Privacy Policy
Last updated: June 2026
The short version
- Your health records live on your phone, not on our servers. We’re a way for you to see and carry your own health information — we don’t keep a copy of it.
- We never sell your data, never show you ads, and never share your health information with anyone unless you tell us to.
- You’re in control: you choose what to add, who to share with, and you can delete everything at any time.
1. Who we are
MediBrief is a personal health record (PHR) app. The operating entity is currently being incorporated; its registered name, identifier and address will appear here once registered. For the purposes of India’s Digital Personal Data Protection Act, 2023 (DPDP Act), we are the Data Fiduciary for the limited personal data described below. MediBrief is built to work with the Ayushman Bharat Digital Mission (ABDM) to let you access your own health records.
2. Our core promise — device-first
MediBrief is device-first. This means:
- Your health records, Emergency Card, and uploaded files are stored encrypted on your own phone — not on our servers.
- When records are fetched from a hospital through ABDM, they pass through our system only briefly to reach your phone, and are never stored by us.
- Our servers hold only the bare minimum needed to run the app securely (see §4) — and no health information.
3. The data we handle, and where it lives
Health records (fetched via ABDM)
Where: Your phone only, encrypted
Notes: We keep no copy.
Emergency Card & family cards
Where: Your phone only, encrypted
Notes: You type these in yourself.
Uploaded files (vault)
Where: Your phone only, encrypted
Notes: Your own files; never sent anywhere unless you share them.
Login secrets (e.g. Aadhaar/OTP used for ABHA)
Where: Encrypted on your phone before sending; never stored by us
Notes: We never keep your raw Aadhaar number or OTP.
Account basics
Where: Our servers (in India)
Notes: A random account ID, a one-way scrambled version of your ABHA address, and your device’s notification token. No name, no profile, no health data.
App logs
Where: Our servers (in India), kept 180 days
Notes: Technical logs for security; contain no health information.
All of this stays within India.
4. What we do — and don’t do — with your data
- We do: use the minimal account data above only to log you in securely, deliver notifications, and keep the service safe.
- We do NOT: sell your data · show advertising · build advertising profiles · share your health information with any third party for their own use · keep copies of your medical records.
5. Sharing your health records (ABDM consent)
You can use MediBrief to fetch your records from hospitals and labs connected to ABDM. This only ever happens with your explicit consent, and every consent request tells you, in plain language: what data is requested, who is asking, why, and for how long.
You can view, and withdraw (revoke), any consent at any time from within the app. When a consent is revoked or expires, the records fetched under it are deleted from your phone.
6. Children and family cards
You can add Emergency Cards for family members, including children. When you do:
- You (the adult/guardian) enter the information yourself, and it stays encrypted on your phone only.
- We do not process, transmit, profile, or track any family member’s data, and never use a child’s data for advertising or behavioural monitoring.
- Please only add information for a person you are responsible for, or have permission to carry.
7. Your rights
Under the DPDP Act you can access, correct, and erase the personal data we hold, nominate someone to act for you, and raise a grievance (see §11).
Because your health data lives on your device, you control most of it directly in the app — you can delete any record, card, or file yourself at any time, and use “Delete my data” to remove your account and the minimal server data we hold.
8. How we protect your data
- Strong encryption of everything stored on your phone (AES-256), with a biometric/PIN app-lock for your records and files.
- Encrypted connections (TLS) for everything sent over the internet.
- Records arriving from hospitals are end-to-end encrypted (ABDM Fidelius) so only your app can open them.
- Our servers follow security best practices and hold no health data to lose.
9. Keeping data only as long as needed
- Records fetched under a consent are deleted when that consent ends (revoked, expired, or purpose served).
- You can delete anything manually at any time.
- Technical logs (no health data) are kept 180 days as required by Indian cybersecurity rules, then removed.
10. If something goes wrong (data breach)
If a personal-data breach affecting you occurs, we will tell you without undue delay, report it to the Data Protection Board of India as required, and notify CERT-In within the required timeframe. We’ll explain what happened and what you can do.
11. Contact & grievances
Questions or complaints about your data? Contact our Grievance Officer at [email protected]. We aim to resolve grievances within 90 days (DPDP Act). If unsatisfied, you may approach the Data Protection Board of India. (A dedicated grievance officer and address will be named here once the entity is registered.)
12. Changes to this policy
We’ll update this policy as MediBrief grows (for example, when the AI Brief feature — currently “Coming soon” and not yet processing any data — launches). We’ll notify you of material changes in the app.