Legal

Privacy Policy

Last updated: January 2026

Data Controller

Bio-AI-Logic / Dr. Åsa Hidmark
Wolfgartenweg 11, 695 09 Mörlenbach, Germany
Email: asa.hidmark@bio-ai-logic.com

What This Service Does

Bio-AI-Logic provides AI-assisted manuscript review services for scientific journals, editors, and authors. This involves receiving and analyzing scientific manuscripts to verify that claims are supported by the presented data.

How Manuscript Submission Works

There is no open upload form. To submit a manuscript for review:

  1. You first contact me via the request form or email.
  2. I generate a dedicated, secure upload link for your submission.
  3. You upload your files to that link. You cannot view or download other files in that folder.

This website does not store manuscript files. All uploads go directly to my EU-hosted Nextcloud instance.

Technical Architecture

  • Manuscripts are stored on an EU-based, GDPR-compliant Nextcloud instance under my control.
  • Files are transferred via encrypted connections (HTTPS/WebDAV).
  • Analysis runs locally on my secured work machine against synced Nextcloud folders.
  • This website only provides information and contact functionality—it does not hold manuscript files.

Categories of Material

Published / Open Access Articles

For publicly available PDFs, I may store the document and extract bibliographic metadata (title, authors, journal, DOI). This information and analysis results may be retained, as these are public documents.

Unpublished Manuscripts

For manuscripts not yet published, stricter rules apply:

  • Original files remain only in Nextcloud and my local synced copy.
  • Files are treated as confidential and never shared.
  • My pipeline produces a separate, de-identified analysis record.

De-identification of Analysis Data

Both analysis input and output are intentionally de-identified. The analysis data does not contain:

  • Author names or affiliations
  • Journal name or target journal
  • Manuscript title
  • Submission dates to journals

It does contain:

  • An internal submission ID
  • Date I received the manuscript
  • Structured experimental information (figure design, controls, variables)
  • Analytical outputs from my review pipeline

This de-identified data may be retained for improving the review pipeline, quality assurance, and demonstrating capabilities in an anonymized way.

How AI Is Used

De-identified manuscript data is sent to AI services via API for analysis. Important safeguards:

  • No full manuscripts are ever sent to AI. The document is broken into components.
  • Figures are analyzed individually by a separate image model.
  • Text sections (methods, results, etc.) are sent separately—no AI ever sees the complete manuscript text.
  • All data sent to AI is de-identified before transmission.

Retention and Deletion

For unpublished manuscripts:

  • Original files are kept for 4 weeks, or until manuscript publication if agreed.
  • After this period, raw files and any personal identifiers are deleted.
  • Only de-identified analysis data is retained long-term.

Personal Data I Process

When you contact me or submit manuscripts, I process:

  • Name
  • Email address (typically institutional)
  • Institutional affiliation
  • Information you include in your messages

This information lives in my email system and a minimal contact log mapping submission IDs to contacts. The analysis data itself does not contain your email or personal details.

Legal Basis (GDPR)

Processing is based on:

  • Article 6(1)(b): Performance of a contract or steps prior to entering a contract—providing the requested analysis service.
  • Article 6(1)(f): Legitimate interest in developing and maintaining analytical tools, balanced by strong de-identification and limited retention.
  • Article 6(1)(c): Compliance with legal and accounting obligations where applicable.

Journal and Editor Agreements

When editors or journals provide unpublished manuscripts, this occurs under explicit agreement. I apply the same protections: secure storage, limited retention of raw files, de-identified analysis, and no sharing with third parties.

Your Rights

Under GDPR, you have the right to:

  • Access the personal data I hold about you
  • Rectification of inaccurate personal data
  • Erasure of personal data where applicable (note: anonymized analytical data can no longer be linked back to you)
  • Object to processing based on legitimate interests
  • Data portability where technically feasible
  • Lodge a complaint with a supervisory authority

To exercise these rights, contact me at: asa.hidmark@bio-ai-logic.com

Contact

For any questions about this privacy policy or how your data is handled:
Bio-AI-Logic / Dr. Åsa Hidmark
asa.hidmark@bio-ai-logic.com