Privacy

This is a summary of the Sehha privacy posture. The full legally-binding text ships at public launch.

What we store

Your account (email, language, nationality), the patient profiles you create (your own or your dependents), your medications and dose times, your adherence log, and your notification log.

What never happens

• Your data is never sold. Ever.
• PHI never travels in push payloads (FCM/APNs). Only an opaque ID arrives; the body is fetched over an authenticated channel.
• Admins cannot read your data without an entry in the audit log.

Your rights

You can export or delete your data from the Settings screen. We comply with Gulf PDPL and maintain a HIPAA-equivalent posture.