medical appointment – Privacy Policy

Last updated: [December 30, 2025]

Mawiduk (“the App”) is a patient-facing mobile application that helps you search healthcare providers and book, manage, or cancel appointments. This Privacy Policy explains how Clinic Code (legal owner: Ahmad Oussama Rifai) (“we,” “us,” or “our”) collects, uses, discloses, and protects your information when you use the App and our related services.

Important: Mawiduk is not for emergencies. If you are experiencing an emergency, call your local emergency number immediately.

1) Scope

This Policy applies to the App and any related websites or support channels we operate. It does not apply to third-party services that have their own privacy policies (for example, analytics, crash reporting, or payment processors).

2) Information We Collect

We collect the minimum information needed to provide and improve the service.

a) Information you provide directly

• Account details: name, email, phone number, password (stored using strong hashing), preferred language.
• Profile details (optional): date of birth, gender.
• Appointment data: selected provider/clinic, date/time, visit type, notes you voluntarily add (e.g., “first visit”).
• Support communications: messages, attachments, and feedback you send to us.

We do not require your medical records to book an appointment. Do not upload sensitive health documents unless a feature explicitly requests them.

b) Information collected automatically

• Device & log data: device model, OS version, app version, unique device identifiers, IP address, crash data, diagnostics, and performance metrics.
• Usage data: screens viewed, features used, and time stamps to help us understand and improve App performance.

c) Information from third parties (where applicable)

• Authentication or contact import (if you choose to enable such features).
• Analytics/Crash reports from service providers (e.g., Firebase) to improve stability and performance.

3) Permissions We Use (and Why)

• Notifications: to send appointment confirmations, reminders, and updates.
• Calendar (optional): to add appointments to your device calendar at your request.
• Location (optional): to help find nearby clinics (only with your consent).
• Camera/Photos (optional): only if you attach a document or profile photo.

Permissions are optional unless strictly necessary for a feature you choose to use. You can manage permissions at any time in your device settings.

4) How We Use Your Information

• Provide the service: create/manage your account; enable provider search, booking, reminders, and related features.
• Communicate with you: confirmations, changes, cancellations, and alerts about your bookings.
• Improve the App: analytics, debugging, fraud prevention, and safety.
• Legal compliance: enforce terms, respond to lawful requests, and meet regulatory obligations.

Legal bases (GDPR, where applicable): performance of a contract (providing the service), legitimate interests (security and improvement), and consent (optional features/marketing).

5) How We Share Information

We do not sell your personal information.

We may share:

• With providers/clinics you book: appointment details necessary for scheduling (e.g., your name, contact info, selected time, visit type, and any note you voluntarily provide).
• With service providers: hosting, analytics, crash reporting, customer support, notifications, and SMS/email delivery—bound by confidentiality and data-protection commitments.
• For legal reasons: to comply with laws, protect rights and safety, and prevent fraud or abuse.
• Business transfers: in a merger, acquisition, or asset sale, your data may be transferred with appropriate safeguards.

6) Retention

We keep your information only as long as needed to provide the service and as required by law. When no longer needed, we delete or anonymize it using reasonable measures. You may request deletion at any time (see Your Rights & Choices).

7) Security

We use industry-standard safeguards, including encryption in transit (HTTPS/TLS), secure authentication, and access controls. However, no method of transmission or storage is 100% secure. You are responsible for maintaining your account credentials and keeping your device secure.

8) Children’s Privacy

The App is not intended for children under 13 (or the minimum age required by your jurisdiction). We do not knowingly collect personal data from children without verifiable parental consent. If you believe a child has provided data to us, contact us so we can delete it.

9) International Transfers

Your information may be processed and stored in countries different from your own, where laws may differ. We implement appropriate safeguards (e.g., contractual clauses) to protect your data in accordance with applicable law.

10) Your Rights & Choices

Depending on your location, you may have the right to:

• Access, correct, or update your personal information.
• Request deletion of your account and data.
• Object to or restrict certain processing.
• Withdraw consent for optional features.
• Port your data in a machine-readable format (where applicable).

You can manage many settings in the App. For other requests, email mmmubaker@gmail.com from the email associated with your account. We may ask to verify your identity before fulfilling requests.

California (CCPA/CPRA) Notice

We do not “sell” or “share” personal information as defined by California law. California residents can exercise rights to know, delete, and correct by contacting mmmubaker@gmail.com. We will not discriminate against you for exercising your rights.

11) Third-Party Services & Links

The App may include links to third-party sites or use third-party SDKs (e.g., analytics, crash reporting, push notifications). These providers process data under their own privacy policies. We encourage you to review those policies.

12) Cookies & Similar Technologies

We may use device identifiers, local storage, and similar technologies to operate the App, remember preferences, and analyze usage. You can manage certain preferences through your device settings.

13) Data Deletion & Account Closure

You can request account deletion:

• In-App: Settings → Account → Delete Account (if available), or
• By Email: send a request to mmmubaker@gmail.com from the email address associated with your account.

We will process your request and delete or anonymize your personal data unless retention is required by law (e.g., fraud prevention, legal obligations).

14) Changes to This Policy

We may update this Policy to reflect changes in our practices or legal requirements. We will post the updated version in the App and update the “Last updated” date. Material changes may be communicated via in-app notice or email.

15) Contact Us

Clinic Code (legal owner: muhammed mubakeroglu)
Email: mmmubaker@gmail.com
Address: Kayabaşı Mah. Şehit Semih Balaban Cd. No:6H İç Kapı No:8, Başakşehir – 34196, Istanbul, Turkey
Data Protection Officer (if applicable): [Add details or “Not applicable”]

---

Google Play “Data Safety” Reference (helper summary)

(Optional for your website but useful when completing the Google Play Data safety form.)

Data sharing: Shared only with providers you book and contracted service vendors; not sold.

Collected: Account info (name, email, phone), app activity (feature usage), device or other IDs, crash logs, diagnostics.

Optional collected (with consent): location (approximate for nearby clinics), calendar (to save bookings), photos/files (attachments you upload).

Purposes: App functionality (booking, reminders), account management, analytics, and fraud prevention.

Data is encrypted in transit: Yes.

Data deletion: Users can request deletion in-app (if available) or via email.