How we protect you
Last updated: January 2026
At Medikhata, your health data is yours. This policy explains what we collect, how we use and protect it, how long we keep it, and the rights you have — in plain language, without the legalese.
01Information We Collect
To turn your lab reports into a clear Health Score and personalized guidance, Medikhata collects only the information needed to deliver and improve the service. We are transparent about what we gather and why.
- Health parameters and test results extracted from the reports you upload (for example cholesterol, glucose, and thyroid values).
- Personal information you provide, such as your name, email address, phone number, date of birth and gender.
- The medical reports and documents you upload, including PDFs and images of lab results and prescriptions.
- Usage and app analytics that tell us how features are used, so we can make the product better.
- Device information such as device model, operating system version and app version, used for security and diagnostics.
02How We Use Your Information
We use your information solely to operate Medikhata, keep your records safe, and help you understand and manage your health. We never use your health data for advertising.
- To generate personalized insights, your Health Score, and trends over time.
- To securely store and organize your medical records so they are available when you need them.
- To maintain, troubleshoot and improve the app’s features and performance.
- To send you important health notifications, reminders and service updates.
- To protect your account through security monitoring and fraud prevention.
03Data Security
Your health data is sensitive, and we protect it with bank-level safeguards. Security is built into every layer of Medikhata, not added as an afterthought.
- All data is encrypted in transit and at rest using industry-standard protocols.
- We follow established security best practices and conduct regular audits.
- Access to systems that hold personal data is limited to authorized personnel only.
- Reports are held in secure cloud storage with redundant, encrypted backups.
04Data Retention
We keep your information only for as long as it is needed to provide the service or to meet legal obligations. You remain in control of how long your data lives with us.
- Your data is retained while your account is active so your history stays intact.
- When you delete your account, your personal data is permanently removed from our active systems.
- Some anonymized, non-identifiable data may be retained for analytics and service improvement.
- Where the law requires it, certain records may be retained for regulatory compliance.
- Encrypted backups are purged within 30 days after deletion.
05Data Sharing
We do not sell your health information — full stop. We share data only in the limited circumstances described below, and always with appropriate safeguards.
- We never sell your personal health information to anyone.
- We share your records with healthcare providers only when you explicitly choose to.
- We may use anonymized, aggregated data for research and to improve health insights.
- We may disclose information when required to comply with applicable law or legal process.
- Trusted third-party processors that help us run the service are bound by strict data-protection agreements.
06Your Rights
You own your health data, and Medikhata gives you the tools to exercise that ownership at any time.
- Access and download a copy of your data whenever you want.
- Correct any information that is inaccurate or out of date.
- Delete your account and associated personal data.
- Opt out of non-essential communications while keeping critical service messages.
- Control your sharing preferences and revoke access you have granted.
07Contact Us
Have a question about your privacy or want to exercise one of your rights? The Medikhata Privacy Office is here to help.