Lifeline Privacy Policy | BinduLogic LLC

1. Who we are

Lifeline (the "App", "Service") is operated by BinduLogic LLC ("BinduLogic", "we", "us", "our"). BinduLogic LLC built the Lifeline app as a free/freemium service intended for use as is. This page informs users about our policies regarding the collection, use, and disclosure of personal information if you decide to use our Service.

If you choose to use our Service, you agree to the collection and use of information in relation to this policy. The personal information we collect is used for providing and improving the Service, specifically to connect blood donors with those in need. We will not use or share your information with anyone except as described in this Privacy Policy.

For any question about this policy, you can reach us at:

Email: [email protected]
In-app: Profile → Settings → Privacy

2. What Lifeline is, in plain language

Lifeline connects people who need blood transfusions — patients and the families acting on their behalf — with volunteer donors nearby. To make that matching possible, Lifeline asks you for health-related information (most importantly your blood group), your general location, at least one phone number, and, if you register as a donor, a government-issued identity document so we can verify you. Some of this information — your name, blood group, approximate location, photo, and phone number — is shown to other users of the App who are trying to give or receive blood. Please read Section 6 carefully before you sign up, because sharing your contact information with other users is central to how the App works.

3. Information we collect

3.1 Information you give us

Account information. When you create an account, we collect your email address and the password you choose. We never store your password in plain form; we store only an Argon2 cryptographic hash of it.

Profile information. Before you can use the App's core features you are asked to complete a profile. This includes:

your full name (first and last);
your date of birth;
your blood group (one of A+, A−, B+, B−, AB+, AB−, O+, O−);
one or more phone numbers; and
a profile photo.

Donor information (only if you register as a blood donor). In addition to your profile, we collect:

the date of your most recent blood donation, if any;
a government-issued identity document — either a National ID or a Birth Certificate — which you upload as a PDF so our team can verify you are who you say you are; and
any medical notes (for example, known allergies) that you choose to enter. These are optional.

Patient and family-member information (only if you or a family member need blood). When you create a blood request, we collect, about the patient:

their name, date of birth, blood group, phone number(s), and photo;
your relationship to the patient (for example, "parent", "spouse");
any medical notes and prescription or medical documents you upload;
the name, address, and geographic coordinates of the hospital or facility where the blood is needed;
the date by which blood is needed and the number of blood bags required.

A note on information about other people. If you create a patient profile on behalf of a family member, or upload a prescription that identifies a doctor or facility, you are giving us personal information about people other than yourself. By doing so, you confirm you have the authority to share that information with us for this purpose.

Messages and communication. Lifeline may facilitate secure messaging between donors and recipients. Please note that data transmission on the platform may not be fully encrypted end-to-end, so we advise users not to share sensitive financial or highly classified information within the App's messaging system.

3.2 Information collected automatically

Precise location. Lifeline uses your device's GPS to determine your geographic coordinates:

when you first set up your profile, to record where you are generally located;
when you open the map or create a blood request, to find donors or patients nearby.

Location is collected only while the App is open on your screen. You control this through your device's location permission, which you can revoke at any time in your device settings; note that revoking it will prevent the App from matching you with donors or patients near you.

Push-notification identifier. If you allow notifications, we receive and store a Firebase Cloud Messaging registration token so that we can deliver blood-request alerts to your device. This token is generated by Google and is specific to your installation of the App.

Device and session information. We store, on your device and on our servers:

the authentication tokens that keep you signed in;
your device platform (iOS or Android) and app version;
server logs of the requests your App makes to our servers (including IP address and timestamps), which we use for security and debugging.

3.3 What we do not collect

For clarity, Lifeline does not collect:

your contacts, calendar entries, SMS messages, call logs, or browsing history;
advertising identifiers (IDFA on iOS, AAID on Android);
analytics events through third-party analytics SDKs;
payment-card, bank-account, or mobile-wallet information (Lifeline does not process payments).

If this ever changes, we will update this policy before the change takes effect and, for material changes, notify you in-app.

4. Why we use your information

We use each category of information only for the purposes set out below.

