Privacy Policy

1. Introduction

MyQrio is operated from India. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our platform. By creating an account or using MyQrio, you acknowledge that you have read and understood this policy.

2. Information We Collect

We collect information you provide directly and data generated through your use of the service, including:

• Account information — name, email address, phone number, profession, city, and other profile details you choose to provide.
• Uploaded documents — certificates, marksheets, identity documents, and other credential files you upload to your vault.
• Credential timeline data — education, employment, awards, and related details you enter into your professional timeline.
• Profile photos — images you upload as your profile avatar.
• Usage data — basic technical information such as device type, browser, and how you interact with the platform, used to improve reliability and security.

3. How We Store Data

Your data is stored securely on Supabase cloud infrastructure. Personal information and credential records are held in encrypted form in our database. Uploaded documents are stored in private storage buckets with access controls — they are not publicly accessible unless you explicitly choose to share them through your public profile settings.

4. How We Use Your Data

We use your information solely to provide and improve the MyQrio service, including:

• Building and maintaining your verified credential timeline.
• Generating your unique QR code and public profile page.
• Displaying only the information and documents you choose to make public through your privacy settings.
• Operating clinical logbook features such as Qrio Rounds.
• Securing your account and preventing misuse of the platform.

5. Your Rights

You have full control over your data. You may access, edit, or permanently delete your information at any time through your account Settings. Deleting your account removes all associated documents, timeline events, profile data, and stored files from our systems. You may also adjust privacy toggles to control what appears on your public profile.

6. Data Sharing

We never sell your personal data to third parties. Your public profile displays only the information you have enabled through your privacy settings — such as education history, work experience, or awards. Documents attached to timeline events are shared only when you choose to make those events visible. We may disclose information if required by applicable law or a valid order from an Indian court or regulatory authority.

7. Compliance

MyQrio is designed to comply with the Information Technology Act, 2000 and applicable rules thereunder, including reasonable security practices for sensitive personal data. We also align our practices with evolving Indian data protection regulations, including the Digital Personal Data Protection Act, 2023, to the extent applicable to our operations.