Privacy Policy for My Medical Vault
Last Updated: January 18, 2026
Masadir Media Co WLL (“we,” “us,” or “our”) operates the My Medical Vault mobile application (the “App”). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our App.
- Information We Collect
1.1 Information You Provide
Account Information
- Email address (for account creation and authentication)
- Name (optional, for profile personalization)
- Profile photo (optional)
Medical Records
- Health conditions and diagnoses
- Medications and dosages
- Allergies
- Immunization records
- Doctor visits and appointments
- Lab results and test records
- Medical notes and journals
- Audio recordings (for journal entries)
Family Member Information
- Names and profiles of family members you add
- Medical records for family members
1.2 Information Collected Automatically
Device Information
- Device type and model
- Operating system version
- Unique device identifiers
Usage Information
- App features accessed
- Interaction timestamps
- Error logs and crash reports
1.3 Information from Third-Party Services
Authentication Providers
When you sign in with Google or Apple, we receive your email address and basic profile information as permitted by those services.
Payment Information
When you subscribe to Premium features, payment is processed by Apple App Store or Google Play Store. We do not collect or store your payment card details. We only receive confirmation of your subscription status.
- How We Use Your Information
We use the information we collect to:
- Provide the Service: Store and manage your medical records securely
- Sync Data: Synchronize your data across your devices when you enable cloud backup (Premium feature)
- Authenticate: Verify your identity and maintain account security
- Process Subscriptions: Manage your Premium subscription status
- Improve the App: Analyze usage patterns to enhance features and fix issues
- Communicate: Send important updates about the App or your account
- Comply with Law: Meet legal obligations and respond to lawful requests
- Data Storage and Security
3.1 Local Storage (Default)
By default, all your medical data is stored locally on your device only. This means:
- Your data never leaves your device unless you enable cloud backup
- Data is stored in an encrypted SQLite database
- If you delete the app, your local data is permanently deleted
3.2 Cloud Backup (Premium Feature)
If you enable cloud backup:
- Your data is encrypted and stored on Google Firebase servers
- Data is transmitted using TLS/SSL encryption
- Access is restricted to your authenticated account only
- Servers are located in secure data centers with industry-standard protections
3.3 Security Measures
We implement appropriate technical and organizational measures to protect your data:
- Encryption at rest and in transit
- Secure authentication via Firebase Auth
- No sharing of data with third parties for marketing purposes
- Regular security assessments
- Data Sharing and Disclosure
We do not sell your personal information. We may share information only in these circumstances:
4.1 With Your Consent
When you explicitly authorize us to share information.
4.2 Service Providers
We use the following third-party services:
- Firebase (Google): Authentication, cloud storage, and database services
- Apple/Google: In-app purchase processing
These providers are contractually obligated to protect your data and use it only to provide services to us.
4.3 Legal Requirements
We may disclose information if required by law, court order, or government request, or to protect the rights, property, or safety of our users or others.
4.4 Business Transfers
If we are involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.
- Your Rights and Choices
5.1 Access and Export
You can:
- View all your data within the App
- Export your medical records as PDF reports (Premium feature)
- Export your data in CSV format
5.2 Correction
You can update or correct your information at any time through the App.
5.3 Deletion
You can:
- Delete individual records within the App
- Delete your entire account by contacting us at support@masadir.me
- Request complete data deletion under applicable privacy laws
5.4 Data Portability
You can export your data in standard formats (PDF, CSV) for use with other services.
5.5 Opt-Out of Cloud Sync
You can disable cloud backup at any time in the App settings to keep your data stored locally only.
- Children’s Privacy
My Medical Vault is not intended for use by children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us at support@masadir.me.
The App does allow parents and guardians to manage medical records for their minor children as family members within their own account.
- International Data Transfers
If you use cloud backup, your data may be transferred to and processed in countries other than your own. Firebase servers are located in various regions worldwide. We ensure appropriate safeguards are in place for any international transfers.
- Data Retention
- Local Data: Retained on your device until you delete it or uninstall the App
- Cloud Data: Retained until you delete your account or request deletion
- Account Data: Retained for as long as your account is active
- Subscription Records: Retained as required for financial and legal compliance
- Third-Party Links
The App may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies.
- Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of any material changes by:
- Posting the new Privacy Policy in the App
- Updating the “Last Updated” date at the top of this policy
- Sending you a notification if required by law
Your continued use of the App after changes become effective constitutes your acceptance of the revised policy.
- California Privacy Rights (CCPA)
If you are a California resident, you have the right to:
- Know what personal information we collect
- Request deletion of your personal information
- Opt-out of the sale of personal information (we do not sell your data)
- Non-discrimination for exercising your privacy rights
To exercise these rights, contact us at support@masadir.me.
- European Privacy Rights (GDPR)
If you are in the European Economic Area, you have additional rights:
- Right to access your personal data
- Right to rectification of inaccurate data
- Right to erasure (“right to be forgotten”)
- Right to restrict processing
- Right to data portability
- Right to object to processing
- Right to withdraw consent
To exercise these rights, contact us at support@masadir.me.
Our legal basis for processing your data includes:
- Contract: To provide the services you requested
- Consent: Where you have given explicit consent
- Legitimate Interests: To improve and secure our services
- Contact Us
If you have questions about this Privacy Policy or our data practices, please contact us:
Masadir Media Co WLL
Unit 11, First Floor
Building 76, Avenue 23
Sar 527, Bahrain
Email: support@masadir.me
Phone: +973-33442255
Website: https://masadir.me
Summary of Data Collected
Data Type | Purpose | Stored Locally | Stored in Cloud
Email | Authentication | No | Yes (Firebase Auth)
Medical Records | Core functionality | Yes | Optional (Premium)
Profile Photo | Personalization | Yes | Optional (Premium)
Family Member Data | Core functionality | Yes | Optional (Premium)
Audio Recordings | Journal entries | Yes | Optional (Premium)
Subscription Status | Premium features | Yes | Yes (via App Store/Play Store)
Device Info | App functionality | No | Minimal
This Privacy Policy is effective as of January 18, 2026.