Privacy Policy
This Privacy Policy explains how My Joints ("we", "us" or "our") collects, uses, and protects information when you use the My Joints mobile application, web site and related services (collectively, the "Service").
1. Who we are
My Joints is a tool to help patients and clinicians track joint-related symptoms and disease activity scores. We act as the controller of the personal data processed through the Service.
2. Information we collect
Depending on how you use the Service, we may process the following categories of information:
- Account information – such as name, email address, login identifier and password.
- Health and medical information – such as symptoms, joint assessments, disease activity scores (for example SDAI, DAS28-CRP) and any notes you or your clinician choose to enter. This may qualify as sensitive health data.
- Usage and device information – such as app version, device model, operating system version and basic interaction data used to keep the Service secure and functioning (for example, logs of errors or performance events).
- Support communications – information you provide when you contact us for help or feedback.
We do not collect precise GPS location, your phone contacts, photos, microphone, or camera data unless this is clearly indicated in the app and you choose to provide it.
3. How we use your information
We use the information described above for the following purposes:
- to create and manage your My Joints account and securely authenticate you;
- to record, calculate and display disease activity scores and related trends over time;
- to enable clinicians you are connected with to review your entered data;
- to operate, maintain, secure and improve the Service;
- to respond to your questions and support requests; and
- to comply with legal obligations and enforce our terms.
We do not sell your personal data and we do not use your health information for advertising or marketing purposes.
4. Legal basis / consent
Where required by law, we rely on your consent to process health-related information. You can withdraw your consent at any time by deleting your account and uninstalling the app; this does not affect the lawfulness of processing before withdrawal.
5. Data sharing and third parties
We may share your information only in the following limited situations:
- with healthcare providers or clinics you are linked to through the app, so that they can review your data and provide care;
- with service providers who host, maintain or support the Service (for example, cloud hosting or email delivery), under contracts that require them to protect your information and only use it for our documented instructions;
- where we are legally required to do so, for example to comply with a court order or lawful government request; or
- in connection with a merger, acquisition or other corporate transaction, where permitted by law and with appropriate safeguards.
We do not share your personal data with third parties for their own advertising or marketing purposes.
6. Cookies and analytics
The mobile app currently does not use third-party advertising SDKs. Limited technical data may be collected to understand app performance and reliability (for example, crash logs and error diagnostics). If we add analytics or advertising technologies in the future, we will update this policy and, where required, ask for your consent.
7. Data retention
We keep your information for as long as your account is active and for a reasonable period afterwards for backup, security and legal purposes. When data is no longer needed, we delete or irreversibly anonymize it.
8. Security
We use reasonable technical and organizational measures to protect your information from unauthorized access, alteration, disclosure or destruction. However, no method of transmission or storage is completely secure and we cannot guarantee absolute security.
9. Your rights and choices
Subject to applicable law, you may have the right to:
- access the personal data we hold about you;
- request correction of inaccurate or incomplete data;
- request deletion of your data, or restriction of processing in certain situations;
- object to certain types of processing; and
- withdraw consent where we rely on consent.
You can also request that your account be deleted from within the app (if this feature is available) or by contacting us using the details below.
10. Children's privacy
The Service is not directed to children under the age of 13, and we do not knowingly collect personal data from children under 13. If you believe that a child has provided us with personal data, please contact us so that we can take appropriate steps.
11. International transfers
Your information may be stored and processed on servers located in different countries. Where required, we take steps to ensure that international transfers are protected by appropriate safeguards.
12. Contact us
If you have any questions about this Privacy Policy, the way we handle your data, or if you wish to exercise your rights, you can contact us at:
Email: nandakishorep2121@gmail.com
Last updated: March 2026