Last updated: 4/20/2026 ยท TrialReferrals / BioAlma
TrialReferrals is operated by BioAlma (DMBranco, Inc.), a clinical research intelligence platform. We facilitate connections between physicians, patients, and clinical trial sites worldwide. Questions or data requests: hello@bioalma.ai
We collect data you provide directly (name, email, medical condition, referral information) and usage data (anonymised IP, browser type, pages visited). We do not collect sensitive health data beyond what you explicitly provide for trial matching.
We use your data to match patients with relevant clinical trials, notify you about trial openings near you, respond to contact requests, and improve our platform. We do not sell personal data to third parties.
Patient data is NOT shared with trial sponsors. We share only anonymised, aggregated data with sponsors for recruitment intelligence purposes. Individual data may be shared with participating research centres and CROs solely to facilitate a referral, and only with your explicit consent.
We comply with applicable privacy regulations including: GDPR (EU/EEA), LGPD (Brazil), HIPAA (United States), PIPEDA (Canada), PDPA (Thailand/Singapore), and POPIA (South Africa). Where regulations conflict, we apply the stricter standard.
We retain personal data for as long as necessary to provide our services, or as required by law. You may request deletion of your data at any time by contacting hello@bioalma.ai.
Depending on your jurisdiction, you may have the right to access, correct, delete, or port your personal data; withdraw consent; and lodge a complaint with your local supervisory authority. Contact us at hello@bioalma.ai to exercise any of these rights.
We use only essential cookies required for platform functionality. We do not use advertising or tracking cookies. You may disable cookies in your browser settings without affecting core functionality.
Personal data is encrypted at rest (AES-256) and in transit (TLS 1.3). Patient identifiers are stored as cryptographic hashes. We implement access controls, audit logging, and regular security reviews.
We will notify registered users of material changes to this policy by email. Continued use of the platform after changes constitutes acceptance.