PediNex

Privacy Policy

Last updated: January 2025

1. Introduction

PediNex is a pediatric medication dosing calculator developed by Gwimed, a healthcare software company building tools for clinicians. We are committed to protecting your privacy and being transparent about our data practices.

This Privacy Policy explains what information we collect, how we use it, and your rights regarding your data. This policy complies with the General Data Protection Regulation (GDPR), Indonesia's Personal Data Protection Law (UU PDP No. 27/2022), and other applicable international privacy laws.

2. Summary

We respect your privacy. Here is the short version:

  • We do not collect personal information
  • We do not store patient data (only temporary calculation on your device)
  • We do not require account registration
  • We collect anonymous usage statistics to understand which medications are commonly used
  • We do not sell or share personal data
  • Patient weight and age stay on your device and are cleared when you close the app

3. What We Don't Collect

We believe in being upfront about privacy. Here's what we do not collect:

  • No Personal Identifiable Information (PII) — We do not collect names, email addresses, phone numbers, or any information that could identify you or your patients.
  • No Patient Records — We do not store, transmit, or have access to any patient medical records.
  • No Location Data — We do not access or track your GPS location.
  • No Device Identifiers for User Tracking — We have disabled device ID tracking in our analytics.
  • No Exact Patient Data — We do not collect exact weight or age values (only broad ranges for statistics).
  • No Cookies — Our mobile app does not use cookies or web tracking technologies.

4. What We Collect

4.1 Calculation Data (Temporary, Device-Only)

When you use our dose calculator, you enter patient weight (in kg), patient age (in months), and selected medication and formulation. This information is:

  • Processed entirely on your device (offline-first architecture)
  • Used only to compute the appropriate medication dose
  • Never stored on our servers
  • Automatically cleared when you close the app or start a new calculation
  • Not linked to any identifiable patient or user

4.2 Anonymous Usage Analytics

To improve our app and understand which medications are most commonly prescribed, we collect anonymous usage statistics using Mixpanel analytics:

What we track:

  • Drug names (e.g., "Paracetamol", "Amoxicillin")
  • Broad age groups (e.g., "infant", "toddler", "child") — not exact age
  • Broad weight ranges (e.g., "10-15kg", "20-30kg") — not exact weights
  • Route of administration and formulation types
  • App usage patterns (screens viewed, searches performed)

Why this is not PHI (Protected Health Information):

  1. Drug names alone cannot identify patients
  2. We use broad buckets instead of exact values
  3. We have disabled device tracking — events are not linked to specific devices or users
  4. Events are independent — we cannot reconstruct patient histories
  5. No personal identifiers are collected or transmitted

4.3 Subscription Information

We use RevenueCat to manage premium subscriptions. RevenueCat receives anonymous device ID (for subscription validation), subscription status, and purchase history from Google Play Store. RevenueCat does not receive personal information. All payment processing is handled by Google Play Store.

5. How We Use Information

The limited information we process is used solely to:

  1. Calculate medication doses (offline, on-device)
  2. Display drug information (formulations, dosing guidelines)
  3. Understand medication usage patterns (to prioritize data updates)
  4. Improve app reliability (track errors, fix bugs)
  5. Manage subscriptions (validate premium access)

We do not use any information for:

  • Advertising or marketing
  • User profiling or identification
  • Selling to third parties
  • Tracking individual patients or healthcare providers

6. Data Sharing and Third Parties

6.1 We Do Not Sell Data

We do not sell, rent, or trade any information with third parties for marketing or advertising purposes.

6.2 Third-Party Services

Mixpanel (Analytics)

  • What they receive: Anonymous event data (drug searches, calculations), drug names, broad age/weight buckets
  • What they do not receive: Personal information, exact patient data, device IDs
  • Privacy policy: mixpanel.com/legal/privacy-policy

RevenueCat (Subscription Management)

  • What they receive: Anonymous device ID, subscription status, purchase events
  • What they do not receive: Personal information, patient data, payment details
  • Privacy policy: revenuecat.com/privacy

6.3 Services We Do Not Use

Our app does not integrate with advertising networks, social media platforms, Google Analytics or Firebase Analytics, or user identification or profiling services.

7. Data Security

We implement appropriate security measures:

  • HTTPS encryption — All server communication is encrypted using TLS/SSL
  • No data retention — Patient calculation data is not stored on our servers
  • Offline-first architecture — Calculations happen on-device using local SQLite database
  • Minimal data principle — We only process what is necessary for dose calculations

As a healthcare professional, you are responsible for protecting access to your device, verifying calculation results before clinical use, and complying with your institution's data protection policies.

8. Data Retention

Data TypeRetention Period
Calculation parameters (weight, age)Not retained (on-device only, cleared on close)
Anonymous analytics (Mixpanel)Up to 90 days
Local app preferencesUntil app uninstall or data clear
Drug database (local SQLite)Until app uninstall

9. Your Rights

Under GDPR, UU PDP (Indonesia), and other privacy laws, you have the following rights:

  • Access — You can request information about what data we hold. Since we do not collect personal data, we have no personal information about you.
  • Deletion — You can delete all locally stored data by clearing the app's data in your device settings or uninstalling the app. To request deletion of anonymous analytics data, email us at support@gwimed.com.
  • Data Portability — Since we do not store your data, there is no data to export.
  • Objection — You may stop using the app at any time. No data will be retained.
  • Complaints — You have the right to lodge a complaint with your local data protection authority: Ministry of Communication and Information Technology (Kominfo) for Indonesia, your national Data Protection Authority for the European Union, or your applicable regulatory body for other regions.

10. Children's Privacy

Our app is designed for use by healthcare professionals only. It is not intended for use by children under 18 years of age. We do not knowingly collect any information from children.

11. International Data Transfers

Since we do not collect or store personal data, international data transfer regulations (such as GDPR's restrictions) do not apply to our service in a meaningful way. The app operates offline-first with local data storage on your device.

12. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be indicated by updating the "Last Updated" date at the top of this policy. We encourage you to review this policy periodically. Continued use of the app after changes constitutes acceptance of the updated policy.

13. Medical Disclaimer

IMPORTANT

PediNex is a clinical decision support tool intended for use by qualified healthcare professionals only.

  • This app provides dosing calculations based on published medical references
  • All calculations should be verified by the prescribing healthcare professional
  • This app does not replace professional medical judgment
  • Users are responsible for final clinical decisions
  • We are not liable for clinical outcomes resulting from the use of this app

14. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

General Support: support@gwimed.com
Privacy Inquiries: privacy@gwimed.com

We aim to respond to all inquiries within 30 days.

15. Regional Addendum

15.1 Indonesia (UU PDP)

Sesuai dengan Undang-Undang Pelindungan Data Pribadi (UU No. 27 Tahun 2022):

  • Kami tidak mengumpulkan data pribadi pengguna
  • Data pasien tidak disimpan (hanya kalkulasi sementara di perangkat Anda)
  • Statistik anonim tidak dapat mengidentifikasi pasien atau pengguna
  • Pengaduan dapat diajukan ke Kementerian Komunikasi dan Informatika

15.2 European Union (GDPR)

For users in the European Economic Area:

  • Legal Basis: Legitimate interest (providing the dose calculation service)
  • Data Controller: Gwimed (PediNex)
  • DPO Contact: privacy@gwimed.com
  • No personal data is transferred outside the EEA as we do not collect personal data

Related Documents

PediNex Terms of ServiceGwimed Privacy Policy