Privacy & Confidentiality Policy

Last Updated:

Jan 18, 2026

PRIVACY POLICY

This Privacy Policy explains how MedConnect collects, uses, stores, and protects your personal data when you use the MedConnect mobile application, website, and related services (collectively, the “Platform”).

1. Data Controller Information

Data Controller:
MedConnect Georgia 2025 LLC
(Georgian: შპს „მედქონექთ ჯორჯია 2025“)
Identification Number: 430049501
Email: main@medconnect.com.ge

2. Scope of This Privacy Policy

This Privacy Policy applies to all users of the MedConnect Platform, including patients, nurses, clinics, and other registered users.

By using the Platform, you acknowledge that you have read and understood this Privacy Policy.

3. Age Restriction

MedConnect services are intended for users 18 years of age or older only.
We do not knowingly collect personal data from individuals under 18.
If we become aware that data of a minor has been collected, we will delete it promptly.

4. Types of Data We Collect

4.1 Personal Identification Data

  • Full name

  • Date of birth

  • Gender

  • Personal ID number or equivalent identifier

  • Citizenship or country of residence

  • address

4.2 Contact Information

  • Email address

  • Phone number

4.3 Account and Usage Data

  • Username and account identifiers

  • Booking history (dates, times, service type)

  • Communication records within the Platform

  • Device information, IP address, and log data

4.4 Payment and Transaction Data

  • Transaction amounts and timestamps

  • Payment status and transaction identifiers

  • First 6 and last 4 digits of payment cards

Note: MedConnect does not store full payment card numbers. Payments are processed through secure third-party payment providers.

4.5 Health-Related Data

  • Appointment details

  • Uploaded documents (e.g., files shared during consultations)

  • Service history related to nursing or clinic services

Health-related data is processed strictly for service delivery purposes and in accordance with applicable data protection laws.

5. Purposes of Data Processing

We process personal data for the following purposes:

  • User registration and account management

  • Booking and scheduling healthcare services

  • Payment processing and transaction management

  • Communication between users and service providers

  • Customer support and dispute resolution

  • Compliance with legal and regulatory obligations

  • Fraud prevention and platform security

  • Platform improvement and analytics (aggregated and anonymized where possible)

6. Legal Basis for Processing

Personal data is processed based on one or more of the following legal grounds:

  • Your explicit consent

  • Performance of a contract (providing Platform services)

  • Compliance with legal obligations

  • Legitimate interests (security, fraud prevention, service improvement)

7. Data Sharing and Disclosure

We may share personal data only as necessary with:

  • Nurses and clinics involved in your booking

  • Payment service providers for transaction processing

  • Technology service providers (hosting, analytics, communication tools)

  • Government or regulatory authorities, where required by law

We do not sell or rent personal data to third parties.

8. International Data Transfers

Some service providers may process data outside Georgia.
In such cases, we ensure appropriate safeguards are in place to protect your personal data in accordance with applicable law.

9. Data Retention

We retain personal data only for as long as necessary to:

  • Fulfill the purposes described in this Privacy Policy

  • Comply with legal, tax, and accounting obligations

  • Resolve disputes and enforce agreements

Transaction and log data may be retained for legally required periods even after account deletion.

10. Data Security

We implement reasonable technical and organizational measures to protect personal data, including:

  • Secure servers and encrypted connections

  • Access controls and authentication mechanisms

  • Monitoring for unauthorized access or misuse

However, no system is completely secure, and we cannot guarantee absolute data security.

11. User Rights

Under applicable data protection laws, you have the right to:

  • Access your personal data

  • Request correction of inaccurate data

  • Request deletion of your data (subject to legal obligations)

  • Restrict or object to certain processing

  • Withdraw consent where processing is based on consent

Requests can be made by contacting us at main@medconnect.com.ge.

12. Account Deletion

You may request deletion of your MedConnect account by contacting our support team.
Upon deletion:

  • Your account will be deactivated

  • Personal data will be deleted or anonymized where legally permissible

  • Certain data may be retained as required by law

13. Cookies and Tracking Technologies

MedConnect may use cookies or similar technologies to:

  • Maintain user sessions

  • Improve platform performance

  • Analyze usage patterns

You can control cookie preferences through your device or browser settings.

14. Third-Party Links

The Platform may contain links to third-party websites or services.
MedConnect is not responsible for the privacy practices or content of such third parties.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time.
Any changes will be published on the Platform, and continued use constitutes acceptance of the updated policy.

16. Governing Law

This Privacy Policy is governed by and interpreted in accordance with the laws of Georgia.

17. Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy, please contact us:

MedConnect Georgia 2025 LLC
Identification Number: 430049501
📧 Email: main@medconnect.com.ge