Privacy Policy

Last updated: February 2026

PharmaDB ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered pharmaceutical supply chain analytics platform at www.pharmadb.ai and app.pharmadb.ai (the "Service").

By using the Service, you consent to the practices described in this Privacy Policy.

1. Introduction

PharmaDB is an AI-powered analytics platform that provides pharmaceutical supply chain intelligence. This Privacy Policy applies to information we collect about you as a user of our platform. It covers your account information, usage data, and related personal data.

This policy does not apply to the pharmaceutical trade intelligence processed within the platform (such as data in Pharma Graph), which is addressed separately in Section 4 below.

2. Information We Collect

2.1 Account Information

When you register for an account, we collect:

  • Full name and job title
  • Email address
  • Organization name and details
  • Phone number (if provided)
  • Password (stored in hashed form)

2.2 Payment Information

When you subscribe to a paid plan, we collect billing information such as:

  • Billing name and address
  • Payment card details or bank information (processed through our third-party payment processor; we do not store full card numbers)

2.3 Usage Data

We automatically collect information about how you interact with the Service, including:

  • Queries submitted through the Playground interface
  • Reports generated and exports requested
  • Features accessed and frequency of use
  • Credit consumption history
  • Session duration and login timestamps
  • IP address, browser type, device type, and operating system

2.4 Query History

We retain a history of your analytical queries, search parameters, and interactions with Fred and the Playground. This data is used to provide your query history feature, improve our AI models, and enhance the Service.

2.5 Communications

We collect information you provide when you contact our support team, submit feedback, or participate in surveys.

3. How We Use Your Information

We use the information we collect for the following purposes:

  • Provide the Service: Process your queries, generate analytics, manage your account, and deliver platform features.
  • Billing and administration: Process payments, manage subscriptions, and track credit usage.
  • Improve the platform: Analyze usage patterns to enhance our AI models, refine our analytics, and develop new features.
  • Customer support: Respond to your inquiries and resolve issues.
  • Security: Detect, prevent, and address fraud, unauthorized access, and technical issues.
  • Communications: Send you service-related notices, updates, and (with your consent) marketing communications.
  • Legal compliance: Comply with applicable laws, regulations, and legal processes.

4. Data We Process Through the Platform

It is important to distinguish between your personal account data (covered in Sections 2 and 3) and the pharmaceutical trade intelligence available through the platform.

4.1 Trade Intelligence Is Not User Personal Data

The data within Pharma Graph, including aggregated trade flows, market analytics, shipment intelligence, and supply chain insights across 126 markets, consists of AI-processed commercial intelligence. This data relates to companies, products, and trade patterns. It is not personal data of our users.

4.2 Sources

PharmaDB derives its trade intelligence from lawful publicly available and licensed data sources. We process this information through proprietary AI models to generate aggregated, analytical outputs. PharmaDB does not publish or redistribute raw transaction-level customs data.

4.3 Customer Pipeline Data

If you upload or input proprietary data (such as pipeline information) into the Service, that data remains yours. We process it solely to provide you with the requested analytics. We do not share your proprietary inputs with other customers or use them to enrich analytics for third parties.

5. Data Sharing

We do not sell your personal information. We share your data only in the following circumstances:

5.1 Service Providers

We share information with trusted third-party service providers who assist us in operating the platform, including:

  • Cloud infrastructure providers (hosting and storage)
  • Payment processors
  • Analytics and monitoring tools
  • Customer support platforms
  • Email delivery services

These providers are contractually obligated to use your data only for the purposes of providing services to us and to maintain appropriate security measures.

5.2 Legal Requirements

We may disclose your information if required to do so by law, regulation, legal process, or governmental request, or if we believe disclosure is necessary to protect the rights, property, or safety of PharmaDB, our users, or the public.

5.3 Business Transfers

In the event of a merger, acquisition, reorganization, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change.

5.4 With Your Consent

We may share your information for other purposes with your explicit consent.

