This Privacy Policy ("Policy") describes how ACCUSAGA INFORMATION TECHNOLOGIES PRIVATE LIMITED ("Accusaga", "we", "our", or "us") collects, uses, stores, shares, and protects your information when you use the Vitalynx mobile application and related services (collectively, the "Service"). By using Vitalynx, you consent to the practices described in this Policy. If you do not agree, please do not use the Service.
You are requested to visit accusaga.com/terms to access our Terms of Service.
This Policy complies with India's Digital Personal Data Protection Act, 2023 and the Digital Personal Data Protection Rules, 2025 ("DPDP Act"), the Information Technology Act, 2000 and IT (SPDI) Rules, 2011, general principles of U.S. HIPAA, and principles aligned with the EU GDPR.
| Field | Details |
|---|---|
| Company name | ACCUSAGA INFORMATION TECHNOLOGIES PRIVATE LIMITED |
| Registered office | 2nd Floor, Uptown Cyberabad Building, 100 ft Road, Madhapur, Hyderabad, Telangana, India |
| Jurisdiction | India (registered) with operations supporting users in India and abroad, including NRIs |
| Contact email | info@accusaga.com |
You agree to provide your express, free, specific, informed, unconditional, unambiguous consent for Accusaga to collect, process, store, share and purge the information submitted by you.
Accusaga does not knowingly collect personally identifiable information from minors. If you are under the age of 18 (eighteen), you must seek permission from a parent or guardian to use Vitalynx.
We do NOT use your information to sell or rent your data, display advertisements, build behavioral profiles, or share with insurance companies or employers without your explicit authorization.
Under the SPDI Rules, DPDP Act, and similar regulations, health and medical records are "sensitive personal data" requiring heightened protection. We treat all health-related information as sensitive personal data.
You control who receives access, what level of access they have (View, Edit, or Admin), and when access ends. You may revoke access at any time from within the app.
| Service Provider | Purpose | Data Shared |
|---|---|---|
| Supabase Inc. | Database hosting and authentication | Encrypted health records, account data, family relationships |
| Railway Corporation | Hosting AI/OCR backend | Lab report images during processing (deleted after extraction) |
| Twilio Inc. | SMS OTP delivery | Phone numbers and OTP codes (transient) |
| Sentry (Functional Software Inc.) | Crash and error reporting | Anonymized device info, error stack traces (no health data) |
| Expo / Anthropic | App development infrastructure | Build and deployment data only, no user data |
All Vitalynx data is stored on infrastructure provided by Supabase Inc., located in India (Mumbai region). We implement TLS 1.2+ encryption in transit, encryption at rest, phone OTP authentication, Row-Level Security at the database layer, signed URLs with 1-hour expiry for documents, and regular security reviews.
In the event of a personal data breach, we will notify the Data Protection Board of India within 72 hours and notify affected users without undue delay through the app and email.
| Data type | Retention policy |
|---|---|
| Active account data (health records, family info) | Retained while your account is active |
| Account deleted by user | All personal data deleted within 30 days |
| Backup copies | Purged within 90 days of account deletion |
| Crash and error logs | 30 days (anonymized, no health data) |
| Aggregated analytics | Indefinitely (fully anonymized) |
| Records required for legal compliance | As required by applicable law |
Account holders must be at least 18 years old. Parents or guardians may add minor children as family members within their own account. We do not knowingly collect personal data directly from children under 18 without parent/guardian consent.
To delete your account and all associated data:
Note: If you have shared family members in your account, transfer ownership to another family member before deletion, otherwise their records will also be deleted.
Vitalynx is a native mobile application and does not use traditional web cookies. We use AsyncStorage for local device storage, secure storage for authentication tokens, and cached signed URLs for temporary access to original documents. We do not use tracking pixels, third-party analytics SDKs, or advertising IDs.
In accordance with the DPDP Act and the SPDI Rules, we have designated a Grievance Officer to address any concerns regarding your personal data.
| Field | Details |
|---|---|
| Name | Sai Durga |
| Designation | Manager |
| Company | ACCUSAGA INFORMATION TECHNOLOGIES PRIVATE LIMITED |
| Address | 2nd Floor, Uptown Cyberabad Building, 100 ft Road, Madhapur, Hyderabad, Telangana, India |
| info@accusaga.com | |
| Response time | 48 hours acknowledgement, 30 days resolution |
You must exhaust this grievance redressal mechanism before approaching the Data Protection Board of India with a complaint.
For privacy-related questions, complaints, or data subject requests, please email info@accusaga.com with the subject line "Privacy Request".
We may update this Policy from time to time. For material changes that affect your rights, we will notify you within the app and via your registered email at least 7 days before the changes take effect. Your continued use of Vitalynx after the effective date constitutes acceptance of the updated Policy.
This Policy is governed by the laws of India. Any disputes arising from or relating to this Policy shall be subject to the exclusive jurisdiction of the courts of Hyderabad, Telangana, India. For users outside India, applicable local data protection laws may grant additional rights.
Your privacy is not a feature. It is the foundation of everything we build.