ORTHODIGEST

Legal

Privacy Notice

Last updated: April 2026

What this is

Ortho Digest is an independent educational tool that scans publicly available orthopaedic literature and delivers structured weekly summaries to subscribers. This notice explains what personal information we collect, how we use it, and your rights regarding that information.

Information we collect

We collect only:

  • Your email address - provided voluntarily when you subscribe. This is the only personal information we store.
  • Preferences you set - subspecialty interests and summary depth settings, stored against your email address.
  • Saved articles and notes - studies you bookmark or annotate within the app, stored against your account.

We do not collect your name, location, payment details, or any health information. We do not use browser cookies for tracking.

How we use your information

  • To deliver your weekly digest email every Monday.
  • To generate your personalised digest based on selected subspecialties.
  • To send one-click magic link login emails when you request access.
  • To store your library, saved articles, and reading preferences.

We do not use your email for any marketing beyond the digest you signed up for.

Authentication - no passwords

Ortho Digest uses magic link authentication. When you log in, we email you a time-limited one-click link. No password is ever created or stored. Magic link tokens are hashed before storage and expire after 72 hours. Clicking the link issues a short-lived session token (JWT) stored only in your browser.

Third-party services

We use the following external services to operate the platform:

  • PubMed / NCBI - article metadata (title, authors, abstract, journal, date) is fetched from the public PubMed API. No personal data is sent to PubMed.
  • OpenAI / Anthropic - article abstracts and metadata are sent to an AI provider to generate structured summaries. Only article content is transmitted - no subscriber email addresses or personal data are ever included.
  • Railway - our hosting infrastructure. Data is stored on Railway-managed servers.
  • SMTP email provider - your email address is used solely to deliver your digest and authentication emails.

We do not sell your data to any third party.

Data retention and deletion

Your email address and preferences are retained for as long as your subscription is active. You can unsubscribe at any time using the unsubscribe link in any digest email, which removes your address from future deliveries. To request full deletion of your account and all associated data, email us at orthodigestsender@gmail.com.

Security

We apply standard security practices including hashed token storage, HTTPS delivery, and environment-variable secret management. No system is completely secure; we cannot guarantee absolute security of transmitted data.

Changes to this notice

We may update this notice as the platform evolves. Material changes will be noted by an updated date at the top of this page.

Contact

Questions about this notice can be sent to orthodigestsender@gmail.com.