Privacy Policy

MediScript Privacy Policy

Last updated: 3 July 2026

MediScript is a mobile application that lets licensed doctors create digital prescriptions, share them as PDF files, maintain a local record of the prescriptions they have issued, and keep free-form clinical notes. This policy explains how the App handles information, with a privacy-first design that keeps your data on your device.

1. Who We Are

MediScript ("the App", "we", "us", "our") is a mobile application for licensed doctors. You can reach us at khush.desai.kol@gmail.com.

If you are a patient: MediScript is used by your doctor. Your doctor (not the App developer) decides what information about you is entered into the App and is the party responsible (the "data controller") for that information. Please direct questions about your records to the treating doctor.

2. Our Privacy-First Design: Data Stays on Your Device

MediScript is designed to keep your data on your device. We do NOT operate a backend server, and we do NOT transmit your account information, patient records, or clinical notes to us or to any server operated by us.

No patient records, clinical notes, passwords, or images are ever transmitted off the device by the App.

3. Information Processed by the App

Except for the NMC check in Section 6, everything below is processed and stored locally. We do not receive it.

(a) Doctor account information:

(b) Patient and clinical information (entered by the doctor for each prescription):

(c) Clinical notes (entered by the doctor):

(d) Device permissions and access used (only when you trigger the relevant feature):

The App does NOT record audio, and it does NOT collect device identifiers, location data, advertising IDs, usage analytics, crash analytics, or contacts.

4. How the Information Is Used

The information is used solely to provide the App's core features on your device:

We do not use the information for advertising, profiling, or any secondary purpose, and we never sell it.

5. Sharing and Printing of Information

The App shares or prints data only at your explicit instruction, using your device's native share sheet or print dialog:

When you share or print a file, it is handed to the app, contact, or printer you select (for example WhatsApp, email, a printer, or cloud storage). Once shared, the data is governed by the privacy practices of that destination app or service, which are outside our control. Doctors are responsible for sharing patient information only through channels and with recipients permitted by applicable medical-confidentiality and data-protection laws.

Apart from this and the NMC check in Section 6, we do not disclose your information to any third party. We have no servers from which information could be disclosed.

6. Online Registration Verification (NMC)

To help confirm that accounts belong to genuinely registered practitioners, the App offers a registration check against India's public Indian Medical Register, published by the National Medical Commission (NMC). This runs when a doctor registers, and can be run again from the profile screen.

7. Data Retention and Deletion

8. Security

No method of electronic storage is 100% secure. You are responsible for securing the device itself (screen lock, device encryption, OS updates) and for who you grant physical access to it. Because data is device-local, loss, theft, or damage of the device may result in permanent loss of the data.

9. Children

MediScript is a professional tool intended for use by licensed doctors and is not directed to children. Patient information about minors may be entered by a doctor in the course of care; such information is handled the same way as all other on-device data and remains the responsibility of the treating doctor.

10. Your Rights

Because all data is stored locally and under the doctor's direct control, doctors can access, correct, export, and delete the data at any time from within the App. Patients wishing to exercise rights over their health information should contact their treating doctor, who controls those records. Depending on your jurisdiction (e.g. India's DPDP Act, the EU/UK GDPR), you may have additional statutory rights; please consult the treating doctor and applicable law.

11. Third-Party Services

The App is built with the Expo / React Native framework and uses open-source libraries that run on-device. It does not embed advertising SDKs or analytics SDKs.

The one third party the App may contact is the National Medical Commission's public Indian Medical Register (nmc.org.in), and only for the optional registration check described in Section 6. That check is performed through an in-app browser component (WebView). No data is sent to the developer or to Expo during normal use.

12. Changes to This Policy

We may update this Privacy Policy from time to time. The "Last updated" date at the top will reflect the latest revision. Material changes will be communicated through an App update. Continued use of the App after an update constitutes acceptance of the revised policy.

13. Contact Us

For any questions about this Privacy Policy or your data, contact us at khush.desai.kol@gmail.com.