Privacy Policy

Effective Date: January 15, 2025
Last Updated: January 15, 2025

🔒 Privacy-First Approach

Important Notice: MediMelon uses a completely local data storage approach. All personal health data is stored on your mobile device and is never uploaded to any cloud servers.

Introduction

MediMelon ("the App", "we", "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your information when you use the MediMelon application.

Data Collection Principles

Types of Information We Collect

1. Personal Health Information

Family Member Information: Names, ages, gender, birth dates
Health Records: Disease history, medication information, physical exam records
Health Consultations: Health questions and symptom descriptions you input
Medical Images: Photos or images you choose to analyze

2. Device Information

Device model and operating system version (for app compatibility)
App crash logs (only used to improve app stability)

3. Usage Data

App feature usage statistics (anonymized)
Subscription status and payment information (processed through Google Play)

Information We Do NOT Collect

Personal Identity Information: No account registration required; no name, email, or phone number needed
Location Information: We do not access or collect your geographic location
Contact Information: We do not access your address book or contact list
Other App Data: We do not access other apps or files on your device

Data Storage and Security

Local Storage Principles

Completely Local: All health data is stored in your device's local SQLite database
No Cloud Sync: Data is never automatically uploaded to any remote servers
Device-Dependent: Data is only accessible on your device; uninstalling the app will delete all data
Encrypted Protection: Sensitive data is encrypted using standard Android security

Security Measures

Use Android standard security framework to protect data
Regular security patches and encryption algorithm updates
No storage of plaintext passwords or sensitive authentication information
Follow Android data protection best practices

Third-Party Service Usage

AI Language Model Services

Purpose: To provide health analysis and recommendations

Data Transmission:

Only anonymized health consultation content is transmitted (no personal identifiers)
No transmission of names, ages, or specific identity information
Query content is de-identified before processing

Supported Services:

Ollama (local deployment, completely private)
OpenRouter API (anonymous queries)
SiliconFlow API (anonymous queries)
Google Gemini API (anonymous queries)

Privacy Protection:

All LLM queries are anonymous and contain no personal identity information
No user profiling or personal profiles are created
Query logs are not associated with personal identity

Google Play Services

Subscription Management: Paid subscriptions processed through Google Play Billing

Google Play handles payment information; we do not store payment details
Subscription status is verified locally on the device
Follows Google Play's privacy policy

App Distribution: App updates distributed through Google Play Store

How We Use Your Data

Primary Uses

Health Analysis: Use your inputted symptoms and health information to provide AI analysis
Record Management: Help you manage family members' health records
Reminder Services: Provide medication and physical exam reminder functions
App Improvement: Use anonymized usage statistics to improve app functionality

Data Sharing Policy

We do not share your personal health data with third parties, except when:

We have your explicit consent
Required by law or regulation
To protect the health and safety of users or the public

Your Rights

Data Control Rights

Access Right: You can view all data stored on your device at any time
Modification Right: You can edit, update, or delete any health records
Deletion Right: Uninstalling the app will completely delete all local data
Export Right: You can backup data to other storage locations

Privacy Settings

Choose to use local Ollama models for completely offline analysis
Control whether to use online LLM services
Manage app permissions and data access

Children's Privacy Protection

MediMelon can record family members' (including children's) health information, but:

Does not directly collect personal information from children under 13
Family health records are managed by parents or guardians
Strictly follows COPPA (Children's Online Privacy Protection Act) requirements

International Data Transfer

Data is primarily stored locally on user devices with no routine international transfers
AI queries may involve overseas servers (anonymized processing)
Complies with international privacy regulations including GDPR, CCPA

Cookies and Tracking Technologies

No Tracking Cookies: The app does not use web tracking technologies
Analytics Tools: May use Firebase Analytics to collect anonymous usage statistics
Ad Tracking: Does not integrate any advertising SDKs or tracking services

Data Retention Policy

Local Data: Permanently saved on your device until you manually delete it or uninstall the app
LLM Query Logs: We do not retain query records in our systems
Crash Reports: Anonymous crash logs retained for 30 days for bug fixes

Your Rights Under GDPR (EU Users)

If you are located in the European Union, you have the following rights:

GDPR Rights

Right to Access: Request access to your personal data
Right to Rectification: Request correction of inaccurate data
Right to Erasure: Request deletion of your data
Right to Restrict Processing: Request limitation of data processing

Additional GDPR Rights

Right to Data Portability: Request transfer of your data
Right to Object: Object to data processing
Right to Withdraw Consent: Withdraw consent at any time

Your Rights Under CCPA (California Users)

If you are a California resident, you have the following rights:

Right to Know: Know what personal information is collected
Right to Delete: Request deletion of personal information
Right to Opt-Out: Opt-out of the sale of personal information (Note: We do not sell personal information)
Right to Non-Discrimination: Not be discriminated against for exercising your rights

Security Breach Notification

In the unlikely event of a security breach that affects your personal data:

We will notify affected users within 72 hours
We will provide details about the breach and steps being taken
We will offer guidance on protective measures you can take

Automated Decision Making

MediMelon uses AI for health analysis, but all decisions remain under user control
Users can always override or ignore AI recommendations
No automated decisions are made that significantly affect users without human oversight

Contact Us

If you have any questions or concerns about this Privacy Policy, please contact us:

Developer: MediMelon Team
Email: privacy@medigem.app
Data Protection Officer (GDPR inquiries): dpo@medigem.app
In-App Feedback: Settings > Help & Support > Feedback

Privacy Policy Updates

We may periodically update this Privacy Policy:

Major changes will be notified to users within the app
Updated versions will include new effective dates in this document
We recommend regularly reviewing the latest version of the Privacy Policy

Legal Jurisdiction

This Privacy Policy is governed by the following laws:

General Data Protection Regulation (GDPR) for EU users
California Consumer Privacy Act (CCPA) for California users
Applicable local privacy laws in your jurisdiction

📅 Review Schedule

Last Review Date: January 15, 2025
Next Scheduled Review: July 15, 2025

Medical Disclaimer: MediMelon is for informational purposes only and is not a substitute for professional medical advice, diagnosis, or treatment. Always consult with qualified healthcare providers regarding medical conditions and treatments.

This Privacy Policy is effective as of the date listed above. By using MediMelon, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy.

← Back to Home