MHN Privacy Policy

Index:

• 1. INTRODUCTION
• 2. LEGAL AGREEMENT
• 3. DEFINITIONS
• 4. INFORMATION WE COLLECT
  • 4.1 PERSONAL & HEALTH DATA
  • 4.2 LOCATION CONTROL
  • 4.3 PURPOSE OF COLLECTION
• 5. HOW WE USE DATA
  • 5.1 AI DISCLAIMER
  • 5.2 INTERNAL DATA USAGE
• 6. DATA SHARING AND DISCLOSURE
  • 6.1 INTERNATIONAL DATA TRANSFERS
  • 6.2 DATA PROCESSORS AND SUB-PROCESSORS
• 7. USER RIGHTS
• 8. DATA SECURITY
  • 8.1 SECURITY MEASURES
  • 8.2 DATA TRANSMISSION AND STORAGE
  • 8.3 THIRD-PARTY SECURITY
  • 8.4 DATA BREACH RESPONSE
  • 8.5 USER RESPONSIBILITY
  • 8.6 LIMITATION OF SECURITY GUARANTEE
• 9. DATA RETENTION
• 10. COOKIES & TRACKING
• 11. CHILDREN'S PRIVACY
• 12. USER-GENERATED CONTENT
• 13. PAYMENTS
• 14. MEDICAL DISCLAIMER
• 15. NO GUARANTEE
• 16. PASSWORD RESPONSIBILITY
• 17. POLICY CHANGES
• 18. CONTACT INFORMATION
• 19. GOVERNING LAW
  • 19.1 International Users & Cross-Border Compliance

1. INTRODUCTION

Welcome to My Health Notion ("MHN," "MY HEALTH NOTION," "MHN HEALTH SCIENCES LLP," "WE," "US," OR "OUR"). We are committed to protecting your privacy and safeguarding your personal data when you access or use our website, mobile application, and related services ("SERVICES").

This Privacy Policy explains how we collect, use, process, store, and protect your information. By accessing or using the Services, you confirm that you have read, understood, and agree to this Privacy Policy. If you do not agree with any part of this Policy, you must discontinue use of the Services.

2. LEGAL AGREEMENT

This Privacy Policy forms a legally binding agreement between you ("USER") and MHN. MHN may update or modify this Policy periodically to reflect operational, technological, or legal changes. Continued use of the Services after such updates constitutes acceptance of the revised Policy.

3. DEFINITIONS

• PERSONAL DATA: Any information that identifies or can identify an individual, including name, contact details, health information, and usage data.
• SENSITIVE DATA: Health, medical, biometric, fertility, genetic, or other sensitive personal information.
• SERVICES: All MHN applications, platforms, tools, features, and related offerings.
• DATA CONTROLLER: MHN HEALTH SCIENCES LLP, responsible for determining the purposes and means of processing personal data.
• COOKIES: Small text files stored on your device to enhance functionality and analyze usage.

4. INFORMATION WE COLLECT

4.1 PERSONAL AND HEALTH DATA

We may collect the following categories of data:

Name, age, gender, email address, phone number, height, weight, medical records, health history, lifestyle data, nutrition and activity data, health goals, device information, IP address, location data (if enabled), payment details (processed by third-party providers), integrated health data (e.g., GOOGLE HEALTH CONNECT), and photos or reports uploaded by you.

4.2 LOCATION CONTROL

You retain full control over location permissions and may disable location access at any time through your device settings. Disabling location services may limit certain optional features. MHN shall not be liable for reduced functionality resulting from disabled location access.

4.3 PURPOSE OF COLLECTION

We collect and process your data for the following purposes:

• Service Delivery: To operate the platform, maintain accounts, and provide health management tools.
• AI Insights & Personalization: To generate AI-driven insights, reminders, analytics, and personalized experiences.
• Security & Fraud Prevention: To detect and prevent unauthorized access, misuse, and security threats.
• Platform Integrity: To monitor system activity and enforce our Terms.
• Service Improvement & Analytics: To improve quality, develop features, and conduct analytics using anonymized or aggregated data.
• Communication & Support: To respond to inquiries and send important updates and notifications.
• Marketing (With Consent): To send newsletters, updates, and promotional communications.
• Legal Compliance: To comply with applicable laws and regulatory requirements.
• Billing & Payments: To process payments and subscriptions via authorized partners.
• User Safety: To detect abnormal or harmful activity where applicable.
• Backup & Recovery: To maintain system integrity and continuity.
• Business Operations: For internal analytics, planning, and improvement using anonymized data.
• Additional (Where Applicable): Healthcare coordination, emergency alerts, and third-party integrations such as wearable devices.

All data processing complies with applicable laws including GDPR, HIPAA (WHERE APPLICABLE), AND DPDP ACT.

