1. Information we collect
1.1 Information you provide
- Account info: name, email, password.
- Profile: medical specialty, exam date, graduation year, MBBS score, college, attempts.
- User-generated content: MCQ submissions, comments, notes, bookmarks, flagged content.
- Payment proof: JazzCash/EasyPaisa transaction IDs you submit. Card payments are processed by Stripe / Google Play; we never see your card details.
1.2 Collected automatically
- Usage: MCQ answers, mock scores, study progress, XP, streaks, time per question.
- Device: device type, OS version, push notification token (mobile only).
- Analytics: aggregated app/web usage patterns to improve the platform.
1.3 What we do NOT collect
- Your location.
- Your contacts, camera, microphone, or files (except files you voluntarily upload with an MCQ submission).
- Biometric data.
2. How we use your information
- Provide and personalise the Service — study plans, progress tracking, weak-area analysis.
- Calculate Exam Readiness Score and performance analytics.
- Manage your account, free trial, and premium activation.
- Run the referral and contribution-rewards programmes.
- Send notifications you've opted into (daily challenge, streak reminders, exam countdown).
- Moderate user-submitted content and maintain quality.
- Improve the Service via aggregated, anonymised analytics.
- Respond to support requests.
3. Data storage and security
Data is stored on secure servers (Hostinger), with the database protected by strong credentials and restricted access. Auth tokens are stored in encrypted, platform-native secure storage on device.
- JWT auth with short-lived access tokens and encrypted refresh tokens.
- API rate limiting on every sensitive route.
- Server-side validation of all input.
- Daily automated database backups, 30-day retention.
- HTTPS encryption for all traffic in transit.
4. Data sharing
We do not sell, trade, or rent your personal information. We share data only when:
- Anonymised community stats: aggregated MCQ accuracy is visible to all users — no personal identification.
- Leaderboards: your name and score appear if you opt in.
- Service providers: Google (Firebase, Play Billing), Expo (push notifications), Stripe (international payments).
- Legal: only when required by law or legal process.
5. Your rights
6. Data retention
We retain your personal data while your account is active. After deletion, all personal data is permanently removed from our servers within 24 hours. Anonymised aggregated stats (e.g. community accuracy %) may be retained indefinitely as they cannot be linked to any individual.
7. Children's privacy
ReviseFCPS1 is designed for medical graduates preparing for professional exams. It is not intended for anyone under 16. We do not knowingly collect data from children under 16; if we become aware we have, we delete it promptly.
8. Third-party services
Card payments are processed entirely by Google Play (Android) or Stripe (web). We never store payment method details.
Used to understand usage patterns. Data processed per Google's privacy policy.
Mobile push delivery. Your push token is stored on our servers.
9. Changes to this policy
We may update this policy from time to time. Changes are posted in-app and on this page. Continued use after changes constitutes acceptance. We notify you of significant changes via push or email. The "Last updated" date at the top reflects the most recent revision.
10. International users
Your data may be transferred to and processed on servers located in different jurisdictions. By using the Service, you consent to this transfer.