KwezaCare App Privacy Policy

Effective Date: 1 st June, 2025

Last Updated:1 st June, 2025

 

Introduction

​

This Privacy Policy describes how KwezaCare (“we”, “our”, “us”) collects, uses, discloses, and safeguards your information when you use the KwezaCare mobile application (the “App”). We are committed to protecting your privacy and complying with applicable data protection laws including the EU General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), the Children’s Online Privacy Protection Act (COPPA), and Apple’s App Store Review Guidelines.

 

1. Information We Collect

​

a. Information You Provide Directly

- Full name, gender, date of birth, Medical scheme

- Contact information: email, phone number, home address

- Medical history, symptoms, medications, and care updates

- Emergency contact details

- Profile preferences and feedback

 

b. Automatically Collected Information

 

- IP address, device ID, OS version, device type

- App usage data, crash logs, diagnostic data

- Location data (background or real-time, only with your explicit permission)

 

c. Sensitive & Health Information

- Health records and treatment history

- Vitals data and other health-related input from user or provider

- Appointment logs, medication adherence data

 

2. How We Use Your Data

​

We use your data only for purposes directly related to the core functionality of the KwezaCare app,

including:

- Providing personalized medical care and services

- Scheduling appointments and issuing reminders

- Communicating securely with health workers

- Monitoring treatment progress

- Analyzing trends to improve healthcare delivery

- Complying with legal and regulatory obligations

 

3. Legal Basis for Processing (GDPR)

​

We process your personal data under the following lawful bases:

- Your explicit consent (Article 6.1.a)

- Contractual necessity to provide healthcare (Article 6.1.b)

 

- Legal obligations (Article 6.1.c)

- Legitimate interests in improving care (Article 6.1.f)

- For health data: Article 9.2.h (healthcare provision) or 9.2.a (explicit consent)

 

4. Consent and Permissions

​

We do not collect any personal data without your informed, prior consent. You will see clear permission prompts for access to location, health data, camera, or any sensitive data. Your consent can be revoked at any time through the app settings or your device settings.

 

Example Purpose String for Location Access:

“Your location allows us to assist healthcare workers in providing care directly at your home.”

 

5. Data Retention and Deletion

​

Data is retained only as long as necessary to fulfill the purpose of its collection. Users may request deletion of their data or entire account through the app or by contacting support. Data will be permanently deleted within 30 days of request unless legal obligations require further retention.

 

6. Data Sharing and Third Parties

​

We only share your data in the following circumstances:

- With authorized medical personnel for care coordination

- With public health authorities where required by law

 

7. Data Minimization

​

We only request and collect data strictly necessary for:

- Medical assistance

- Appointment management

 

- Emergency services

- User support

 

8. Security Measures

​

We implement industry-standard security protocols:

- End-to-end encryption (TLS) for all data in transit

- Encrypted local storage for data at rest

- Secure user authentication and role-based access controls

No data is stored on iCloud.

 

9. User Rights

​

You have the right to:

- Access your personal data

- Correct inaccuracies

- Withdraw consent at any time

- Request deletion of your data

- Lodge a complaint with your data protection authority

 

10. Children’s Privacy

​

KwezaCare does not knowingly collect data from children under 13 without verified parental consent. For users under 18, data collection is conducted with parental/guardian consent or by law.

 

11. Health Data and Research

​

KwezaCare handles health data strictly for care provision and does not share it for marketing, advertising, or non-health-related analytics.

 

12. Account Management

​

You can create or delete your account directly from the app. If you choose to delete your account, all associated data will be erased within 30 days.

 

13. App Tracking Transparency and Advertising

​

We do not track users for advertising purposes. If tracking is introduced, we will use Apple’s ATT framework.

 

14. Intellectual Property and Legal Ownership

​

All app content, systems, and medical tools are legally owned or licensed by KwezaCare.

 

15. Contact Us

​

For privacy inquiries:

Email: info@wandikweza.org

Phone: +265 988110521

Address: Area 12/436/a, Lilongwe, Malawi

 

16. Changes to This Policy

​

We may update this Privacy Policy. Continued use of the app indicates agreement with the

updated policy.