1. Introduction

MTAG Health Solutions Namibia (Pty) Ltd (“Meditag Namibia”, “we”, “us”, or “our”) operates the Meditag app. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information, including sensitive health data (medical history, examinations, prescriptions, lab results, X-rays, and CT scan images), when you use our services in Namibia.

We are committed to protecting your privacy in accordance with Article 13 of the Namibian Constitution (right to privacy) and the ethical guidelines of the Health Professions Council of Namibia (HPCNA). Although Namibia’s comprehensive Data Protection Bill is still under consideration by Parliament and has not yet been enacted, we voluntarily apply international best-practice standards.

2. Data We Collect

We collect:

  • Personal Information: Name, email, phone number, date of birth, and account details provided during registration.
  • Health Data: Medical history, examinations, prescriptions, lab results, X-rays, CT scans, and other medical information you choose to log.
  • Usage Data: Analytics on how you interact with the app, device information, IP address, and browser type.

3. How We Use Data

Your data is used to:

  • Provide and improve Meditag services, including secure storage and access to your medical records.
  • Enable you to share records with healthcare professionals when you choose.
  • Personalise your experience and deliver relevant health insights.
  • Comply with legal and professional obligations, including HPCNA guidelines on patient records.

4. Data Sharing

We may share data with:

  • Service Providers: Trusted partners for hosting, analytics, and support who are bound by strict confidentiality agreements.
  • Healthcare Professionals: Only when you explicitly authorise sharing of your records.
  • Legal Authorities: When required by Namibian law or to protect our rights or the safety of users.

We do not sell your personal or health data to third parties.

5. Data Security

We implement industry-standard measures including:

  • Encryption for data in transit and at rest.
  • Strict access controls and regular security audits.
  • Secure storage of sensitive health records in compliance with HPCNA ethical standards.

6. Account Deletion and Personal Information Erasure

You may request deletion of your Meditag account and associated personal information at any time directly through the app (Settings → Account → Delete Account). We respect your constitutional right to privacy and will process your request promptly.

What Happens When You Request Deletion

  • Immediate steps: Upon confirmation, we will permanently delete your account profile, login credentials, contact details, and any directly identifiable personal information not required for legal or professional retention.
  • Health records: We will de-identify (anonymise) your medical records by removing names, ID numbers, contact details, device identifiers, and any linking metadata so they can no longer be attributed to you.

What is Retained (De-identified Only)

Certain de-identified health records may be kept for the periods required by HPCNA professional ethical guidelines or other legal obligations, including:

  • A minimum of 6 years after the record becomes dormant (last entry or treatment) for adult users.
  • Longer periods for minors (until age 21), mentally incapacitated users (lifetime), or occupational health records (20 years after treatment ends), consistent with HPCNA and analogous professional standards.
  • Additional time where necessary for legal defence, audit, research, or statistical purposes (with safeguards to protect privacy).

These retained records are stored securely in a de-identified form that prevents reconstruction of your identity and are used only for legitimate legal or compliance purposes.

Timeline

  • We will confirm receipt of your deletion request immediately.
  • Identifiable personal information (non-medical) will be deleted or de-identified within 30 days.
  • Full processing (including any manual review of health records) may take up to 30 days in total. You will receive email confirmation once complete.
  • De-identified medical records will be irreversibly deleted at the end of the applicable retention period.

Important: Deleting your account does not automatically cancel any active subscriptions (manage these via the Billing area on the patient portal).

7. Your Rights

You have the right to:

  • Access, correct, or request deletion of your personal data (see Account Deletion section above).
  • Object to or restrict certain processing of your data.
  • Withdraw consent where processing is based on consent.

We will respond to rights requests without undue delay and in accordance with Namibian constitutional protections and best-practice standards.

8. Contact Us

For privacy concerns, account deletion requests, or any other questions, contact our Data Protection Officer at legal@meditag.com.na or support@meditag.com.na.

Questions About Privacy?

Contact our team for more information about how we protect your data in Namibia.

Contact Us