Privacy Policy

1. Introduction

AnestCopilot Ltda. ("we", "our", or the "Company"), operating the Deep Evidence platform, is committed to protecting the privacy and personal data of all users of our services. This Privacy Policy details how we collect, use, share and protect personal information when you use our application, website (deepevidence.ai) and related services (collectively, the "Services").

Our Services are designed to assist professionals in life sciences and related fields. We recognize the sensitivity of the information accessed and processed and are committed to maintaining high standards of privacy and security.

By using our Services, you agree to the practices described in this Privacy Policy. We recommend that you read this document carefully and consult it periodically, as it may be updated from time to time.

2. Definitions

For the purposes of this Privacy Policy:

• "Personal Data" means any information relating to an identified or identifiable natural person.
• "Sensitive Data" includes personal data about racial or ethnic origin, religious belief, political opinion, membership in a union or religious, philosophical or political organization, data related to health or sexual life, genetic or biometric data, when linked to a natural person.
• "Processing" means any operation performed with personal data, such as collection, processing, storage, etc.
• "Data Subject" is the natural person to whom the personal data refers.
• "Controller" is the person (in this case, AnestCopilot Ltda.) responsible for decisions regarding the processing of personal data.
• "Processor" is the person who processes personal data on behalf of the controller.
• "Data Protection Officer" (DPO) is the person appointed to act as a communication channel on privacy matters.

3. Information We Collect

3.1 Information you provide directly to us:

• Registration data: full name, email address, phone number, professional registration number (if applicable to your profession), area of practice/interest.
• Profile information: workplace (optional), professional experience (optional), areas of interest within life sciences or your field of practice.
• User-generated content: questions asked to tools, feedback provided, articles submitted for analysis in the "My Article" tool (you are responsible for ensuring you have the right to use and submit such articles).
• Payment information: for users of paid plans (if applicable), we collect payment data, which is processed by secure third-party payment providers.

3.2 Information collected automatically:

• Usage data: interactions with the application (features used, frequency, etc.), types of queries performed (without the specific content of the question, unless necessary for troubleshooting or with consent), time spent in the application.
• Device information: device type, operating system, application version, unique device identifiers, IP address.
• Location data: only with your explicit consent, we may collect location data for specific features (if any).
• Logs and diagnostic data: performance information, errors, crash data for improvement and troubleshooting purposes.

3.3 Third-party information:

• Partners: we may receive aggregated or anonymized information from business partners, such as research institutions, universities or scientific/professional societies, related to programs or collaborations.

3.4 Patient or research participant data:

It is essential to note that Deep Evidence is NOT designed to collect or store identifiable data from patients or research participants.

It is the user's sole responsibility to ensure that no information that allows personal identification of third parties (patients, participants, etc.) is entered in questions, article uploads or any other interaction with the Services. Always use anonymized data when interacting with the platform.

4. How We Use Your Information

We use your information for the following purposes:

4.1 Provision and improvement of Services:

• Provide access and full functionality of the Deep Evidence application.
• Personalize your experience (e.g., language, topics of interest in "My Update").
• Analyze usage patterns (in an aggregated/anonymized manner) to improve our algorithms, response relevance and user experience.
• Develop new features and functionalities.

4.2 Communication and support:

• Send service-related communications (updates, security, support).
• Respond to your questions and support requests.
• Send information about products, services or events (with your consent).

4.3 Research and development:

• Conduct internal research and analysis (with aggregated/anonymized data) to improve our Services and understand usage trends in the scientific/professional community.

4.4 Security and protection:

• Detect, prevent and resolve technical and security issues.
• Protect against fraudulent, abusive or illegal activities.
• Verify identity (if necessary) and maintain user base integrity.

4.5 Legal and regulatory compliance:

• Comply with applicable legal and regulatory obligations.
• Respond to legal requests and judicial processes.
• Enforce our Terms of Service and other policies.