5. HOW WE USE DATA

5.1 AI DISCLAIMER

AI-generated insights provided by MHN are for informational and supportive purposes only and do not constitute medical advice. MHN shall not be liable for any decisions, actions, or outcomes based on AI-generated information.

5.2 INTERNAL DATA USAGE

We may use anonymized or de-identified data for analytics, research, and service improvement purposes. Such processing is conducted in accordance with applicable data protection laws, including GDPR, HIPAA (where applicable), and the Digital Personal Data Protection (DPDP) Act.

6. DATA SHARING

We do not sell your personal data. However, we may share your information with trusted third parties only as necessary to operate, support, and improve the Services, including:

• Healthcare Providers: To facilitate health-related services when requested by you.
• Payment Processors: To securely process payments and billing transactions.
• Service Providers: For hosting, cloud storage, customer support, communication, and operational services.
• Analytics Providers: To analyze usage patterns and improve platform performance using anonymized or aggregated data.
• Legal Authorities: When required to comply with applicable laws, legal processes, or lawful governmental requests.
• Business Transfers: In connection with mergers, acquisitions, restructuring, or transfer of assets, subject to appropriate data protection safeguards.
• Third-Party Integrations: Such as laboratories, pharmacies, healthcare partners, wearable platforms, or other authorized integrations, where applicable.

All third parties are required to maintain strict confidentiality and implement appropriate data protection and security measures in accordance with applicable laws.

MHN operates solely as a technology platform and does not provide medical services. MHN does not control or supervise healthcare providers and shall not be liable for any medical advice, diagnosis, treatment, or outcomes provided by third-party healthcare professionals or services.

6.1 International Data Transfers

Your personal data may be stored, processed, or accessed in countries outside your country of residence, including where our cloud infrastructure, service providers, or partners operate.

When transferring data across borders, MHN implements appropriate safeguards in accordance with applicable data protection laws, including contractual protections, standard contractual clauses (SCCs), and equivalent legal mechanisms designed to ensure the security and confidentiality of your personal data.

By using the Services, you acknowledge and consent to the transfer of your information to jurisdictions that may have different data protection laws than your country of residence, subject to the safeguards described in this Privacy Policy.

6.2 Data Processors and Sub-processors

MHN may engage trusted third-party service providers ("DATA PROCESSORS" or "SUB-PROCESSORS") to support the operation, delivery, and improvement of the Services. These may include providers of cloud hosting, data storage, analytics, communication, payment processing, customer support, and other operational services (FOR EXAMPLE: CLOUD INFRASTRUCTURE PROVIDERS, ANALYTICS SERVICES, OR SECURITY PROVIDERS).

All such processors are carefully selected, vetted, and bound by contractual obligations requiring them to:

• Process personal data only in accordance with MHN's instructions
• Maintain strict confidentiality and data security standards
• Implement appropriate technical and organizational safeguards
• Comply with applicable data protection and privacy laws

MHN remains responsible for ensuring that its data processors handle personal data in a secure and lawful manner consistent with this Privacy Policy.

7. USER RIGHTS

Subject to applicable laws, you may have the right to request:

• Access: Obtain a copy of your personal data held by us.
• Correction: Request correction of inaccurate or incomplete data.
• Deletion: Request deletion of your personal data, where legally permissible.
• Data Portability: Receive your data in a structured, commonly used, and machine-readable format.
• Withdraw Consent: Withdraw consent for data processing at any time, where processing is based on consent.
• Object to Processing: Object to certain types of data processing, where applicable.

To exercise any of these rights, please contact us at: support@myhealthnotion.ai

8. DATA SECURITY

MHN is committed to protecting your personal and health-related information through appropriate technical, organizational, and administrative safeguards designed to prevent unauthorized access, disclosure, alteration, misuse, or loss of data.

8.1 Security Measures

We implement industry-standard security practices, including but not limited to:

• Encryption of data in transit and, where applicable, at rest
• Secure servers and protected cloud infrastructure
• Access controls and role-based authorization
• Authentication and identity verification mechanisms
• Continuous monitoring and threat detection
• Regular security reviews and vulnerability assessments

These measures are designed to protect the confidentiality, integrity, and availability of your information.

8.2 Data Transmission and Storage

All reasonable steps are taken to ensure that your data is transmitted and stored securely. However, due to the inherent nature of internet communications and digital systems, no method of data transmission or storage can be guaranteed to be completely secure. While we strive to use commercially acceptable means to protect your information, absolute security cannot be assured.

8.3 Third-Party Security

Where MHN engages third-party service providers (such as cloud hosting, analytics, or payment processors), such providers are contractually required to implement appropriate technical and organizational security measures to protect personal data and comply with applicable data protection laws.

