Nexus Med News Logo
NexusMedNews
Clinician-led, AI-assisted

Privacy & Cookies

Privacy & Cookies Policy

This page explains how Nexus Med News (“we”, “us”, “the site”) collects and uses personal data and cookies.

The site is intended primarily for clinicians and medically trained readers, but this policy applies to all visitors.

This document is informational and does not constitute legal advice. For full compliance, you should review it with your lawyer or data protection advisor.

1. Who is responsible for your data

Data controller

If you are in the EU, our processing is subject to the General Data Protection Regulation (GDPR).

2. What data we collect

We only collect the data we need to run the site, understand usage, and (optionally) provide subscriptions.

We may process:

  1. Account data

    • Email address
    • Display name and optional profile fields (e.g. affiliation, country)
    • Authentication identifiers from our auth provider (e.g. Clerk user ID)

  2. Usage data

    • Pages visited, buttons clicked, approximate location (country/region), device/browser info
    • This can come from our own logs or analytics tools.

  3. Interaction data

    • Likes/dislikes on articles
    • Saved articles / bookmarks (if implemented)
    • Reports/complaints you send about content (including any text you type)

  4. Payment/subscription data (if you subscribe)

    • Subscription status (plan, active/canceled, renewal date)
    • Limited billing metadata from our payment provider (e.g. Stripe customer/subscription ID)
    • We do not store your full card details; those are handled by the payment provider.

  5. Contact data

    • Messages you send via email or contact forms
    • Any information you choose to include in those messages

  6. Cookies and similar technologies

    • See section 4 for details.

3. Why we process data (legal bases)

Under GDPR, we must have a legal basis for each type of processing.

We typically rely on:

  1. Performance of a contract

    • To provide your account, manage logins, remember your subscription, and give you access to any paid or restricted features.

  2. Legitimate interests

    • To secure the site (logs, abuse prevention)
    • To understand aggregate usage (basic analytics)
    • To improve content and UX We balance these interests against your privacy and implement minimization where possible.

  3. Consent

    • For non-essential cookies and similar tracking (analytics, advertising)
    • For email newsletters or marketing, where required by law You can withdraw consent at any time via cookie settings or unsubscribe links.

  4. Legal obligations

    • To comply with accounting, tax, or regulatory requirements.

4. Cookies and tracking

We use cookies and similar technologies on Nexus Med News. Under EU law (GDPR + ePrivacy rules), non-essential cookies (e.g. analytics, advertising) generally require consent before they are set.

4.1 Types of cookies

  1. Strictly necessary cookies

    • Needed for the site to work: login sessions, security, load balancing.
    • These do not require consent but must be explained.

  2. Analytics cookies

    • Help us understand how many people read which pages, on which devices, and from which regions.
    • We may use privacy-focused analytics or mainstream tools (e.g. Google Analytics) depending on what we finally configure.
    • These cookies require consent if they can identify or profile users.

  3. Advertising / AdSense cookies (planned, not active initially)

    • If and when we enable Google AdSense or similar, advertising partners may place cookies to measure ad performance and deliver relevant ads.
    • These cookies are non-essential and will only be used with your prior consent.

  4. Functional cookies (if used)

    • For preferences such as theme (dark/light mode), language, or saved filters.

4.2 Cookie banner and consent

If you visit from the EU/EEA or other regions with similar rules:

  • On your first visit we will show a cookie banner / consent dialog.

  • Non-essential cookies (analytics, advertising) will be disabled by default until you opt in.

  • You can:

    • Accept all,
    • Reject non-essential cookies,
    • Or choose per category (where supported).

You can change or withdraw your consent at any time via a “Cookie settings” link in the footer.

5. Third-party services

To run Nexus Med News, we rely on external providers acting as processors or independent controllers. Typical categories include:

  • Hosting and infrastructure (e.g. Cloudflare) – to serve the website and protect it from attacks.
  • Database and storage (e.g. Supabase) – to store content, basic user data, and logs.
  • Authentication and user management (e.g. Clerk) – to handle sign-up, login, and account security.
  • Payments (e.g. Stripe, via our auth/billing integration) – to manage subscriptions and billing details.
  • Analytics and advertising (e.g. privacy-focused analytics, Google Analytics, Google AdSense – if enabled).

Each provider processes data under its own terms and privacy policy, and we aim to choose reputable services that offer GDPR-aligned terms and appropriate safeguards for international transfers.

You should review each provider’s privacy policy if you want more detail on how they handle personal data.

6. Data retention

We keep personal data only as long as reasonably necessary for the purposes described above, including:

  • As long as you have an active account.
  • For as long as we need to maintain accurate subscription and billing records (as required by law).
  • For a limited period after account deletion to handle disputes, security investigations, or legal obligations.

We periodically review and delete or anonymize data that is no longer needed.

7. International data transfers

Because we use cloud services, your data may be processed in or transferred to countries outside the EU/EEA.

When this happens, we aim to use standard safeguards recognized by EU law, such as:

  • Standard Contractual Clauses (SCCs) in our contracts with providers, or
  • Providers that participate in recognized frameworks or have data centers in the EU.

8. Your rights under GDPR (if you are in the EU/EEA)

Under GDPR you have several rights regarding your personal data, including:

  • Right to be informed – to know what data we collect and why.
  • Right of access – to obtain a copy of your personal data.
  • Right to rectification – to correct inaccurate or incomplete data.
  • Right to erasure (“right to be forgotten”) – to request deletion of your data in certain circumstances.
  • Right to restriction of processing – to limit how we use your data in specific cases.
  • Right to data portability – to receive your data in a machine-readable format where legally applicable.
  • Right to object – to certain types of processing, including direct marketing where relevant.
  • Rights related to automated decision-making and profiling – we do not currently use fully automated decision-making with legal or similarly significant effects.

To exercise any of these rights, contact us at: [email protected]. We may need to verify your identity before acting on your request.

You also have the right to lodge a complaint with your local data protection authority if you believe we are not handling your data lawfully.

9. Children’s data

Nexus Med News is aimed at adult audiences (clinicians and medically informed readers) and is not intended for children under 16. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us so we can delete it.

10. Changes to this policy

We may update this Privacy & Cookies Policy from time to time. When we make material changes, we will:

  • Update the “Last updated” date at the top, and
  • Where appropriate, show a notice on the site or send an email to registered users.