5. Legal Basis for Data Processing (LGPD)

We process your personal data based on the following legal bases:

• Contract Performance (Art. 7, V): To provide the Services you requested when creating an account and accepting the Terms.
• Consent (Art. 7, I): For sending marketing, location collection (if applicable) or other specific purposes informed.
• Legitimate Interests (Art. 7, IX): To improve Services, ensure security, perform internal analysis (always respecting your rights).
• Legal or Regulatory Obligation Compliance (Art. 7, II): To comply with tax laws, court orders, etc.
• Regular Exercise of Rights (Art. 7, VI): To defend the Company in legal proceedings.
• (Potentially) Health Protection (Art. 7, VIII): For processing aggregated/anonymized data aimed at improving support tools for scientific research or professional practice in health/life sciences.

6. Information Sharing

We only share your information in limited circumstances:

• With Service Providers: Third parties who assist us in operations (hosting, data analysis, payment processing, support), contractually obligated to protect your data.
• For Legal Compliance and Protection: If required by law or to protect our rights and safety or those of third parties.
• With Affiliates and Business Partners: With group companies or partners (research institutions, etc.) for purposes consistent with this policy, preferably in an aggregated/anonymized manner.
• In Case of Corporate Transaction: In mergers, acquisitions, etc., with prior notice.
• With Your Consent: For other purposes, with your explicit authorization.

Aggregated and Anonymized Data: We may share data that does not identify you for research, trend analysis, etc.

We do not sell, rent or commercialize your personal information.

7. Data Security

We implement robust technical and organizational security measures to protect your data, including:

• Encryption of data in transit and at rest.
• Strict access controls and authentication.
• Continuous security monitoring.
• Secure backups and recovery plans.
• Employee training.
• Vulnerability management.
• Incident response plan.

Despite our efforts, no security is absolute. It is also your responsibility to protect your access credentials.

8. Your Rights and Choices (LGPD)

You have rights over your personal data:

• Access: Request a copy of your data.
• Rectification: Correct incorrect data.
• Deletion: Request deletion of your data (subject to legal exceptions).
• Restriction: Limit how we use your data.
• Portability: Receive your data in a portable format.
• Opposition: Object to certain types of processing.
• Withdraw Consent: Cancel permissions previously granted.
• Petition to ANPD: File a complaint with the data protection authority.

To exercise your rights, contact our Data Protection Officer (DPO) at contato@deepevidence.ai. We will respond within 15 days.

9. Data Retention

We retain your data only for as long as necessary for the purposes described, complying with legal (e.g., tax) or operational requirements. Account data is maintained while the account is active and for a reasonable period after closure. Other data follows specific periods or is anonymized/deleted when no longer needed.

10. International Data Transfers

Your data may be processed in Brazil or other countries where our service providers operate (e.g., USA, EU). We ensure that international transfers occur with adequate safeguards (contractual clauses, etc.) to protect your data. By using the Services, you agree to these transfers.

11. Use by Minors

The Services are not intended for persons under 18 years of age. We do not intentionally collect data from minors. If we learn that we have done so, we will remove the data.

12. Cookies and Similar Technologies

We use essential, functionality and analytical cookies to operate the site/app and improve the experience. You can manage cookies in your browser settings.

13. Updates to this Policy

We may update this policy periodically. The most recent version will always be available on the Services, with the date of the last update. We will notify you of significant changes.

14. Contact and Complaints

Questions or concerns about privacy? Contact us:

• Company: AnestCopilot LTDA (operating Deep Evidence)
• Email: contato@deepevidence.ai
• Phone: (31) 98472-2664
• Address: Rua Rio Grande do Norte, 1435 Sala 708, Pavimento 7, Savassi, Belo Horizonte/MG CEP 30130-138
• Data Protection Officer (DPO): Gabriel Melo de Paula - contato@deepevidence.ai

You may also file complaints with the National Data Protection Authority (ANPD).

15. Data Governance

We maintain a data governance program with an internal committee, impact assessments, training and audits to ensure compliance.

16. Ethical Considerations

We are committed to ethical practices in the development and use of AI and collaboration with the scientific and professional community.

By using Deep Evidence Services, you acknowledge that you have read and understood this Privacy Policy.