Privacy Policy

Last Updated: 6 April 2026

Part A: Maval Tech Solutions - General Website Policy

This section governs the use of the Maval Tech Solutions website (mavaltechsolutions.com). Our commitment is to protect the privacy of our website visitors.

Information We Collect

We only collect personal information when you voluntarily provide it to us, such as when you contact us via our email address. This may include your name, email address, and any other information you choose to provide.

How We Use Information

Information collected through our website is used solely to respond to your inquiries and provide you with information about our services. We do not sell, rent, or share this information with third parties for marketing purposes.

Cookies

Our website does not currently use cookies to track visitors. If this changes, this policy will be updated.

Part B: Online Doctor Appointment App - Specific Policy

This section details the privacy practices for the "Online Doctor Appointment" application (the "App") developed by Maval Tech Solutions.

Important: By using the Online Doctor Appointment app, you agree to the collection and use of information in accordance with this policy.

1. Information We Collect

We collect the following types of information to provide and improve our services:

1.1 Personal Information

  • Name: To identify you in the booking system
  • Age: For medical record purposes
  • Mobile Number: For authentication and appointment reminders
  • Address: For location-based hospital recommendations

1.2 Booking Information

  • Doctor appointment details
  • Hospital and clinic preferences
  • Appointment history
  • Payment transaction records (processed via Razorpay)

1.3 Device Information

  • FCM Tokens: Device identifiers for sending push notifications
  • Device Type: Android/iOS for compatibility
  • App Version: For troubleshooting and updates

2. How We Use Your Information

We use the collected information for the following purposes:

  • Appointment Management: Create, modify, and track doctor appointments
  • Notifications: Send appointment reminders, queue updates, and booking confirmations via push notifications
  • Authentication: Verify your identity using Firebase Authentication
  • Payment Processing: Process payments securely through Razorpay
  • Customer Support: Respond to your queries and resolve issues
  • App Improvement: Analyze usage patterns to enhance user experience

3. Data Sharing and Third Parties

We share your data only with trusted third-party services necessary for app functionality:

3.1 Firebase (Google)

  • Purpose: Cloud storage, authentication, and push notifications
  • Data Shared: User credentials, FCM tokens, booking records
  • Privacy Policy: Firebase Privacy Policy

3.2 Razorpay

  • Purpose: Payment processing for appointment bookings
  • Data Shared: Payment amount, transaction details (no card details stored by us)
  • Privacy Policy: Razorpay Privacy Policy

3.3 What We DO NOT Do

  • ❌ We DO NOT sell your personal data to third parties
  • ❌ We DO NOT share your health information with advertisers
  • ❌ We DO NOT use your data for marketing purposes without consent

4. Notifications and Communication

We communicate with you through multiple channels to ensure you never miss your appointments:

4.1 Push Notifications (In-App)

We use Firebase Cloud Messaging (FCM) to send push notifications for reminders, queue updates, confirmations, and admin actions.

4.2 SMS Text Messages

We send SMS text messages for One-Time Passwords (OTP), appointment confirmations, reminders, and critical updates.

4.3 WhatsApp Messages

With your prior consent, we may send WhatsApp messages for appointment details, reminders, and queue updates.

Consent Notice: By providing your mobile number, you consent to receive SMS and WhatsApp messages related to your appointments. You can opt out of WhatsApp messages at any time.

5. Data Security

We take data security seriously, implementing encryption (in transit and at rest), secure authentication, and access controls via Firebase Security Rules. Payment data is handled exclusively by Razorpay.

6. Data Retention

Data is retained as long as your account is active. Booking history is stored for 2 years. Upon account deletion, personal data is anonymized within 30 days, unless a longer retention period is required by law.

7. Your Rights

You have the right to access, correct, or delete your personal data. You can also opt-out of push notifications and request a copy of your data by contacting our support.

8. Children's Privacy

Our app is not intended for users under the age of 13. We do not knowingly collect personal information from children under 13.

9. Changes to This Privacy Policy

We may update this policy and will notify you of significant changes by updating the "Last Updated" date and/or through an in-app notification.

10. Contact Us

If you have any questions regarding this Privacy Policy, please contact us:

Part C: Prescription Software — Maval Health (Specific Policy)

This section applies to the Prescription Software branded as "Maval Health" — specifically Maval Health Desktop and Maval Health WebApp — developed by Maval Tech Solutions. These products help doctors create, store, and share prescriptions with patients.

1. Google Sign-In & Scopes

Maval Health uses Google Sign-In for authentication and requests only the scopes necessary to provide functionality. Scopes requested include:

  • Basic profile & email: to create and identify your account.
  • Phone number: to support account recovery and notifications (only if available from your Google profile).
  • Google Drive: to save and manage prescription files in your Google Drive with your explicit consent.
  • Google Sheets: to create or update prescription or log spreadsheets in your Drive when you choose to use that feature.

2. How We Use and Store Data

We use the information collected via Google only to provide the application features you enable. Prescription content and related files are stored in your Google Drive (or on our servers only if you explicitly choose a server-backup option). Prescription data that is private to the doctor is encrypted. Encryption and storage details are described below.

3. Encryption & Security

Prescription data is encrypted in transit (TLS) and at rest. Sensitive prescription data is encrypted using keys that are controlled by the doctor when client-side encryption is enabled. We follow industry-standard security practices, limit internal access, and perform routine security maintenance.

4. Data Sharing, Ownership & Third Parties

Doctors retain ownership of prescription content. We do NOT sell, license, or otherwise disclose prescription content to advertisers or third parties. We may use third-party processors (e.g., hosting providers, analytics) only to the extent necessary to operate the service; any such processors are contractually required to protect your data.

5. Revoking Google Access

You may revoke DocPrescriptionWeb's access to your Google account at any time via your Google Account > Security > Third-party apps with account access. Revoking access prevents further access but may prevent the app from functioning until you re-authorize it.

6. Retention & Deletion

Your prescription data is retained while your account is active. If you delete your account, you can request permanent deletion of data; we will remove data stored on our servers within 30 days. Files you created in your Google Drive will remain unless you delete them or ask us to remove them.

7. Security Assessments & Google Verification

Because DocPrescriptionWeb requests access to sensitive Google scopes (Drive and Sheets), Google may require a verification or security assessment. We cooperate with Google's verification requests and will provide architectural and security documentation as needed to demonstrate safe handling of user data.

8. Contact for Prescription Software

For questions about Maval Health privacy, OAuth scopes, or data requests, contact: admin@mavaltechsolutions.com.