8.4 Data Breach Response

In the event of a data security incident or breach that poses a risk to your rights or personal data, MHN will take appropriate steps to investigate, contain, and mitigate the impact of the incident. Where required by applicable law, affected users and relevant authorities will be notified in a timely manner.

8.5 User Responsibility

Users play an important role in protecting their data. You are responsible for:

• Maintaining the confidentiality of your login credentials
• Using strong passwords and secure devices
• Logging out from shared or public devices
• Promptly notifying MHN of any suspected unauthorized access

MHN shall not be liable for security incidents arising from user negligence, compromised devices, or factors beyond its reasonable control.

8.6 Limitation of Security Guarantee

While MHN applies robust security measures to protect personal data, no system is entirely immune to risks such as cyberattacks, unauthorized access, or technical failures. Accordingly, MHN does not guarantee absolute security of data and shall not be liable for incidents beyond its reasonable control.

9. DATA RETENTION

MHN retains personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, including providing the Services, complying with legal and regulatory obligations, resolving disputes, and enforcing contractual rights.

Once personal data is no longer required for these purposes, it is securely deleted, anonymized, or otherwise disposed of in accordance with applicable data protection laws and industry standards.

10. COOKIES & TRACKING

MHN uses cookies and similar tracking technologies to enhance platform functionality, improve performance, and understand how the Services are used. Cookies help us personalize user experience, analyze usage trends, and maintain system reliability.

You may control or disable cookies through your browser or device settings. However, disabling cookies may limit certain features or affect the performance of the Services.

11. CHILDREN'S PRIVACY

The Services are intended for general audiences. Where minors access the Services, parental or legal guardian supervision is strongly recommended. MHN does not knowingly collect, use, or disclose personal data from children in violation of applicable child data protection laws.

If we become aware that personal data of a child has been collected without appropriate consent, we will take prompt steps to investigate and delete such data in accordance with applicable legal requirements.

12. USER-GENERATED CONTENT

Users may upload health data, reports, images, or other information through the Services. Users must ensure that any data uploaded belongs to them or that they have lawful authority and consent to provide such information.

MHN shall not be liable for unauthorized third-party uploads, misuse, or disclosure resulting from user actions. Users are solely responsible for the accuracy, completeness, and timeliness of all data submitted through the Services.

13. PAYMENTS

All payments are processed securely through trusted third-party payment service providers that comply with applicable security and regulatory standards. MHN does not store complete payment card information on its systems.

Users are responsible for ensuring the accuracy of payment details and complying with applicable billing terms. Any payment-related disputes should be addressed through the designated payment provider or by contacting MHN support.

14. MEDICAL DISCLAIMER

MHN provides digital health management tools and AI-generated insights for informational and supportive purposes only. The Services do not constitute medical advice, diagnosis, treatment, or emergency care.

Users should always seek advice from qualified and licensed healthcare professionals regarding any medical condition, diagnosis, or treatment decisions. MHN shall not be liable for any medical decisions, actions, or outcomes based on use of the Services.

15. NO GUARANTEE

MHN makes no representations or warranties regarding specific health, medical, or wellness outcomes resulting from the use of the Services. Outcomes may vary depending on individual health conditions, adherence, and external factors beyond our control.

Use of the Services is voluntary and at the user's sole discretion and risk.

16. PASSWORD RESPONSIBILITY

Users are responsible for maintaining the confidentiality of their login credentials. You must keep your account information secure and notify MHN immediately if you suspect any unauthorized access or use of your account.

17. POLICY CHANGES

We may revise this Policy occasionally. By continuing to use the Services after updates are posted, you agree to the updated Policy.

18. CONTACT

• EMAIL:support@myhealthnotion.ai
• PHONE: +919992225724, +919992225748
• ADDRESS: 1st Floor, Roxana Express Court, P&T Colony, Lakdikapul, Hyderabad, 500004
• SUPPORT HOURS: Monday to Saturday: 10.00 AM – 07.00 PM
• Sunday: Closed | Public Holidays: Closed

19. GOVERNING LAW

This Privacy Policy shall be governed by the laws of INDIA. Any dispute arising out of or relating to this Privacy Policy shall be resolved in accordance with the dispute resolution mechanism set out in the TERMS & CONDITIONS, and where court proceedings are necessary, the courts in HYDERABAD, TELANGANA shall have exclusive jurisdiction.

19.1 International Users & Cross-Border Compliance

If you access or use the Services from outside INDIA, you acknowledge that your information may be transferred to, stored, and processed in jurisdictions where MHN or its service providers operate. MHN implements appropriate safeguards, including contractual protections and security controls, to ensure lawful and secure cross-border data transfers in accordance with applicable data protection regulations such as GDPR, HIPAA (WHERE APPLICABLE), AND DPDP ACT.

Nothing in this Policy limits any mandatory consumer protection rights available under applicable law.