PRIVACY POLICY

(Play Store & App Store Compliant Version)
Effective Date: 22nd February, 2026

1. INTRODUCTION

Toshiko Health Private Limited ("Company", "We", "Our", "Us") operates a digital health platform including mobile applications, web portals, and related services (collectively, the “Platform”).

The Platform enables users to:

Store and manage digital health records
Participate in early disease screening programs
Book appointments
Engage in teleconsultations
Receive health insights and reminders

We are committed to protecting your privacy and complying with applicable data protection laws and platform policies.

By using the Platform, you agree to this Privacy Policy. If you do not agree, please do not use the Platform.

2. INFORMATION WE COLLECT

We collect information only for legitimate healthcare and service-related purposes.

2.1 Personal Information

You may provide:

Full name, Date of birth, Gender
Phone number, Email address, Address
Emergency contact
Profile photograph (optional)

2.2 Health & Medical Information (Sensitive Data)

With your explicit consent, we may collect:

Medical history, Lab reports, Diagnostic reports
Prescriptions, Screening results, Vital readings
Lifestyle health data
Uploaded medical documents
Teleconsultation recordings (only if explicitly disclosed)

This information is classified as Sensitive Personal Data. We collect it solely to provide healthcare-related services.

2.3 Device & Usage Information

We may automatically collect device type, OS version, App version, IP address, crash logs, and app usage statistics. This is used for performance, security, and analytics.

3. PERMISSIONS USED IN MOBILE APPLICATION

We request only necessary permissions.

Camera: Used to capture/upload medical records, profile photos, and enable teleconsultation.
Microphone: Used for teleconsultation audio communication.
Storage / File Access: Used to upload health documents and save/export reports.
Location: Used to show nearby hospitals and relevant health services. Location data is not permanently stored.

Health Data Integration: If you connect health services (e.g., Health Connect), we access only data you explicitly authorize. We do not sell or misuse health data. Use of Health Connect data complies with the Health Connect Permissions Policy including Limited Use requirements.

4. GOOGLE ACCOUNT INTEGRATION (OPTIONAL)

If you connect your Google account, we may access Gmail data in read-only mode to identify medical reports, import lab reports/appointments, and consolidate prescriptions.

We do NOT send emails, modify emails, or share Gmail content with advertisers. Use of Google data complies with the Google API Services User Data Policy including Limited Use requirements.

5. HOW WE USE YOUR INFORMATION

We use your information to provide health record services, deliver screening programs, improve healthcare outcomes, and ensure security. We do NOT use health data for advertising purposes.

6. DATA SHARING

We do NOT sell personal data. We may share data only with healthcare providers (Doctors, Hospitals, Labs) when required, or contractually bound service providers (cloud hosting, payment processors). We may disclose information if required by law.

7. DATA RETENTION

We retain health records as long as your account is active or as required under medical record regulations. You may request deletion, subject to legal requirements.

8. DATA SECURITY

We implement encryption in transit (HTTPS/TLS) and at rest, role-based access control, and regular security monitoring.

9. CHILDREN’S PRIVACY

The Platform is not intended for children under 18 without parental supervision. If we collect data from a minor without consent, we will delete it.

10. YOUR RIGHTS

You may access, correct, delete, or withdraw consent for your data. To exercise rights, contact: support@toshikohealth.com

11. MARKETING COMMUNICATIONS

We may send appointment reminders and health alerts. You may opt out of promotional communications. We do not use health data for targeted advertising.

12. INTERNATIONAL DATA TRANSFER

If data is processed outside your country, we ensure adequate safeguards and protection standards.

13. CHANGES TO THIS POLICY

We may update this Privacy Policy periodically. Updated versions will be posted in the App and on our website.

14. GRIEVANCE OFFICER

Grievance Officer: Toshiko Health Private Limited
Email: support@toshikohealth.com
Privacy concerns: privacy@toshikohealth.com

15. PLATFORM POLICY COMPLIANCE STATEMENT

Our Platform complies with: Google Play User Data Policy, Google Health Connect Permissions Policy, Google API Services User Data Policy (Limited Use), Apple App Store App Privacy Guidelines, Information Technology Act, 2000 (India), and SPDI Rules, 2011.

We collect and use user data strictly for healthcare service delivery and not for advertising resale.