Effective Date: November 26, 2025
Digi Logbook ("we," "our," or "us") is a specialized logbook application designed for physicians, residents, and medical trainees to document their procedural experience and clinical cases for educational and credentialing purposes.
Important: This application is NOT a certified Electronic Health Record (EHR) or a Medical Device. It is a self-management tool. By using this service, you acknowledge that you are the sole Data Controller of the information you enter, and you agree to strictly adhere to the data privacy standards set forth in this policy.
We collect specific data types to provide our services, manage your "Pro" subscription, and improve app stability.
Authentication Data: We utilize Google Firebase Authentication. When you sign in, we process your name, email address, and unique User ID (UID) to securely manage your account and sync data across your devices.
Professional Profile: We store the professional details you voluntarily provide (e.g., Title, Name, Hospital, Department, Designation) to populate your logbook reports.
Anonymized Case Data: You input data regarding clinical cases, including Patient Identifiers (e.g., Case ID), Age, Gender, Diagnosis, Procedure details, and Clinical Notes.
Media: You may upload clinical images (e.g., X-rays, wound photos).
Academic Data: We store data regarding your seminars, publications, and thesis milestones.
Strict Prohibition on Direct Identifiers: You explicitly agree NOT to enter Direct Patient Identifiers (e.g., Patient Names, Phone Numbers, Social Security Numbers, Aadhaar Numbers, or full Dates of Birth) into any free-text field. You agree that any "Patient ID" entered will be a local reference number or truncated MRN known only to you, not a publicly identifiable ID.
Biometrics: We use your device’s native biometric API (Fingerprint/Face Unlock) to secure the app. We do not collect, store, or transmit your biometric data. Verification happens locally on your device hardware.
Crash Logs & Analytics: We use Firebase Crashlytics and Google Analytics to collect anonymized data (stack traces, device model, OS version) to fix crashes and improve performance.
Advertising IDs: For non-Pro users, Google AdMob may collect advertising IDs to serve relevant ads.
Service Functionality: To store, sync, and retrieve your logs via Google Cloud Firestore.
Subscription Management: To verify "Pro" status via Google Play Billing. We do not store your credit card or banking information; all financial transactions are handled by Google Play.
Offline Functionality: Some data is cached locally on your device to allow the app to function without an internet connection.
You are the Data Controller: You determine the purposes for which and the means by which patient data is processed. You are responsible for ensuring your use of this App complies with your institution's policies and local laws (HIPAA, GDPR, India DPDP Act).
We are the Data Processor: We provide the infrastructure (App and Cloud Storage) to store your data on your behalf.
We provide this App as a standard commercial service. We are not your Business Associate under HIPAA. Do not store Protected Health Information (PHI) that requires a BAA.
You warrant that any image uploaded to the App has been redacted/masked to remove patient faces, tattoos, wristbands with names, or any other identifying features before upload.
The App allows you to generate PDF and CSV reports. Once a file is exported from the App to your device storage or shared via email/messaging, it leaves our secure environment. We are not responsible for the security of these exported files. You assume full responsibility for protecting exported reports.
The App offers an "Encrypted Backup" feature (ZIP/JSON).
If you set a password for your backup, we do not store this password.
If you lose your backup password, we cannot recover your data.
We are not liable for data loss resulting from forgotten passwords or corrupted local files.
Encryption in Transit: All data transmitted between your device and our servers is encrypted using SSL/TLS (HTTPS).
Encryption at Rest: Data stored in Google Firestore is encrypted at rest.
Local Security: You are responsible for keeping your physical device secure (e.g., using a strong device passcode).
We use trusted third-party services. Their privacy policies govern their use of your data:
Retention: We retain your data only as long as your account remains active.
Account Deletion: You may request immediate account deletion via the "Delete Account" option in the App Settings. This action is irreversible and will permanently wipe your logs, profile, and subscription status from our servers.
This App is a professional tool intended for medical practitioners. We do not knowingly collect data from children under the age of 13.
We may update this policy to reflect changes in legal requirements or App features. Continued use of the App after an update constitutes acceptance of the new policy.
For privacy concerns, data deletion requests, or support, please contact: Email: contact.digilogbook@gmail.com