6. Data Security

We take the security of your data seriously and implement industry-standard measures to protect it:

  • Encryption in transit: All data transmitted between your device and our servers is encrypted using TLS/SSL.
  • Encryption at rest: Stored data is encrypted using AES-256 or equivalent encryption standards.
  • SOC 2 compliance: Our platform is built to meet SOC 2 security standards, with controls for security, availability, and confidentiality.
  • Role-based access control: Access to user data within our organization is restricted based on role and necessity.
  • Regular audits: We conduct periodic security assessments and vulnerability testing.
  • Incident response: We maintain an incident response plan to address potential data breaches promptly.

While we strive to protect your data, no method of electronic storage or transmission is 100% secure. We cannot guarantee absolute security.

7. Data Retention

We retain your personal information for as long as your account is active or as needed to provide the Service. Specifically:

  • Account data: Retained for the duration of your subscription and for a reasonable period afterward (typically 90 days) to allow for reactivation.
  • Usage and query data: Retained for up to 24 months for platform improvement and analytics purposes.
  • Payment records: Retained as required by applicable tax and financial regulations.
  • Support communications: Retained for up to 24 months after resolution.

Upon account deletion, we will delete or anonymize your personal data within 90 days, except where retention is required by law.

8. Your Rights

Regardless of your location, we respect the following rights with respect to your personal data:

  • Access: You may request a copy of the personal data we hold about you.
  • Correction: You may request that we correct inaccurate or incomplete personal data.
  • Deletion: You may request that we delete your personal data, subject to legal retention requirements.
  • Data portability: You may request a copy of your data in a structured, commonly used, machine-readable format.
  • Restriction of processing: You may request that we limit how we use your data in certain circumstances.
  • Objection: You may object to our processing of your data for specific purposes, including direct marketing.
  • Withdraw consent: Where processing is based on consent, you may withdraw your consent at any time.

To exercise any of these rights, please contact us at support@pharmadb.ai. We will respond to your request within 30 days.

If you are located in the European Economic Area (EEA), United Kingdom, or another jurisdiction with applicable data protection laws, you also have the right to lodge a complaint with your local data protection authority.

9. Cookies and Tracking

9.1 What We Use

We use cookies and similar tracking technologies to:

  • Maintain your session and authentication state.
  • Remember your preferences and settings.
  • Analyze usage patterns and platform performance.
  • Improve the Service.

9.2 Types of Cookies

  • Essential cookies: Required for the platform to function. These cannot be disabled.
  • Analytics cookies: Help us understand how users interact with the platform. These can be disabled.
  • Preference cookies: Store your settings and preferences for a better experience.

9.3 Managing Cookies

You can control cookies through your browser settings. Disabling certain cookies may affect the functionality of the Service. We do not use cookies for third-party advertising purposes.

10. International Data Transfers

PharmaDB operates globally and may transfer your personal data to servers and service providers located in countries other than your own. When we transfer data across borders, we implement appropriate safeguards, including:

  • Standard contractual clauses approved by relevant authorities.
  • Ensuring that recipients maintain adequate data protection standards.
  • Compliance with applicable data transfer regulations.

By using the Service, you acknowledge that your data may be transferred to and processed in jurisdictions with different data protection laws than your own.

11. Children's Privacy

The Service is not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that a child under 18 has provided us with personal information, we will take steps to delete such information promptly. If you believe a child has provided us with personal data, please contact us at support@pharmadb.ai.

12. Changes to Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, the Service, or applicable laws. We will notify you of material changes by:

  • Posting the updated policy on our website.
  • Updating the "Last updated" date at the top of this page.
  • Sending you an email notification for significant changes (where required).

Your continued use of the Service after changes are posted constitutes your acceptance of the revised Privacy Policy.

13. Contact Information

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

For data protection inquiries specifically, please include "Privacy" in the subject line of your email so we can route your request appropriately.

This Privacy Policy is effective as of the "Last updated" date above.