Who we are
EmergencyQR is a service operated by [OPERATING ENTITY NAME — TBD] (“we”, “us”). We process personal data as a Data Fiduciary under India's Digital Personal Data Protection Act, 2023 (“DPDP Act”).
Our Data Protection Officer can be reached at dpo@emergencyqr.in.
Data we collect
We collect the following categories of personal data:
- Account data: mobile number, full name, date of birth, gender (optional).
- Medical data: blood group, allergies, current medications, chronic conditions, past surgeries, family medical history, primary doctor name and phone, preferred hospital, additional notes, organ-donor and body-parts consent.
- Emergency contacts: names, phone numbers, relations, and per-contact SMS-alert preferences you add.
- Documents: medical documents (prescriptions, lab reports, scans) you upload.
- Photo: a profile photo you upload, used on the bystander view.
- Scan events:each time your QR is scanned we record the scanner's name and phone, location (if shared), IP address, user agent, and access type (bystander or medical).
- Payment data: Razorpay order, payment, and signature identifiers. We do not store card numbers or UPI handles — those are processed directly by Razorpay.
Sensitive personal data (medical data, documents) is processed only with your express consent given during onboarding.
How we use it
We use your data only for these purposes:
- To generate your unique QR and deliver the service.
- To show life-critical information to a bystander or medical professional when your QR is scanned in an emergency.
- To send SMS alerts to your emergency contacts each time your QR is scanned.
- To verify a medical professional's identity via one-time password (OTP) before granting access to your full medical history.
- To process your one-time payment.
- To respond to your support requests.
We do not sell your data, share it with advertisers, or use it to train machine-learning models.
Who sees what when your QR is scanned
When someone scans your QR, what they see depends on the gate they choose:
- Bystander: after entering their phone number, the bystander sees your photo, name, age, blood group, allergies, and primary emergency contact with a call button. They do NOT see medical history, documents, organ donor status, or address.
- Medical professional: after entering hospital + their phone and verifying with a one-time password sent to that phone, the professional sees your full medical history including documents (via short-lived signed links) and organ-donor consent. Their session lasts 30 minutes.
Every scan is logged. Your emergency contacts receive an SMS alert with the scanner's phone number.
Where data is stored
Your data is stored on Supabase infrastructure. Supabase is hosted in regions outside India (currently AWS Mumbai for primary, with multi-region replication). [LAWYER REVIEW — cross-border transfer notification under DPDP §17 once rules are notified] Medical documents and profile photos are stored in encrypted private buckets and accessed only through short-lived signed URLs (10-minute expiry).
How long we keep data
We keep your data for as long as your account is active. If you delete your account from Settings:
- Your QR stops working immediately — scans land on an invalid page.
- Your profile is marked deleted and queued for permanent erasure within 30 days, including medical info, documents, scan history, and account data.
- Aggregated, de-identified metrics (scan counts, country-level usage) may be retained indefinitely. These cannot be linked back to you.
- We may retain records longer if Indian law requires it (e.g. tax, payment-audit, or court order).
Your rights under the DPDP Act
Under the DPDP Act 2023, you have the right to:
- Access the personal data we hold about you.
- Correct inaccurate or outdated data — most fields you can edit yourself from your dashboard.
- Erase your data — delete your account from Settings, or email us at support@emergencyqr.in.
- Withdraw consent at any time. We will stop processing your data; your account will be disabled.
- Grievance redressal — write to our DPO at dpo@emergencyqr.in. If unresolved within 30 days, you may approach the Data Protection Board of India.
How we protect your data
- Mobile-number based authentication via OTP. We never store passwords.
- Row-level security policies on every database table — even with the database credentials, a request can only return rows owned by the requesting user.
- Medical documents and photos in private storage buckets, accessed only through signed URLs valid for 10 minutes.
- Medical-professional access gated behind a one-time-password verified against their phone, session-bound to 30 minutes.
- All traffic over TLS 1.2+. Encrypted at rest on disk.
- Cryptographically random tokens (qr_token, session_token) — never sequential, never guessable.
No system is fully secure. If you suspect unauthorised access to your account, log in and change information, or email security@emergencyqr.in.
Children
EmergencyQR is intended for adults. If you are creating a profile for a minor (your own child, an elderly parent under guardianship), you confirm you are the legal guardian and consent on their behalf. We do not knowingly collect data directly from anyone under 18 without a guardian's consent. [LAWYER REVIEW — DPDP §9 child-data processing]
Changes to this policy
We may update this policy from time to time. Material changes will be communicated by email or in-app notice 30 days in advance. The “effective date” at the top of this page reflects the current version.
Contact us
General support: support@emergencyqr.in
Data Protection Officer: dpo@emergencyqr.in
Security disclosure: security@emergencyqr.in
Registered office: [OPERATING ENTITY ADDRESS — TBD]