Privacy Policy

How PK-Swift handles your data — and what it doesn't collect.

Privacy at a Glance

Core PK computations (NCA, BE, NPS, IVIVC, Graph Studio) run entirely in your browser using JavaScript. No data is transmitted to any server. Your PK data never leaves your machine.
AI Parse (optional): Text you paste into the AI Parse field is sent to Google's Gemini API for processing. Third-party data handling policies apply. Do not paste sensitive or patient-identifiable data.
  • No user accounts — PK-Swift has no login, no registration, no user database.
  • No server storage — PK-Swift does not store your PK data, analysis results, or inputs on any server.
  • No tracking cookies — PK-Swift does not use advertising cookies or cross-site tracking.
  • Your API key — stored only in your browser's localStorage. Never transmitted to PK-Swift servers.

1. Information We Collect

1a. Automatically Collected Information

When you visit pk.vibed-lab.com, standard web server logs may capture:

  • Device information: Browser type and version, operating system, screen resolution
  • Access information: IP address, access time, pages visited, referring URL
  • Usage information: Which analysis modules you open (anonymized)

This information is used solely for service improvement and security monitoring.

1b. User-Provided Information

PK-Swift does not collect or store user-provided PK data. Specifically:

  • PK data you enter or upload: Processed entirely in-browser. Never transmitted to our servers.
  • Gemini API key: Stored only in browser localStorage. Never sent to PK-Swift servers.
  • Browser settings/preferences: Stored only in localStorage. Not synced or transmitted.

2. AI Parse — Third-Party API Usage

The AI Parse feature uses the Google Gemini API to intelligently extract pharmacokinetic data from unstructured text. This is an optional feature. When you use AI Parse:

  • The text you paste into the AI Parse input field is sent to Google's Gemini API servers for processing.
  • Your Gemini API key (stored locally in your browser's localStorage) is used to authenticate the request.
  • Google's data handling policies apply to any data sent through the Gemini API. Free-tier API users should be aware that Google may use free-tier API input/output data to improve its models, as stated in Google's Gemini API Terms of Service.
  • Do NOT paste sensitive, confidential, patient-identifiable, or proprietary data into AI Parse unless you have reviewed and accepted Google's data usage policies for your API tier.
  • Paid API tier users may have different data handling terms — consult your Google Cloud agreement.

Smart Parse — Fully Offline Alternative

Smart Parse (offline rule-based parser) requires no API key and sends no data externally. It operates entirely within your browser. If data privacy is a concern, use Smart Parse as a safe alternative to AI Parse.

3. Third-Party Services

PK-Swift uses the following third-party services. Each has its own privacy policy:

  • Google Gemini API: Used for AI Parse feature (optional). Subject to Google's Privacy Policy and Gemini API Terms.
  • Google Fonts: Loads the Inter and JetBrains Mono fonts from fonts.googleapis.com. Google may log your IP address as standard server access logging.
  • jsDelivr CDN: Loads Font Awesome icons. May log IP addresses as standard server access logging.

PK-Swift does not use Google Analytics, advertising networks, or any other tracking or analytics service.

4. Your Rights

GDPR (EU/EEA Users)

If you are located in the EU or EEA, you have the following rights under the General Data Protection Regulation:

  • Right of Access: Request information about what personal data we hold.
  • Right to Rectification: Request correction of inaccurate data.
  • Right to Erasure: Request deletion of your personal data.
  • Right to Restriction: Request restriction of processing.
  • Right to Data Portability: Receive your data in a portable format.
  • Right to Object: Object to processing of your personal data.
  • Right to Lodge a Complaint: Lodge a complaint with your national Data Protection Authority.

Note: Because PK-Swift processes data client-side and does not maintain a user database, most standard GDPR data subject requests can be fulfilled by clearing your browser's local storage.

CCPA (California Users)

California residents have the following rights under the California Consumer Privacy Act:

  • Right to Know: Know what personal information is collected, used, shared, or sold.
  • Right to Delete: Request deletion of personal information we hold.
  • Right to Opt-Out: PK-Swift does not sell personal information.
  • Right to Non-Discrimination: Not be discriminated against for exercising CCPA rights.

5. Data Security

PK-Swift's architecture is designed with privacy as a default:

  • All PK computations run in-browser using JavaScript — no data is transmitted to servers.
  • PK-Swift has no backend server that stores user data.
  • Your Gemini API key is only stored in your browser's localStorage — you can delete it at any time through your browser settings.

6. Children's Privacy

PK-Swift is designed for pharmacists, researchers, students, and professionals. It is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13.

7. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated date. We encourage you to review this policy periodically.

8. Contact Us

For privacy-related inquiries:

Last updated: March 6, 2026. This policy may be updated periodically.

Full Disclaimer & Legal Notice  ·  FAQ