Privacy Policy
Last updated: June 1, 2026 | Effective date: June 1, 2026
VitalCare Smart Limited ("we", "us", or "our") operates the AIDoc mobile application and the AI-33 Medical Watch wearable device (collectively, the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.
1. Information We Collect
1.1 Personal Information
When you create an account or use the Service, we may collect:
- Name, email address, phone number, date of birth, and gender
- Profile photo and account credentials
- Emergency contact details you voluntarily provide
1.2 Health & Biometric Data
Through the AI-33 Medical Watch and the AIDoc app, we collect:
- Heart rate, blood pressure, blood oxygen saturation (SpO₂), and body temperature
- Sleep patterns, step count, and activity data
- Tongue diagnosis images and AI-generated TCM syndrome analysis
- X-ray and medical images you voluntarily upload
- AI consultation conversation history
1.3 Device & Technical Data
- Device model, operating system, unique device identifiers
- Bluetooth connection data with the AI-33 watch
- IP address, app usage analytics, crash logs
- Push notification tokens and device registration information
- GPS location data (used for weather-based health insights and nearby clinic search)
2. How We Use Your Information
We use the collected information to:
- Provide real-time health monitoring and personalized AI health consultations
- Perform AI-powered TCM tongue diagnosis and syndrome differentiation analysis
- Generate health trend reports and intelligent risk early-warning alerts
- Connect you with certified TCM practitioners for telemedicine consultations
- Facilitate appointment scheduling and electronic prescriptions
- Improve our AI algorithms and Service quality through anonymized, aggregated data
- Process payments for products and services (e.g., herbal tea shop orders)
- Comply with applicable laws and medical device regulations
📲 SMS & Push Notifications
We use your phone number and device push notification tokens to send you:
- Health Alert SMS: Critical health alerts (abnormal vital sign readings) are sent via SMS to you and/or your designated emergency contacts. These alerts include your name, the specific abnormal reading, and recommended actions.
- Push Notifications – Health Reminders: Periodic health tips, wellness content, and health news delivered through Firebase Cloud Messaging (FCM).
- Push Notifications – Promotions & Updates: App announcements, feature updates, and promotional offers.
You can manage your notification preferences at any time within the app under Settings → Notification Settings. You may opt out of promotional notifications while continuing to receive critical health alerts. SMS health alerts can be disabled by removing your emergency contacts from the app.
Standard messaging and data rates from your carrier may apply to SMS notifications.
3. Data Sharing & Disclosure
We do not sell your personal or health data. We may share your information with:
- Healthcare Providers: When you enroll under a doctor's care, your health data (vitals, tongue diagnosis, consultation history) is shared with your assigned practitioner with your explicit consent.
- Service Providers: Trusted third-party partners who assist in operating our Service (cloud hosting, AI processing via Alibaba Cloud, SMS delivery, payment processing via Stripe).
- Emergency Contacts: Health alert SMS messages are sent to emergency contacts you have designated in the app.
- Legal Requirements: When required by law, court order, or governmental authority.
4. Data Security
We implement industry-standard security measures including:
- End-to-end encryption for data transmission between the watch, app, and servers
- HIPAA-compliant data storage and access controls
- Role-based access control for healthcare provider data access
- Encrypted storage of sensitive credentials and API keys
- Regular security audits and vulnerability assessments
While we strive to protect your data, no method of electronic storage or transmission is 100% secure.
5. Data Retention
We retain your personal and health data for as long as your account is active or as needed to provide our Service. Health monitoring history is retained to enable long-term trend analysis. You may request deletion of your data at any time (see Section 7).
6. Children's Privacy
Our Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us immediately.
7. Your Rights
Depending on your jurisdiction, you may have the right to:
- Access, correct, or delete your personal data
- Withdraw consent for data processing
- Export your health data in a portable format
- Object to automated decision-making based on your data
- Opt out of non-essential notifications (push and SMS)
- Lodge a complaint with your local data protection authority
8. Third-Party Services
Our Service integrates with third-party platforms including:
- Alibaba Cloud: AI engine for TCM syndrome analysis
- Firebase (Google): Push notifications, analytics, and crash reporting
- Stripe: Secure payment processing
- Trusang SDK: Wearable device communication and sensor data
Each third-party service has its own privacy policy governing data handling.
🤖 Third-Party AI Services – Explicit Disclosure
Certain features (AI Chat Consultation, AI Tongue Diagnosis, AI Medical Image Analysis) require sending data to third-party AI providers in order to generate a result. Before any such transmission, the app displays an in-app consent dialog that lists the data, identifies the recipient, and requires you to tap "Agree & Continue". You can decline; declining means the feature cannot run.
Data sent to third-party AI services:
- AI Chat Consultation: The text messages you type during the conversation. If (and only if) you tap "Use my health data" in the pre-consultation dialog, the most recent heart rate, blood pressure, blood oxygen saturation, body temperature, age and gender are also included as context.
- AI Tongue Diagnosis: The tongue photo you capture or upload, plus your age and gender (if provided).
- AI Medical Image Analysis (X-ray): The medical image you upload and the body region you select.
Recipients of this data:
- Alibaba Cloud (China) – hosts the Qwen / Tongyi large language models that generate TCM-style responses.
- OpenRouter, Inc. (United States) – routes requests to additional third-party large language model providers, which currently include OpenAI (United States) and Google (United States), depending on the selected model.
Purpose, retention, and protection: Data sent to these AI services is used solely to generate the requested response in real time. Per our contractual arrangements with these providers, the data is not used to train their models. All transmissions occur over HTTPS. We require each third-party AI provider to apply data-protection standards equivalent to those described in this Privacy Policy.
Withdrawing consent: You can withdraw consent at any time by uninstalling the app or by contacting support@a-i-doctor.com. After withdrawal, AI features will stop sending data; the consent prompt will reappear the next time you attempt to use an AI feature.
9. International Data Transfers
Your data may be transferred to and processed in countries outside your jurisdiction. We ensure adequate data protection safeguards are in place in accordance with applicable regulations.
10. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes through the app or by email. Continued use of the Service after changes constitutes acceptance of the updated policy.
Contact Us
If you have questions about this Privacy Policy or wish to exercise your data rights, please contact us at:
VitalCare Smart Limited
Email: support@a-i-doctor.com
Website: www.a-i-doctor.com