Purpose	Information used
Create your account and sign you in	Email, password hash, session tokens
Show you in our donor directory to patients searching for a match	Name, age (derived from date of birth), blood group, photo, approximate location, phone number(s), last donation date
Send you blood-request alerts matching your blood group and area	Push-notification token, blood group, location
Let you create a blood request and match you with nearby donors	Patient profile, hospital location, medical notes, uploaded prescriptions
Verify that donors are real people, to reduce fraud and protect patients	Government-issued ID document, date of birth
Keep the Service running securely	Session tokens, device platform, app version, server logs
Respond to support messages and privacy requests	Email address and anything you send us

Legal bases for processing (for users in the EU, UK, and other jurisdictions that require this disclosure). We rely on:

Performance of a contract — to provide the Service you asked for when you signed up;
Your explicit consent — for the processing of health-related data (blood group, medical notes, donation history) and for uploading identity documents;
Our legitimate interests — to keep the Service secure, prevent fraud and abuse, and improve reliability;
Legal obligations — where we are required by law to retain or disclose specific information.

You can withdraw consent at any time (see Section 10); doing so will not affect processing that has already taken place.

5. Automated decision-making

When a blood request is created, Lifeline automatically notifies donors whose blood group matches the request and whose recorded location is within approximately 30 kilometres of the hospital. This is a practical matching filter, not a legal or medical judgement — it does not determine whether you are eligible to donate, and no decision with significant legal or similar effect is made about you automatically.

6. How your information is shared with other users of the App

This is the most important section of this policy. Please read it carefully.

6.1 The donor directory

If you register as a donor, the following information about you is visible to any signed-in user of the App:

your name;
your age (we do not show your date of birth);
your blood group;
your profile photo;
your approximate location;
your last donation date; and
your phone number(s).

Users can contact you directly by calling the phone number shown.

6.2 Blood requests

When you create a blood request, Lifeline sends a push notification to nearby donors with matching blood groups. The notification, and the request detail screen, show donors:

the patient's name;
the blood group required;
the hospital or facility name and location; and
the patient's phone number(s), so donors can contact you directly.

Medical notes and prescription documents you attach to a request are shown to donors who are matched to that specific request.

6.3 What is never shown to other users

Other users of the App do not see:

your email address;
your date of birth (only the derived age);
your password or any authentication information;
your uploaded identity documents (National ID / Birth Certificate) — these are seen only by BinduLogic staff who carry out verification.

6.4 How to stop appearing

You can delete your donor profile to stop appearing in the donor directory and to stop receiving blood-request notifications.
You can delete your account (see Section 10) to remove your profile from the App entirely.
You can revoke the App's location or notification permissions in your device settings at any time.

7. Third parties who process information for us

Lifeline does not sell your personal data and does not share it with advertisers. We do use a small number of service providers who process data on our behalf, under contract, and only for the purposes described below.

Service provider	Operated by	What it receives	Why
Firebase Cloud Messaging	Google LLC	Push-notification token; blood-group topic subscriptions	To deliver blood-request alerts
Firebase Storage	Google LLC	Profile photos, identity documents, prescription files	To host uploaded files securely
Google Maps Platform (Places, Geocoding)	Google LLC	Location queries, GPS coordinates	To help you search for hospitals and resolve addresses
Cloud hosting for the Lifeline backend	Google Cloud Platform	All account, profile, request, and server-log data	To run the Lifeline servers and database

Google's handling of data it receives through these services is governed by Google's privacy policy, available at https://policies.google.com/privacy. Our cloud host processes data only under our instructions, as set out in our contract with them.

International data transfers. Some of these providers, in particular Google, process data outside your country of residence, including in the United States. Where we transfer personal data out of the European Economic Area or the United Kingdom, we rely on the European Commission's Standard Contractual Clauses (and the UK International Data Transfer Addendum where applicable) to protect that data.

We do not otherwise share your personal data with third parties, except where we are required to by law (for example, in response to a valid order from a court or regulator) or where sharing is necessary to protect the rights, property, or safety of BinduLogic, our users, or the public.

8. Device permissions we ask for

Lifeline asks for these permissions on your device. You can grant or revoke each of them at any time in your device's system settings.

Location (precise). Used to set your profile location and to match you with donors or patients nearby. Collected only while the App is open.
Notifications. Used to alert donors to blood requests that match their blood group and area.
Photos and files (read and write). Used so you can select a profile photo, upload a prescription document, or, if you are registering as a donor, upload your identity document.
Network state and internet. Used by the App to communicate with our servers and with Google's services.
Wake lock, exact alarm, foreground service, boot-completed. Used to make sure blood-request notifications, which are time-sensitive, are delivered reliably even when your device has been idle.

If a permission listed in your device's settings is not described here, please let us know at [email protected].

9. Health information

Lifeline collects health-related information: your blood group, the date of your last donation, and any medical notes or prescription documents you add. We treat this information with particular care.

