Privacy Policy

Last updated: April 1, 2025

1. Introduction

DocLive.ai (“we,” “us,” or “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application and related services (collectively, the “Service”).

By using the Service, you agree to the collection and use of information in accordance with this policy. If you do not agree, please do not use the Service.

2. Information We Collect

2.1 Information You Provide

  • Account Information: Name, email address, and password when you create an account.
  • Health Information: Symptoms, health concerns, medical history, wellness diary entries, and other health-related data you voluntarily share through chat or forms.
  • Medical Documents: Lab results, prescriptions, and other medical records you upload for OCR processing.
  • Profile Data: Age, gender, and other demographic information provided during onboarding.

2.2 Information Collected Automatically

  • Device Information: Device type, operating system version, unique device identifiers.
  • Usage Data: Features used, session duration, interaction patterns, and crash reports.
  • Log Data: IP address, access times, and referring app/page information.

3. How We Use Your Information

We use the collected information for the following purposes:

  • To provide, maintain, and improve the Service, including AI-powered health consultations.
  • To personalize your experience and provide contextual health guidance based on your health profile.
  • To process and analyze uploaded medical documents using OCR technology.
  • To generate Health Intelligence Scores and monthly health reports (Premium users).
  • To send you important notifications, such as health follow-up reminders.
  • To detect, prevent, and address technical issues and security threats.
  • To comply with legal obligations.

4. Data Storage and Security

Your data is stored on secure servers hosted within the European Union (EU) using Supabase infrastructure with PostgreSQL databases. We implement industry-standard security measures including:

  • End-to-end encryption for data in transit (TLS 1.3).
  • Encryption at rest for all stored data (AES-256).
  • JWT-based authentication for all API access.
  • Regular security audits and vulnerability assessments.
  • Role-based access control for internal data access.

5. Data Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following circumstances:

  • Service Providers: With trusted third-party providers who assist in operating our Service (e.g., cloud hosting, AI processing), bound by strict data protection agreements.
  • Legal Requirements: When required by law, regulation, legal process, or governmental request.
  • Safety: To protect the rights, property, or safety of DocLive.ai, our users, or the public.
  • Consent: With your explicit consent for any other purpose.

6. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

  • Access: Request a copy of the personal data we hold about you.
  • Rectification: Request correction of inaccurate personal data.
  • Erasure: Request deletion of your personal data (“right to be forgotten”).
  • Portability: Request a machine-readable copy of your data.
  • Restriction: Request that we limit the processing of your data.
  • Objection: Object to processing of your personal data for certain purposes.

To exercise any of these rights, please contact us at privacy@doclive.ai or use the data export/deletion features available in your account settings.

7. Data Retention

We retain your personal data for as long as your account is active or as needed to provide you with the Service. Health data and conversation history are retained to maintain the continuity and quality of your AI health companion experience. You may request deletion of your account and associated data at any time through the app settings or by contacting us.

8. Children's Privacy

The Service is not intended for use by individuals under the age of 16. We do not knowingly collect personal information from children under 16. If we become aware that we have collected data from a child under 16, we will take steps to delete such information promptly.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the “Last updated” date. You are advised to review this page periodically.

10. Contact Us

If you have any questions about this Privacy Policy, please contact us at: