SWASTHGRAM W.E.F Aprill 2023
What Information we collect?
We may collect information about you in a variety of ways. The information we may collect via the Applications depends on the content and materials you use, and includes:
Demographic and other personally identifiable information (such as your name and email address) that you voluntarily give to us when choosing to participate in various activities related to the Applications, such as chat, posting messages in comment sections or in our forums, liking posts, sending feedback, and responding to surveys. If you choose to share data about yourself via your profile, online chat, or other interactive areas of the Applications, please be advised that all data you disclose in these areas is public and your data will
be accessible to anyone who accesses the Applications.
We may request access or permission to and track location-based information from your mobile device, either continuously or while you are using the Applications, to provide location-based services. If you wish to change our access or permissions, you may do so in your device’s settings.
Mobile Device Access
We may request access or permission to certain features from your mobile device, including your mobile device’s camera, contacts, microphone, reminders, sensors, social media accounts, storage and other features. If you wish to change our access or permissions, you may do so in your device’s settings.
Mobile Device Data
Device information such as your mobile device ID number, model, and manufacturer, version of your operating system, phone number, country, location, and any other data you choose to provide.
We may request to send you push notifications regarding your account or the Applications. If you wish to opt-out from receiving these types of
communications, you may turn them off in your device’s settings.
Information from third parties, such as personal information or network friends, if you connect your account to the third party and grant the
Applications permission to access this information.
How we use your information?
Having accurate information about you permits us to provide you with a smooth, efficient, and customized experience. Specifically, we may use information collected about you via the Applications to
- Maintain your health related data.
- Create and manage your account.
- To personalize user experience. We may use your Non- Personal Information to understand demographics, customer interest, and other trends among our users;
- To help develop our service. We may use Non- Personal Information to provide, maintain, improve and modify the Applications, Services and the Site and develop new services;
- Compile anonymous statistical data and analysis for use internally or with concerned pathologists for diagnosis purpose.
- Delivering targeted diagnosis results, customer support, camp locations, schedules and other related information regarding the Applications to you.
- Fulfill and manage purchases, orders, payments, and other transactions related to the Applications.
- Generate a personal profile about you to make future visits to the Applications more personalized.
- Increase the efficiency and operation of the Applications.
- Monitor and analyze usage and trends to improve your experience with the Applications.
- Notify you of updates to the Applications.
- Offer new products, services, mobile applications, and/or recommendations to you.
- Perform other business activities as needed.
- To further develop Swasthgram application business. We may use Non- Personal Information for promotion and marketing purposes
- Prevent fraudulent transactions, monitor against theft, and protect against criminal activity.
- Process payments and refunds.
- Request feedback and contact you about your use of the Applications.
- Respond to product and customer service requests.
Disclosure of Your Information
We may share information we have collected about you in certain situations. Your information may be disclosed as follows:
By Law or to Protect Rights
If we believe the release of information about you is necessary to respond to legal process, to investigate or remedy potential violations of our policies, or to protect the rights, property, and safety of others, we may share your information as permitted or required by any applicable law, rule, or regulation. This includes exchanging information with other entities for fraud protection and credit risk reduction.
Third-Party Service Providers
We may share your information with third parties that perform services for us or on our behalf, including payment processing, data analysis, email delivery, hosting services, customer service, and marketing assistance.
With your consent, or with an opportunity for you to withdraw consent, we may share your information with third parties for marketing purposes, as permitted by law.
Interactions with Other Users
If you interact with other users of the Applications, those users may see your name, profile photo, and descriptions of your activity, including sending invitations to other users, chatting with other users, liking posts, following blogs.
When you post comments, contributions or other content to the Applications, your posts may be viewed by all users and may be publicly distributed outside the Applications in perpetuity
We may use third-party advertising companies to serve ads when you visit the Applications. These companies may use information about your visits to the Applications and other websites that are contained in web cookies in order to provide advertisements about goods and services of interest to you.
We may share your information with our business partners to offer you certain products, services or promotions.
Social Media Contacts
If you connect to the Applications through a social network, your contacts on the social network will see your name, profile photo, and descriptions of your activity.
Other Third Parties
We may share your information with advertisers and investors for the purpose of conducting general business analysis. We may also share your information with such third parties for marketing purposes, as permitted by law.
We are not responsible for the actions of third parties with whom you share personal or sensitive data, and we have no authority to manage or control third-party solicitations. If you no longer wish to receive correspondence, emails or other communications from third parties, you are responsible for contacting the third party directly.
SECURITY OF YOUR INFORMATION
We use administrative, technical, and physical security measures to help protect your personal information. While we have taken reasonable steps to secure the personal information you provide to us, please be aware that despite our efforts, no security measures are perfect or impenetrable, and no method of data transmission can be guaranteed against any interception or other type of misuse. Any information disclosed online is vulnerable to interception and misuse by unauthorized parties. Therefore, we cannot guarantee complete security if you provide personal information.
OPTIONS REGARDING YOUR INFORMATION
Personal and Sensitive User Data
Personal and sensitive user data includes, but isn’t limited to, personally identifiable information, financial and payment information, authentication information, phonebook, contacts, device location, SMS and call-related data, health data, Health Connect data, inventory of other apps on the device, microphone, camera, and other sensitive device or usage data. If your app handles personal and sensitive user data, then you must:
- Limit the access, collection, use and sharing of personal and sensitive user data acquired through the app to app and service functionality and policy-conforming purposes reasonably expected by the user:
- Apps that extend usage of personal and sensitive user data for serving advertising must comply with Google Play’s ads policy.
- You may also transfer data as necessary to service providers or for legal reasons such as to comply with a valid governmental request, applicable law, or as part of a merger or acquisition with legally adequate notice to users.
- Handle all personal and sensitive user data securely, including transmitting it using modern cryptography (for example, over HTTPS).
- Use a runtime permissions request whenever available, prior to accessing data gated by Android permissions.
- Not sell personal and sensitive user data.
- “Sale” means the exchange or transfer of personal and sensitive user data to a third party for monetary consideration.
- User-initiated transfer of personal and sensitive user data (for example, when the user is using a feature of the app to transfer a file to a third party, or when the user chooses to use a dedicated purpose research study app), is not regarded as sale.
Prominent Disclosure & Consent Requirement
In cases where your app’s access, collection, use, or sharing of personal and sensitive user data may not be within the reasonable expectation of the user of the product or feature in question (for example, if data collection occurs in the background when the user is not engaging with your app), you must meet the following requirements:
Prominent disclosure: You must provide an in-app disclosure of your data access, collection, use, and sharing. The in-app disclosure:
- Must be within the app itself, not only in the app description or on a website;
- Must be displayed in the normal usage of the app and not require the user to navigate into a menu or settings;
- Must describe the data being accessed or collected;
- Must explain how the data will be used and/or shared;
- Cannot be included with other disclosures unrelated to personal and sensitive user data collection.
Consent and runtime permissions: Requests for in-app user consent and runtime permission requests must be immediately preceded by an in-app disclosure that meets the requirement of this policy. The app’s request for consent:
- Must present the consent dialog clearly and unambiguously;
- Must require affirmative user action (for example, tap to accept, tick a check-box);
- Must not interpret navigation away from the disclosure (including tapping away or pressing the back or home button) as consent;
- Must not use auto-dismissing or expiring messages as a means of obtaining user consent; and
- Must be granted by the user before your app can begin to collect or access the personal and sensitive user data.
Apps that rely on other legal bases to process personal and sensitive user data without consent, such as a legitimate interest under the EU GDPR, must comply with all applicable legal requirements and provide appropriate disclosures to the users, including in-app disclosures as required under this policy.
To meet policy requirements, it’s recommended that you reference the following example format for Prominent Disclosure when it’s required:
- “[This app] collects/transmits/syncs/stores [type of data] to enable [“feature”], [in what scenario].”
- Example: “Fitness Funds collects location data to enable fitness tracking even when the app is closed or not in use and is also used to support advertising.”
- Example: “Call buddy collects read and write call log data to enable contact organization even when the app is not in use.”
If your app integrates third party code (for example, an SDK) that is designed to collect personal and sensitive user data by default, you must, within 2 weeks of receipt of a request from Google Play (or, if Google Play’s request provides for a longer time period, within that time period), provide sufficient evidence demonstrating that your app meets the Prominent Disclosure and Consent requirements of this policy, including with regard to the data access, collection, use, or sharing via the third party code.
Examples of common violations
- An app collects device location but does not have a prominent disclosure explaining which feature uses this data and/or indicates the app’s usage in the background.
- An app has a runtime permission requesting access to data before the prominent disclosure which specifies what the data is used for.
- An app that accesses a user’s phone or contact book data and doesn’t treat this data as personal or sensitive
- An app that records a user’s screen and doesn’t treat this data as personal or sensitive data subject to this policy.
- An app that collects device location and does not comprehensively disclose its use and obtain consent in accordance with the above requirements.
- An app that uses restricted permissions in the background of the app including for tracking, research, or marketing purposes and does not comprehensively disclose its use and obtain consent in accordance with the above requirements.
- An app with an SDK that collects personal and sensitive user data and doesn’t treat this data as subject to this User Data Policy, access, data handling (including disallowed sale), and prominent disclosure and consent requirements.
Refer to this article for more information on the Prominent Disclosure and Consent requirement.
Restrictions for Personal and Sensitive Data Access
In addition to the requirements above, the table below describes requirements for specific activities.
|Your app handles financial or payment information or government identification numbers||Your app must never publicly disclose any personal and sensitive user data related to financial or payment activities or any government identification numbers.|
|Your app handles non-public phonebook or contact information||We don’t allow unauthorized publishing or disclosure of people’s non-public contacts.|
|Your app targets children||Your app must not include an SDK that is not approved for use in child-directed services. See Designing Apps for Children and Families for full policy language and requirements.|
|Your app collects or links persistent device identifiers (for example, IMEI, IMSI, SIM Serial #, etc.)||Persistent device identifiers may not be linked to other personal and sensitive user data or|
resettable device identifiers except for the purposes of Telephony linked to a SIM identity (for example, WIFI calling linked to a carrier account), andEnterprise device management apps using device owner mode. These uses must be prominently disclosed to users as specified in the User Data Policy. Please consult this resource for alternative unique identifiers. Please read the Ads policy for additional guidelines for Android Advertising ID.
Data safety section
All developers must complete a clear and accurate data safety section for every app detailing collection, use, and sharing of user data. The developer is responsible for the accuracy of the label and keeping this information up-to-date. Where relevant, the section must be
Please refer to this article for additional information on completing the Data safety section.
- Developer information and a privacy point of contact or a mechanism to submit inquiries.
- Disclosing the types of personal and sensitive user data your app accesses, collects, uses, and shares; and any parties with which any personal or sensitive user data is shared.
- Secure data handling procedures for personal and sensitive user data.
- The developer’s data retention and deletion policy.
EU-U.S., Swiss Privacy Shield
If you access, use, or process personal information made available by Google that directly or indirectly identifies an individual and that originated in the European Union or Switzerland (“EU Personal Information”), then you must:
- Comply with all applicable privacy, data security, and data protection laws, directives, regulations, and rules;
- Access, use or process EU Personal information only for purposes that are consistent with the consent obtained from the individual to whom the EU Personal Information relates;
- Implement appropriate organizational and technical measures to protect EU Personal Information against loss, misuse, and unauthorized or unlawful access, disclosure, alteration and destruction; and
- Provide the same level of protection as is required by the Privacy Shield Principles.
You must monitor your compliance with these conditions on a regular basis. If, at any time, you cannot meet these conditions (or if there is a significant risk that you will not be able to meet them), you must immediately notify us by email to [email protected] and immediately either stop processing EU Personal Information or take reasonable and appropriate steps to restore an adequate level of protection.
As of July 16, 2020, Google no longer relies on the EU-U.S. Privacy shield to transfer personal data that originated in the European Economic Area or the UK to the United States. (Learn More.) More information is set forth in Section 9 of the DDA.
Usage of App Set ID
Android will introduce a new ID to support essential use cases such as analytics and fraud prevention. Terms for the use of this ID are below.
- Usage: App set ID must not be used for ads personalization and ads measurement.
- Association with personally-identifiable information or other identifiers: App set ID may not be connected to any Android identifiers (for example, AAID) or any personal and sensitive data for advertising purposes.