We use health information only for the donation-matching purpose set out in Section 4. We never use it for advertising, profiling, or marketing, and we never sell it.
Medical notes and prescription documents attached to a blood request are shared only with donors who have been matched to that specific request.
Identity documents uploaded by donors are shown only to BinduLogic staff performing verification; they are not shown to other users.
You can edit or remove medical notes and uploaded prescriptions at any time from the profile and request screens.

If you are in the European Economic Area or the United Kingdom: health data is a "special category" of personal data under Article 9 of the GDPR, and we process it on the basis of your explicit consent, which you give when you enter it into the App.

10. Your rights and choices

Depending on where you live, you have some or all of the following rights over the personal data we hold about you:

Access — ask us for a copy of the personal data we hold about you.
Correction — ask us to correct inaccurate data. Most profile fields can be corrected directly in the App.
Deletion — ask us to delete your account and the personal data associated with it.
Withdraw consent — where we rely on your consent (for example, for health information), withdraw it at any time. You can also revoke the App's device permissions at any time in your device settings.
Objection / restriction — object to, or ask us to restrict, certain processing (EEA and UK users).
Portability — receive the personal data you have provided to us in a structured, machine-readable format (EEA and UK users).
Complaint — lodge a complaint with your local data-protection authority.

How to exercise these rights.

Delete your account: open the App and go to Profile → Settings → Delete account. Once confirmed, your account is queued for deletion and removed from our live systems within 30 days, subject to any limited retention described in Section 11.
Any other request: email [email protected] from the address associated with your account. We will respond within the time period required by the law that applies to you, and in any event within 30 days.

We will not charge you for making a request, and we will not treat you differently for doing so.

11. How long we keep your information

Information	How long we keep it
Account and profile data	For as long as your account is active. Within 30 days after you delete your account, we delete it from our live systems.
Identity verification documents (National ID / Birth Certificate)	Until verification is complete, then deleted. In no case longer than 90 days after upload.
Blood requests	Archived 30 days after the request is fulfilled or cancelled. Direct personal identifiers are removed after 12 months.
Server logs	90 days.
Encrypted backups	Data deleted from live systems may persist in encrypted backups for up to 35 days, after which the backups expire.

We may retain specific information for longer where we are required to by law (for example, to defend legal claims or comply with a regulator's request), but only for as long as that purpose requires.

12. How we protect your information

We use a range of technical and organisational measures to protect your information, including:

storing passwords only as Argon2 cryptographic hashes, never in plain form;
encrypting traffic between the App and our servers in transit using TLS;
encrypting uploaded files at rest in Firebase Storage;
requiring a valid authentication token for every request to our servers;
limiting access to identity documents to trained BinduLogic staff performing verification.

We value your trust in providing us with your personal information, and we strive to use commercially acceptable means of protecting it. However, no method of transmission over the internet or method of electronic storage is 100% secure, and we cannot guarantee its absolute security. Please be aware that data transmission on the platform may not be fully encrypted end-to-end, so we advise users not to share sensitive financial or highly classified information within the App's messaging system. If we become aware of a security incident affecting your personal data, we will notify you and the relevant authorities as required by the law that applies to you.

13. Links to other sites

This Service may contain links to other sites. If you click on a third-party link, you will be directed to that site. Note that these external sites are not operated by us. Therefore, we strongly advise you to review the privacy policy of these websites. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services.

14. Children

Lifeline is not directed to children. You must be at least 13 years old to create an account. Donor registration is further restricted to users who are at least 18 years old, reflecting the legal minimum age for blood donation in most jurisdictions.

A parent or legal guardian may create a patient profile for a minor in their care, in order to request blood on the minor's behalf. By doing so, the parent or guardian confirms they have the authority to share the minor's information with us for this purpose.

We do not knowingly collect personally identifiable information from children under 13 years of age. If we discover that a child under 13 has provided us with personal information, we will immediately delete it from our servers. If you are a parent or guardian and you are aware that your child has provided us with personal information, please contact us at [email protected] so that we can take the necessary actions.

15. Changes to this policy

We may update this policy from time to time. When we do, we will:

update the "Last updated" date at the top of this page;
post the new policy in the App and at https://bindulogic.com/lifeline/privacy-policy; and
for material changes — for example, adding a new third-party recipient or a new category of data — notify you in the App before the change takes effect.

If you continue to use Lifeline after a change takes effect, you are agreeing to the updated policy. If you do not agree, you can delete your account (see Section 10).

16. Contact us

If you have any question or suggestion about this policy or about your personal data, do not hesitate to contact us:

Developer: BinduLogic LLC
Email: [email protected]
In-app: Profile → Settings → Privacy