Privacy Policy

Last updated: April 15, 2026

1. Overview

RapidMed helps you create an emergency medical profile and share only the parts you choose through your QR code or direct link. This Privacy Policy explains what data we collect, why we process it, the choices you have, and how deletion and optional Google Drive features work.

2. Information We Collect

  • • Account details such as your name, email address, password, and email verification status.
  • • Health and profile information you add, such as blood type, allergies, medications, conditions, notes, emergency contacts, height, weight, vitals, and insurance details.
  • • Health readings, uploaded medical file references, and related metadata you save over time.
  • • Privacy settings, including the visibility level you choose for each emergency profile field.
  • • Consent records, such as when you accepted the Terms and Conditions, Privacy Policy, and health-data processing consent.
  • • Optional Google Drive connection details, connection timestamps, and Drive file references if you choose to use the medical files feature.
  • • Access, security, and privacy event logs that help us protect accounts and show you recent activity.
  • • Optional verification data if you apply for PWD or healthcare professional review.

3. Sensitive Personal Information

Health information in RapidMed, including allergies, medications, conditions, blood type, vitals, medical records, and similar emergency profile details, is treated as sensitive personal information. We process it so you can create and manage your emergency medical profile. During sign up, we ask for explicit consent using this wording:

I consent to RapidMed collecting and processing my health and other sensitive personal information to create and manage my emergency medical profile.

4. How We Use Your Information

  • • To create your account, verify your email address, and keep your sign-in secure.
  • • To store and display your emergency profile according to the visibility controls you choose.
  • • To support optional features such as Google Drive medical files, QR sharing, and account recovery.
  • • To review optional PWD and healthcare professional verification submissions.
  • • To maintain access logs, audit trails, and service security.
  • • To provide limited analytics or advertising support without sending sensitive health details to those services.

5. Privacy and Visibility Controls

You can set emergency profile fields to `Public`, `Family`, or `Professional`. `Family` is the default for sensitive fields in the current app experience. Before you make sensitive health fields public, RapidMed shows a warning that anyone with your QR code or link may be able to view that information. We do not sell your personal information.

6. Google Drive Medical Files

Google Drive is a separate optional feature for medical files. It is not part of sign up or account authentication. Before you connect it, RapidMed shows separate consent information and asks you to confirm that you want to continue.

RapidMed uses Google Drive only as an optional medical files feature. If you continue, RapidMed may access, upload, organize, display, download, and delete medical files inside your Google Drive after you authorize the connection.

Disconnecting removes RapidMed access, stored connection tokens, and app-side file references. Files that already exist in your own Google Drive stay there until you delete them from Google Drive yourself.

7. Retention, Removal, and Deletion

  • • You can edit or correct your profile data in the app at any time.
  • • If you remove a medical file from RapidMed while Google Drive is connected, the app removes the saved reference and requests deletion of that file from the connected Drive location.
  • • If you disconnect Google Drive, RapidMed removes stored tokens and app-side medical file references, but files already in your own Google Drive may remain there.
  • • If you delete your account, RapidMed removes your app-side personal data, health data, tokens, file references, and Google Drive connection records tied to that account.
  • • Limited audit or access records may remain only when needed for service integrity, but we do not keep deleted users' medical content in those logs.

8. Third-Party Services and Limited Purpose Use

RapidMed may use third-party services such as Google Drive, Google-served ads, Google Analytics, and Vercel Analytics. We configure these services for limited service and measurement purposes and do not intentionally send sensitive health details, medication names, medical conditions, uploaded file names, or similar medical content to analytics or advertising platforms.

9. Security

We take reasonable steps to protect your information. No online service is perfect, but we work to keep your data as safe as we can. This includes access control, consent records, audit logging for key privacy events, and route checks for sensitive features.

10. Your Rights and Choices

  • • View and review your profile data.
  • • Edit or correct your profile data and privacy settings.
  • • Delete your account and app-side data.
  • • Disconnect Google Drive.
  • • Contact us for privacy help or questions at privacy@rapidmed.app.

11. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will post the updated version here.

12. Contact

If you have questions about this Privacy Policy, contact us at privacy@rapidmed.app.

Terms of ServiceBack to Home
Privacy Policy | RapidMed