Privacy Policy
This Privacy Policy describes how VriddhiOne Pvt Ltd (the "Company", "we", "us") collects, uses, and protects your information when you use the BloodMedCare mobile application and related services (the "Service").
By using BloodMedCare, you agree to the practices described here.
1. What we collect
- Account details: your name and Indian mobile number (used to verify you and reach you during emergencies).
- Profile details (optional): blood group, last-donation date, profile photo.
- Request details: resource type (blood / medicine / oxygen), description, urgency, hospital/location reference.
- Location data: approximate and precise location (with your permission) to surface nearby donors/requests. You can revoke at any time.
- In-app messages: conversations between donors and requesters.
- Device data: push notification token, basic device model, and operating system version.
- Diagnostic data: crash reports and error logs (scrubbed of personal identifiers before sending).
2. How we use it
- To verify your identity via OTP-based authentication.
- To match requests with nearby willing donors.
- To enable in-app messaging between users.
- To improve the Service, fix bugs, and detect abuse.
- To comply with applicable laws and respond to lawful requests.
3. What we do NOT do
- We do not sell your data to third parties.
- We do not share your phone number publicly. Contact reveal between users is consent-based and time-limited.
- We do not run advertising networks inside the app.
4. Your rights
Under the Digital Personal Data Protection Act, 2023 (DPDP Act) you have the right to:
- Access your personal data we hold.
- Correct inaccuracies.
- Delete your account and all associated data (available in-app via Profile → Settings → Delete Account).
- Withdraw consent for optional data (e.g. location).
- Lodge a grievance with our Grievance Officer (details below).
5. Data retention
We retain account data while your account is active. On deletion, your personal data is removed within 30 days, except where retention is required by law (e.g. tax/audit obligations).
6. Security
We use industry-standard encryption (HTTPS in transit, encrypted at rest), token-based authentication, and rate limiting to protect your data. No system is perfectly secure; report concerns to security@bloodmedcare.com.
7. Children
BloodMedCare is intended for users 18 years and older. We do not knowingly collect data from minors.
8. Changes to this policy
We may update this policy. Material changes will be notified in-app. Continued use after changes means you accept the updated policy.
9. Grievance Officer
In accordance with the Information Technology Rules, 2021 and the DPDP Act, 2023:
- Name: [to be confirmed in final v1]
- Email: grievance@bloodmedcare.com
- Address: VriddhiOne Pvt Ltd, [registered address — to be confirmed in final v1], India
We will acknowledge grievances within 24 hours and resolve them within 15 days.
10. Contact
For any privacy-related queries, write to privacy@bloodmedcare.com.