Back home
MediCard health record logoMediCard
Privacy Policy

Your data. Your rules.

Last updated: April 22, 2026

MediCard is built around one principle: your medical information belongs to you. This policy explains, in plain language, exactly what we collect, how we protect it, who can see it, and the rights you have over it. If anything here is unclear, email us at support@medicard.co.in.

1. What we collect

We only collect what is needed to give you a working medical card:

  • Account info — email address (and OAuth identifier if you sign in with Google or Apple). We never receive your Google or Apple password.
  • Profile info you enter — name, age, gender, blood group, allergies, conditions, current medications and emergency contact.
  • Documents you upload — photos of prescriptions and lab reports, plus the structured data our AI extracts from them (medicines, dosages, lab values, dates).
  • Family member profiles — any additional profiles you create for family members under your account.
  • Minimal technical data — authentication tokens, basic error logs and request metadata strictly required to keep the service running and secure.

We do not collect precise location, advertising identifiers, contacts, microphone or any background sensor data.

2. How your data is stored

  • Encryption in transit — every request between your device and our servers uses TLS 1.2 or higher.
  • Encryption at rest — the database and uploaded files are encrypted on disk by our infrastructure provider.
  • Row-level security — every table enforces database-level rules so one user can never read another user's records, even in the event of a server-side bug.
  • Isolated storage buckets — uploaded prescription and report images are stored with per-user access policies and signed URLs.
  • Hosting — data is stored with our managed backend provider on enterprise-grade cloud infrastructure with physical and network security controls.

3. AI processing of your documents

When you upload a prescription or lab report, the image is sent to a large language model via our managed AI gateway to extract structured fields (medicine names, dosages, test values, ranges). We use this strictly to build your record.

  • Documents are sent over an encrypted connection.
  • We do not use your medical data to train any AI model.
  • Our AI providers are contractually bound not to retain inputs for training purposes.
  • The extracted text is stored only against your own account.

4. Sharing and the QR code

The QR code on your card links to a read-only view of your medical profile. Anyone with the link can view it — that is the point of an emergency card. You control:

  • Whether the share link is enabled at all.
  • Which fields are included on the shared view.
  • Rotating the share ID, which immediately invalidates any old QR codes.

We never share or sell your data with advertisers, data brokers, insurers, employers, or any third party for marketing.

5. Service providers (sub-processors)

To run the service, we rely on a small set of vetted providers:

  • Managed backend & database — hosting, authentication and storage.
  • AI gateway — OCR and structured extraction from your uploads.
  • Email delivery — sending magic links, verification and password-reset emails.
  • OAuth providers — Google and Apple, only when you choose to use them to sign in.

Each provider is bound by a data processing agreement and acts only on our instructions.

6. Your rights

You can, at any time:

  • Access — view every record on your account from inside the app.
  • Correct — edit any field on any record or profile.
  • Delete — remove any individual record, family member, or your entire account. Deleting your account permanently removes your profile, family profiles, prescriptions, reports and uploaded images within 30 days.
  • Export — request a copy of your data by emailing us.
  • Revoke sharing — disable or rotate your QR share link at any time.
  • Withdraw consent — sign out and stop using the service whenever you want.

Depending on where you live (EU/UK GDPR, California CCPA, India DPDP), you have additional statutory rights. We honor all of them globally.

7. Data retention

We keep your data only for as long as your account is active. If you delete your account or are inactive for 24 months, your records are permanently deleted from our active systems within 30 days, and from encrypted backups within 90 days.

8. Children

MediCard is not directed to children under 13 (or under 16 in the EU). Parents and guardians may create family member profiles for minors under their own adult account; the account holder is responsible for that data.

9. Security incidents

If we ever discover a breach affecting your data, we will notify you by email without undue delay and within 72 hours where required by law, along with what happened, what data was involved, and the steps we are taking.

10. Medical disclaimer

MediCard is a personal organization tool. It is not a medical device, does not provide medical advice, and the AI-extracted information may contain errors. Always confirm critical health information with a qualified healthcare professional.

11. Changes to this policy

If we make material changes, we will notify you in-app and by email at least 14 days before they take effect. Continued use after that date means you accept the updated policy.

12. Contact

Questions, requests or complaints? Email support@medicard.co.in. We respond within 7 business days.

This policy is written in plain language. The behaviors it describes are how the product actually works today, not future intentions.