Who we are

Medlexion Technologies LLP is an India-based software business that provides digitally delivered product systems, including workflow software, documentation systems, and related online services.

Privacy contact: privacy@medlexion.com

Scope of this policy

This Privacy Policy explains how Medlexion collects, uses, stores, shares, and protects personal data when you:

• Visit our website
• Contact us
• Request a conversation or commercial response
• Use one of our product systems
• Interact with billing, support, or implementation processes

Categories of data we may collect

• Identity and contact data, such as name, email, phone number, organisation, job role, and billing contact details
• Account and workspace data, such as login details, access events, user role, and configuration state
• Commercial and billing data, such as invoice references, billing status, payment metadata, and tax-related information
• Usage, device, and security data, such as IP address, browser type, logs, timestamps, device information, and security events
• Customer-provided content, such as uploaded files, documents, chronology entries, messages, notes, or other workflow materials
• Support and communications data, such as support requests, implementation discussions, or service-related correspondence

We do not store full payment card details.

How we use personal data

• Provide, operate, support, and improve our services
• Create and manage accounts or workspaces
• Process billing, payments, refunds, and tax-related obligations
• Secure systems, prevent fraud, and investigate misuse
• Communicate with customers, prospects, and authorised users
• Maintain records, chronology, evidence handling, and workflow integrity where relevant
• Comply with legal, regulatory, tax, and contractual obligations

Legal bases

• Performance of a contract
• Steps requested before entering a contract
• Legitimate interests, including security, fraud prevention, service improvement, and operational integrity
• Compliance with legal obligations
• Consent, where legally required

Processors and service providers

We may use carefully selected service providers for areas such as hosting and infrastructure, authentication and email delivery, payment processing, customer communications, storage and security operations, analytics and service monitoring, and AI-assisted workflow or document processing where applicable.

International transfers

Medlexion is based in India and may process data in India and in other jurisdictions where relevant providers operate. Where personal data subject to EU or UK data protection rules is transferred outside the applicable region, Medlexion uses appropriate safeguards where required.

Retention

We retain personal data only for as long as reasonably necessary for service delivery, security and audit purposes, billing and tax compliance, legal or contractual recordkeeping, and dispute handling or enforcement where relevant.

Your rights

Depending on applicable law, you may have rights to access your personal data, correct inaccurate data, request deletion, restrict or object to processing, receive portability where applicable, withdraw consent where processing depends on consent, and lodge a complaint with a relevant supervisory authority.

To exercise a privacy request, email privacy@medlexion.com.

Security

We use reasonable technical and organisational measures to protect personal data against unauthorised access, misuse, loss, or unlawful disclosure. No system can guarantee absolute security, but Medlexion takes data protection seriously.

Product context

Some Medlexion products are designed for documentation-heavy, review-heavy, or dispute-related workflows. In such contexts, uploaded or workflow-linked materials may include personal data or commercially sensitive records supplied by customers or authorised users.

Changes

We may update this Privacy Policy from time to time to reflect legal, operational, or product changes. The latest published version on the website will apply from its effective date.