Privacy Policy

Last updated: April 02, 2026

Healthilyze provides a secure multi-tenant lab management platform and mobile app for patients and labs. We respect your privacy and are committed to protecting your personal information. This Policy explains what data we collect, why we collect it, and how we use, share, and safeguard it. Our mobile app allows patients to view their own reports, create new lab test requests, manage family members, addresses, and profiles, all with privacy and security as top priorities.

Information We Collect

• Account and Profile: Name, contact details, and basic account information you provide when creating an account. Patients can also manage family members and addresses in the app.
• Lab Context: For lab users, lab details (e.g., lab name, contact numbers) and configuration settings.
• Patient and Test Requests: Data entered to create and manage test requests, including selected tests, notes, appointment details, and uploaded prescription photos (if applicable).
• Device and Session: Device and browser metadata and a unique device identifier used for security and session validation; IP-based geolocation may be inferred for security and audit purposes.
• Activity Logs: Actions performed in the app and platform are logged to improve security, traceability, and support.
• Payments: Limited payment-related metadata (e.g., transaction identifiers) when payment gateways are used; sensitive payment data is handled by the payment provider, not stored by us.

How We Use Information

• Provide and operate the platform and mobile app, including creating test requests, syncing lab data, generating web-based reports, and enabling patients to manage their own health data and family members.
• Authenticate users and validate sessions using tokens with session tracking.
• Detect and prevent fraud, abuse, and unauthorized access using device information and activity logs.
• Enable real-time features (e.g., dashboards and notifications) via secure sockets and Firebase Cloud Messaging (FCM) for mobile notifications.
• Provide support, troubleshoot issues, and improve our services.
• Comply with legal obligations and enforce our terms and policies.

Sharing and Disclosure

• Within Your Lab Workspace: Data you submit may be visible to authorized lab personnel associated with your lab’s workspace.
• Service Providers: We only integrate Firebase Cloud Messaging (FCM) for notifications. No other third-party services are integrated in the mobile app. Data may be shared with hosting or payment providers as required, under contracts that protect your information.
• Legal: We may disclose information to comply with applicable laws, regulations, legal processes, or governmental requests.

Data Retention

We retain information for as long as necessary to provide the services, meet legal, accounting, or reporting requirements, and resolve disputes. Logs and device/session data may be retained for security and audit purposes for a reasonable period.

Security

We implement organizational and technical measures appropriate to the risk, such as token-based authentication with session validation, device fingerprinting for security headers, and activity logging. However, no method of transmission or storage is completely secure.

Your Choices and Rights

• Access, update, or delete certain profile information from your account settings.
• Control device permissions (e.g., camera or file access when uploading prescription photos) via your device settings.
• Contact us to exercise rights available under your local laws (subject to verification and applicable limitations).

Mobile App

Our mobile app allows patients to view their own reports, create new lab test requests, manage family members, addresses, and profiles. The app may request permissions such as camera and file storage for uploading prescription photos, and may collect device information to enhance security and session integrity. Notifications and real-time updates are delivered only via Firebase Cloud Messaging (FCM); no other third-party integrations are present in the app.

Children’s Privacy

Our services are intended for use by authorized users (including labs and patients). If you believe a child has provided us information without appropriate consent, please contact us so we can take steps to remove such information.

Changes to This Policy

We may update this Policy to reflect changes to our practices or for legal, technical, or operational reasons. Material changes will be communicated through the app or by other reasonable means.

Contact Us

If you have questions about this Policy or our privacy practices, please reach out through in-app support, via the contact information provided in the app or on our website, or email us directly at support@healthilyze.com.