← Back to Legal

Terms of Service

Conditions Générales d’Utilisation (CGU)

Article 1 — Definitions

“ClinicalOS”

The clinical trial operating system developed and operated by ClinicalOS, Switzerland.

“Platform”

The ClinicalOS web application, APIs, and all associated services accessible at clinicalos.com.

“User”

Any individual who accesses the Platform through an authorized account.

“Organization”

The legal entity (pharmaceutical company, CRO, research institution) that holds a subscription to the Platform.

“Service”

The decision support, data aggregation, AI scoring, and trial management features provided by the Platform.

“Data”

Any information processed, generated, or stored within the Platform, including public registry data, user inputs, and AI-generated outputs.

Article 2 — Product Classification

ClinicalOS is classified as a Decision Support Tool. The Platform is designed to assist clinical operations professionals by providing data aggregation, AI-powered scoring, and analytical insights.

ClinicalOS is not validated for GxP-regulated use as a system of record.

All outputs are recommendations requiring human review and validation before use in clinical decisions.

Article 3 — Limitation of Liability

ClinicalOS provides recommendations and decision support. Clinical decisions remain the sole responsibility of the sponsor and their qualified personnel.

  • In no event shall ClinicalOS be liable for clinical outcomes resulting from the use of scoring, ranking, or recommendation outputs generated by the Platform.
  • The Platform does not replace professional medical judgment, regulatory expertise, or the due diligence obligations of clinical trial sponsors.
  • ClinicalOS disclaims all warranties, express or implied, including but not limited to warranties of merchantability, fitness for a particular purpose, and non-infringement.
  • Aggregate liability for any claims arising under these terms shall not exceed the fees paid by the Organization in the twelve months preceding the claim.

Article 4 — Data Processing

ClinicalOS processes data in accordance with applicable data protection laws, including the Swiss Federal Act on Data Protection (FADP) and the EU General Data Protection Regulation (GDPR).

Module 1 — Site and Investigator Intelligence

Uses publicly available data only (ClinicalTrials.gov, PubMed, EudraCT, WHO ICTRP). No patient-identifiable data is processed in this module.

Data Hosting

All data is hosted in Switzerland on Google Cloud Platform (region europe-west6, Zurich). Data does not leave Swiss or EU jurisdiction.

Future Patient Modules

Modules involving patient data will comply with GDPR Article 9 (special categories of personal data) and require explicit consent and a documented legal basis for processing.

Data Processing Agreement

A Data Processing Agreement (DPA) is available on request for Organizations requiring formal data processing documentation.

Article 5 — AI and Machine Learning

  • AI-generated scores are indicative and not deterministic. Results may vary based on data availability and model version.
  • Model versions are tracked and auditable. The current model version is accessible via the Platform interface and API.
  • All AI interactions are logged for traceability, including input hashes, output hashes, model version, and response latency.
  • ClinicalOS does not engage in automated decision-making as defined under GDPR Article 22. All AI outputs require human review before action.
  • Users may request an explanation of any AI-generated score through the Score Explainability panel.

Article 6 — Security

ClinicalOS implements industry-standard security measures to protect user data and platform integrity.

Encryption in Transit

TLS 1.3 for all data in transit between client and server.

Encryption at Rest

AES-256 encryption for all data stored at rest.

Tenant Isolation

Multi-tenant isolation enforced via org_id on all database queries.

Access Control

Role-based access control (RBAC) with 4 permission levels: Super Admin, Org Admin, User, Read Only.

A comprehensive audit trail is maintained for all user actions within the Platform. Audit logs are immutable and retained in accordance with applicable regulatory requirements.

Article 7 — Service Level

  • During the beta period, the Platform is provided on a best-effort basis. No service level agreement (SLA) is guaranteed.
  • Data backups are performed daily. Recovery point objective (RPO) targets are 24 hours.
  • ClinicalOS reserves the right to modify, suspend, or discontinue features with 30 calendar days’ prior written notice to affected Organizations.
  • Scheduled maintenance windows will be communicated at least 48 hours in advance when possible.
  • Enterprise SLA agreements will be available upon general availability (GA) release.

Article 8 — Governing Law

These Terms of Service shall be governed by and construed in accordance with the substantive laws of Switzerland, without regard to its conflict of law provisions.

Any disputes arising out of or in connection with these Terms shall be submitted to the exclusive jurisdiction of the courts of Zurich, Switzerland.

If any provision of these Terms is held to be invalid or unenforceable, the remaining provisions shall continue in full force and effect.

Effective Date: April 1, 2026

ClinicalOS, Switzerland

© 2026 ClinicalOS. All rights reserved.