Last updated: 06/03/2026

Who we are

We are Rad at Hand LLC and our website address is: https://radathand.com.

Data We Collect

Information Collected by Our Website

Comments

When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment. This site uses AntiSpam Bee to reduce spam.

Media

If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Cookies

If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

We collect your public profile data only from your consent that you grant before initiating Social Login, from the social network used to login at our website. This data includes your first name, last name, email address, link to your social media profile, unique identifier, link to social profile avatar. This data is used to create your user profile at our website. You can revoke this consent at any time from your profile page at our website or by sending us an email.

Information Collected by Our Mobile Applications (“Apps”)

When you use our mobile applications (“Apps”), we may collect certain information automatically in addition to the data mentioned elsewhere in this policy. This is done to ensure the functionality and stability of the Apps.

Diagnostics and Crash Data

To improve the stability and performance of our Apps and to identify and fix bugs, we use third-party diagnostic services, such as Sentry. These services automatically collect certain information when the App is in use, and particularly if it crashes. The data collected includes, but is not limited to:

  • Crash Data: Crash logs and stack traces which detail the state of the App at the time of an error.
  • Performance Data: Information about the App’s performance, such as launch time and responsiveness.
  • Usage Data: A trail of events (known as “breadcrumbs”) that led up to an error, such as taps and screen navigation. This helps us understand the context of a problem.
  • Device and OS Information: The device model, operating system version, screen orientation, and other technical specifications.
  • Identifiers: An anonymous device-level identifier is collected to distinguish one device’s errors from another and to understand the scope of an issue (e.g., how many users are affected). Your IP address may also be collected as part of this process.

This diagnostic data is used exclusively for internal purposes to maintain and improve the functionality of our Services. This data is not used for tracking you across other companies’ apps or websites, nor is it used for advertising. For more information on Sentry’s data practices, you can review their privacy policy at sentry.io/privacy/.

Device Permissions and Motion Data

Our Apps may request access to your device’s motion sensors (accelerometer). We use this access solely to enable the “Shake to Feedback” feature, which allows you to report issues or send feedback by physically shaking your device.

Important: This motion data is processed locally on your device in real-time to detect the specific gesture. We do not record, store, or transmit your raw motion data to our servers or any third parties.

Data You Provide & Account Information

While the core functionalities of our Apps may be used without an account, certain features, such as institutional access or cloud syncing, require you to register and create an account. When you register an account, we collect personal information, which may include:

  • Identifying Information: Your name and email address.
  • Institutional Information: If applicable, the name of your institution.
  • Authentication Information: Your password (which is hashed and cannot be seen by us) or an authentication token if you sign in using a third-party service.

This information is necessary to create your account, manage your entitlements, provide you with access to premium features, and allow you to sync certain data across your devices.

Device and Account Security Information

To protect the security of your account and enforce licensing terms for certain types of access (such as institutional or group plans), we collect a unique, anonymized identifier for each device you use to log into our Apps. This identifier is generated by the App upon installation and is not tied to your device’s physical hardware serial numbers.

This identifier is associated with your account solely for the purpose of managing the number of active devices linked to your account and preventing unauthorized password sharing. We also collect basic, non-personal technical information about the device, such as its model and operating system version, to help you identify your devices. This information is not used for advertising or for tracking you across other companies’ apps or websites.

Abuse Prevention: We use Google Firebase App Check to protect our API resources from abuse. Depending on your device and platform, this service may utilize providers such as reCAPTCHA Enterprise, Apple App Attest, or Google Play Integrity. These providers may collect data about your device and software environment to verify that requests are coming from our authentic App and not from bots, scripts, or modified clients.

Third-Party Login (Google & Apple)

If you choose to register or log in to our Services using a third-party service like Google or Apple, we may receive certain profile information about you from that provider. The information we receive varies and depends on the provider and your privacy settings, but will typically include your name, email address, and a unique identifier. We will use the information we receive only for the purposes that are described in this privacy policy. Please note that we do not control, and are not responsible for, other uses of your personal data by your third-party social media provider. We recommend that you review their privacy policy to understand how they collect, use, and share your personal information.

Information related to in-app subscriptions purchased through the app stores is managed by the respective app store (Apple App Store or Google Play Store), and we do not have access to your payment information.

Performance and Learning Data

To provide you with personalized progress tracking, spaced repetition algorithms, and study consistency metrics, we collect and store data related to your interactions with the QBank content. This includes, but is not limited to:

  • Quiz Performance: Your scores, time spent per question, the specific answers you select, and whether they were correct or incorrect.
  • Flashcard Data: The flashcards you review, your self-reported mastery levels (e.g., “Learning,” “Mastered,” “Suspended”), and the resulting spaced-repetition intervals generated by our algorithms.
  • Study Habits: Timestamps of your completed sessions, your current and longest study streaks, and the specific chapters or topics you engage with.
  • User-Generated Content: Any custom notes, highlights, or flashcards you create within the App.

This data is synced to your account via Google Firebase to ensure your progress is preserved across devices and is not lost if you uninstall the App.

Information Collected Through Optional CaseBank Research Studies

Some Radiology CaseBank courses may include an optional research component. You may access the educational materials whether or not you choose to participate in research. If you decline research participation, are found ineligible, or withdraw from a research component, you may still use the educational portion of the course when access is otherwise available.

