SurgiSafe

Privacy Policy

Effective: 28 April 2026

In plain English

SurgiSafe is built so that your patient information never reaches us. Here’s what that means in practice:

  • The app runs entirely on your phone. Patient names, case notes, audio recordings, and metadata stay on your device, in the app’s local storage.
  • Photos sync to your own Google Drive — under your account, in a folder the app creates. There is no Madhisoka server in between.
  • We don’t track you. No analytics, no telemetry, no “anonymous” usage data being phoned home. We genuinely don’t know who is using the app.
  • We don’t sell or share data with anyone — because we don’t collect anything that could be sold or shared.
  • Google Sign-In is the only third party involved, and it is used solely so the app can write photos to your Drive. We never see your password.

That’s the entire policy in five points. The sections below say the same thing in the language that lawyers prefer.

The full policy

1. Who we are

SurgiSafe is published by Madhisoka, an independent software studio operated by Dr. Vijay Muthukumaran in Tamil Nadu, India. References to “we”, “us”, “our” or “Madhisoka” in this policy mean the same thing.

2. The data SurgiSafe handles

SurgiSafe is an offline-first application. The app handles three categories of data, described below.

2.1 Data stored on your device

The following information is stored locally in the app’s on-device database (IndexedDB) and on your phone’s file system. None of it is transmitted to Madhisoka:

  • Patient identifiers you enter (e.g. names, ages, medical record numbers).
  • Procedure details, diagnoses, dates, and OT notes you enter.
  • Audio recordings (operative voice notes) you create within the app.
  • Photo thumbnails and, depending on storage mode, photo originals.
  • Application preferences (theme, accent colour, viewer mode, etc.).

2.2 Data stored in your Google Drive

When you connect Google Drive, SurgiSafe uploads photos and audio files to a folder the app creates inside your Drive. These files are stored under your Google account, not ours. We do not have a copy. Google’s own privacy policy governs how Google stores and processes that data on Drive.

2.3 Permissions the app requests

  • Photos and media: required so you can pick photos from your gallery to attach to a case.
  • Microphone: required only when you choose to record an operative voice note. Recordings are saved locally; nothing is streamed elsewhere.
  • Internet / network state: required so the app can sync your photos to your Drive and pause when offline.
  • Foreground service / notifications: required to keep background maintenance running reliably and to show sync progress in the notification drawer.
  • Google Drive (drive.file scope): the app receives access only to the files it creates inside your Drive. It cannot read or modify any other file in your Drive.

3. Data we don’t collect

  • No analytics SDKs (no Firebase Analytics, Crashlytics, Sentry, Mixpanel, etc.).
  • No advertising IDs.
  • No location data.
  • No device identifiers beyond what Google Play Services routinely shares with Google.
  • No background telemetry of any kind.

If a future version of the app adds any data collection, this policy will be updated before the change ships, and the change will be opt-in where reasonably possible.

4. Third-party services

SurgiSafe uses two Google services and no others.

  • Google Sign-In: used to authenticate your access to your own Google Drive. Governed by Google’s privacy policy.
  • Google Drive API: used to upload, list, and download files in the app’s own folder inside your Drive.

5. Children’s privacy

SurgiSafe is intended for use by qualified medical professionals. It is not directed at children, and we do not knowingly process information about children below the age of consent under applicable law.

6. How long data is retained

Data on your device persists for as long as you keep the app installed. Data in your Google Drive persists for as long as you keep it there. Madhisoka does not retain any of your data on its own systems, because Madhisoka does not operate any server that handles user data.

7. How to delete your data

  • Local data: uninstall SurgiSafe, or use the “Clear app data” option in your phone’s system Settings → Apps → SurgiSafe.
  • Drive data: open Google Drive, locate the SurgiSafe folder, and delete its contents. Madhisoka cannot delete those files for you because we don’t have access to them.
  • Drive access: revoke SurgiSafe’s access to your Drive at any time via myaccount.google.com/permissions.

8. Security

Because data resides on your phone and in your Drive, security depends primarily on: (a) your phone’s lock screen, (b) the security of your Google account, and (c) Google Drive’s encryption at rest and in transit. We strongly recommend enabling two-factor authentication on your Google account.

9. Cross-border transfers

SurgiSafe itself does not transfer your data anywhere. Google Drive may store and replicate your files in data centres outside your country of residence; this is governed by Google’s own policies.

10. Your rights

Under applicable laws including India’s Digital Personal Data Protection Act, 2023, and the EU GDPR, you have the right to access, correct, and delete personal data we hold about you. Because Madhisoka does not hold personal data on its own systems, you already have these abilities directly through your device and your Google account. For any related queries, write to madhisoka17@gmail.com.

11. Changes to this policy

If we change anything material, we will update this page, change the effective date, and — when reasonably possible — notify you in-app the next time you open SurgiSafe.

12. Contact

For privacy questions, requests, or complaints, write to madhisoka17@gmail.com. We respond from the same inbox a human reads, usually within a few days.