Short version: Clifton does not collect or store your data. Your profile is saved only in your own browser and is never sent to us. When you run a search, anonymized health information (condition, age, medical history) is sent to Google Gemini AI to improve matching quality. No names or identifying information are included. See details below.
What we collect
Clifton has no database, no user accounts, and no server that stores your information. There are no analytics trackers, no advertising cookies, and no third-party tracking scripts of any kind. However, when you run a search, portions of your profile are transmitted to Google Gemini AI (see below).
Where your profile is stored
The profile you build — including condition, age, sex, medical history, medications, and preferences — is saved only in your browser's localStorage. It never leaves your device unless you explicitly export it. Clearing your browser data will delete it.
Third-party services contacted
When you run a search, Clifton makes external requests on your behalf:
- Google Gemini AI — to improve search quality and generate trial summaries, the following profile fields are sent to Google's Gemini API: condition, age, sex, comorbidities, current medications, recent procedures, free-text notes, and preferences (dealbreakers / must-haves). No name, contact information, or other identifying details are included. You use this feature at your own risk. Do not enter information that could identify you (full name, address, insurance ID, etc.). Google may process and retain this data in accordance with their own terms. Google Privacy Policy →
- ClinicalTrials.gov — your condition name and any additional keywords are sent as a search query. No other profile information is included. This is the same search you would perform manually on clinicaltrials.gov. NLM Privacy Policy →
- Zippopotam.us — if you enter a ZIP code, it is sent to this free geocoding service to calculate distances to trial sites. No other information is included. Zippopotam.us →
All requests are proxied through a Vercel edge function to allow caching and to avoid exposing raw API URLs client-side. Vercel may log request metadata (IP address, timestamp) in accordance with their own privacy policy. Vercel Privacy Policy →
Cookies
Clifton does not set any cookies. Your theme preference (light/dark) and trial search snapshots are stored in localStorage, not cookies.
Open source verification
You don't have to take our word for it. Clifton is fully open source. You can review exactly what the code does — including all network requests — on GitHub.
Changes to this policy
If we ever change how data is handled, we will update this page and note the date. Given the zero-collection architecture, changes are unlikely.
Questions? Open an issue on
GitHub.