If you choose to participate in a CaseBank research study, we may collect and store information related to that specific study and course, including:

  • Research participation status: Whether you opted in, declined, were found ineligible, withdrew, completed the course, or remain active in the research workflow.
  • Information Sheet acknowledgment: A record that you reviewed and acknowledged the study information provided through the course page or research modal.
  • Eligibility and demographics responses: Responses to course-specific eligibility screening and demographic or background questions.
  • Case performance data: Responses to research case questions, correctness where applicable, confidence ratings if configured, and related course progress.
  • Timing data: Case-level timing information, such as time to first answer submission or time to opening intervention teaching content, when collected as part of the research workflow.
  • Study ID: A randomly generated research Study ID used to identify your research data in exports and analysis.

Research response data is stored using a Study ID rather than your name or email address. The key linking your website account to your Study ID is stored separately from research responses and performance data. Normal research exports are designed to use the Study ID and not your name, email address, WordPress user ID, IP address, or browser user agent.

We do not intentionally collect patient protected health information through research questions, demographics forms, free-text responses, or intervention content. You should not enter patient names, medical record numbers, accession numbers, dates of birth, dates of service, initials, contact information, or other patient identifiers into any free-text field.

If you withdraw from a CaseBank research study, we will stop collecting research data for that course and will delete your research responses, demographics responses, case attempts, and the participant key linking your account to your Study ID, except where retention is required for administrative, legal, regulatory, audit, or IRB-related purposes. We may retain a minimal course-specific status record showing that withdrawal occurred so that we can honor the withdrawal, prevent re-enrollment into the same research workflow when applicable, and maintain study accountability records.

Research data may be reviewed by authorized members of the study team, site administrators who maintain the platform, and, when applicable, institutional review boards, compliance personnel, or regulatory bodies with appropriate authority. We do not sell research participation data.

Each CaseBank research study may also provide its own Information Sheet or study-specific notice. If there is any difference between this Privacy Policy and a study-specific Information Sheet regarding that study, the study-specific document should be reviewed carefully and will provide additional details about that study’s purpose, procedures, risks, benefits, confidentiality protections, and contact information.

How We Use Your Information

We use the information we collect for various purposes, including to:

  • Provide, operate, and maintain our Services: This includes creating and managing your user account and authenticating you at login.
  • Manage Entitlements: To grant and verify your access to premium features (“Pro Access”), particularly for users under institutional or group licenses.
  • Personalize Your Experience: To sync data you choose to save across your devices.
  • Communicate with you: To send you essential service-related communications, such as account verification emails, password resets, and important updates to our terms or services.
  • Enforce our terms and policies: To protect the security and integrity of our Services and our users.
  • Improve our Services: To analyze usage patterns and fix issues, as described in our “Diagnostics and Crash Data” section.
  • Aggregated Analytics and Peer Comparison: We may anonymize and aggregate your performance data (such as quiz scores and answer selections) with the data of other users. This aggregated, non-identifiable data is used to calculate global statistics, determine question difficulty, and provide peer-comparison features within the App. Your individual identity is never revealed in these aggregated statistics.
  • Conduct optional CaseBank research studies: To manage research opt-in, eligibility screening, study-specific demographics, case sequencing, intervention workflows, response collection, timing measurements, withdrawal handling, Study ID assignment, de-identified analysis, and required study accountability records.

Who we share your data with

We do not sell your private data to any third parties. If you request a password reset, your IP address will be included in the reset email.

In order to provide account functionality, we use Google’s Firebase platform. The personal information you provide for your account (such as name, email, and institution) is stored on Google Firebase’s secure servers. We share this data with them for the sole purpose of providing and managing our Services. For more information, you can review the Firebase Privacy Policy.

Data Shared with Apple for Refund Resolution

To help resolve refund requests that you initiate with Apple, we may share data regarding your usage and consumption of purchased content. By making in-app purchases, you consent to this data sharing. This information may include details about your purchase history, account age, and how you have accessed or interacted with the purchased content. The purpose of sharing this data is to provide Apple with the necessary context to make an informed and fair decision regarding your refund request and to help prevent fraud. We ensure that this data sharing is done in compliance with Apple’s policies and only as necessary to process requests initiated by you.

How long we retain your data

If you leave a comment or share feedback, the contents and their metadata are retained indefinitely. We can use this to recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website, we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

For optional CaseBank research studies, research responses, demographics responses, case attempts, timing data, and Study ID-linked records are retained as needed for the study, analysis, audit, IRB, administrative, legal, and regulatory purposes. If you withdraw from a research study, we will delete your research responses, demographics responses, case attempts, and participant key for that course, except where limited retention is required for administrative, legal, regulatory, audit, or IRB-related purposes. We may retain a minimal status record documenting that withdrawal occurred.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Managing Your Learning Data: You have direct control over your learning data within the App. Through the “Manage Data & Resets” feature in the Settings menu, you can permanently delete your quiz progress, bookmarks, highlights, notes, and flashcard history at any time.

If you participated in an optional CaseBank research study, you may contact us or the study contact listed in the applicable Information Sheet with questions about your research participation, withdrawal, or research data. Depending on the status of the study, applicable law, IRB requirements, and whether data has already been de-identified, aggregated, or analyzed, some research data may not be removable from completed analyses or aggregate results.

Where your data is sent

Visitor comments may be checked through an automated spam detection service. Submitted forms including feedback forms will be stored in administrative email. De-identified educational cases and similar content that you voluntarily submit may be stored and used within our Services and for internal research and product improvement.