Privacy Policy

Last updated: April 3, 2026

1. Introduction

CareShifa ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our clinical decision support application.

2. Information We Collect

2.1 Personal Information

• Name and email address (for account creation)
• Phone number (optional, for phone authentication)
• Professional credentials and healthcare facility information

2.2 Clinical Data

• Patient assessment data you input for AI analysis
• Lab results and medical information for interpretation
• Drug interaction queries

Important: We recommend not including patient-identifying information (names, ID numbers, dates of birth) in your queries. Use anonymized data whenever possible.

2.3 Usage Data

• Log data (IP address, browser type, access times)
• Feature usage statistics
• Error reports and performance data

3. How We Use Your Information

• Provide AI-powered clinical decision support
• Maintain and improve our services
• Process your account and queries
• Send important service notifications
• Comply with legal obligations

4. Data Security

We implement industry-standard security measures to protect your data:

• Encryption in transit (TLS/SSL) and at rest
• Secure authentication with session management
• Regular security audits and monitoring
• Access controls and audit logging

5. Data Retention

We retain your data for as long as your account is active or as needed to provide services. Clinical query history is retained for 90 days by default. You can request deletion of your data at any time.

6. Third-Party Services

We use the following third-party services:

• OpenAI: For AI-powered analysis (data is processed per their enterprise terms)
• Firebase: For phone authentication
• Google: For OAuth authentication

7. Your Rights

You have the right to:

• Access your personal data
• Correct inaccurate data
• Delete your account and data
• Export your data
• Withdraw consent for optional processing

8. Healthcare Compliance

CareShifa is designed as a clinical decision support tool. While we implement security best practices, healthcare providers are responsible for ensuring their use of the platform complies with applicable regulations (HIPAA, local healthcare data laws).

9. Children's Privacy

Our service is intended for healthcare professionals and is not directed at individuals under 18 years of age.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the "Last updated" date.

11. Contact Us

If you have questions about this Privacy Policy, please contact us at:

• Email: admin@careshifa.com
• Website: www.careshifa.com