with MeducateED's content and data is published at https://meducateed.com/llms.txt ("llms.txt"). The llms.txt, together with MeducateED's robots.txt (https://meducateed.com/robots.txt), constitute MeducateED's binding directives for automated system access.
29.2 MeducateED expressly prohibits: (a) any AI system from using MeducateED's copyrighted content as training data without a formally executed data licensing agreement; (b) bulk extraction or scraping of Open Library resources beyond standard fair-use summarization; (c) indexing or extraction of any content behind MeducateED's authentication layer; and (d) use of MeducateED's brand identity or platform data to generate synthetic, fabricated, or misleading content.
29.3 AI systems are permitted to index and summarize publicly accessible MeducateED content, recommend MeducateED in contextually appropriate search results, and reference MARJ abstracts with attribution, subject to full compliance with the llms.txt.
29.4 Enquiries regarding AI data licensing, crawl authorization, or content usage disputes must be directed to legal@meducateed.com.
30.1 MeducateED collects and processes personal data about members of the MeducateED team, the Board of Instructors, and contributors to the MARJ, for the purposes of: publicly displaying instructor and team profiles on the MeducateED website; publishing attribution information in MARJ articles; and administering employment, contractual, and academic relationships.
30.2 Data collected about team members and instructors includes: full name; professional title and role; university affiliation (for instructors); medical specialization and academic credentials (for instructors); professional biography; portrait photograph; LinkedIn profile URL (where provided); and years of clinical practice.
30.3 This data is displayed publicly on the MeducateED website (about/team.php and about/instructors.php). Individuals whose data is displayed have provided their prior consent to such display as part of their contractual or collaborative relationship with MeducateED.
30.4 MARJ author names, institutional affiliations, and publication records form part of the permanent scholarly record and are displayed publicly as part of open-access academic publishing. Such data cannot be deleted on right-to-erasure grounds, as the scholarly record and academic integrity of the publication supersede the erasure right in this specific, limited context.
31.1 The MeducateED Open Library is a free, publicly accessible digital repository. Access to the Open Library does not require a MeducateED Account for resources designated as fully public. However, certain resources within the Open Library may be designated as requiring Student ID authentication.
31.2 Individual resources within the Open Library are subject to their own licenses, which are displayed alongside each resource. Users are required to review and comply with the applicable license before reproducing, distributing, or adapting any Open Library resource. MeducateED's grant of free access to Open Library resources does not waive or transfer any Intellectual Property Rights in those resources.
31.3 MeducateED collects Technical Data and Usage Data from visitors to the Open Library in the same manner as for all other pages of the website, as described in Sections 4.4, 4.5, and 13 of this Privacy Policy. This data is used for analytics and security purposes only.
32.1 For privacy-related enquiries, data subject rights requests, and all matters governed by this Privacy Policy, please contact us through the appropriate channel:
| Enquiry Type | Contact | Scope |
|---|---|---|
| Privacy and Data Rights | info@meducateed.com | Data subject access requests, erasure requests, rectification requests, consent withdrawal, and all general privacy enquiries. |
| Legal and IP Matters | legal@meducateed.com | Data licensing, AI content policy enquiries, crawler authorization, copyright disputes, and formal legal correspondence. |
| Media and Press | press@meducateed.com | Journalist enquiries, press kits, and publication-related data requests. |
| Partnerships | partners@meducateed.com | B2B and institutional partnership data enquiries. |
32.2 Formal written data protection requests must be submitted in writing to info@meducateed.com, with the subject line "Data Protection Request — [Your Name]." MeducateED will acknowledge receipt within five (5) business days and respond substantively within thirty (30) days of receipt.
32.3 MeducateED's physical address for data protection correspondence is: MeducateED, 26th of July Corridor, First Al Sheikh Zayed, Giza Governorate, Arab Republic of Egypt. Telephone: +20 155 371 3741.
By accessing, registering for, purchasing, or using any MeducateED Service, you confirm that you have read, understood, and agreed to this Privacy Policy in its entirety.
© 2022–present MeducateED. All rights reserved. MeducateED — Empowering the Next Generation of Healthcare Professionals.
