Privacy Policy - 3yada (عيادة)

Effective Date: February 10, 2026 Last Updated: February 10, 2026

Introduction

Welcome to 3yada ("the App", "we", "us", "our"). We respect your privacy and are committed to protecting your personal and health data. This Privacy Policy explains how we collect, use, store, and protect your information when you use the 3yada application and our related services.

3yada is a medical platform specializing in physician-supervised weight loss programs in the Republic of Iraq, operating in compliance with Iraqi Ministry of Health regulations and guidelines.

By using the App, you agree to the practices described in this Policy. If you do not agree with any part of this Policy, please do not use the App.

1. Data We Collect

1.1 Personal Account Data

  • Full name

  • Mobile phone number

  • Email address (optional)

  • Date of birth

  • Gender

  • Delivery address

1.2 Health and Medical Data

  • Height, weight, and body measurements

  • Medical history and chronic conditions

  • Current medications and drug allergies

  • Pregnancy and breastfeeding status (for women)

  • Medical assessment results

  • Prescription records and treatment plans

  • Weight tracking and progress records

  • Medical notes from phone consultations

1.3 Usage Data

  • Login history and app activity

  • Device information and operating system

  • Notification and reminder logs

1.4 Communication Data

  • Phone consultation records with doctors (date and duration only; calls are not recorded)

  • Messages and inquiries sent through the App

2. How We Use Your Data

We use your data exclusively for the following purposes:

2.1 Providing Medical Services

  • Conducting medical assessments and determining appropriate treatment programs

  • Enabling doctors to provide phone consultations based on your health profile

  • Issuing prescriptions and monitoring treatment plans

  • Detecting and addressing side effects

2.2 Medication Delivery

  • Sharing your delivery address with our refrigerated delivery service to deliver your medications

  • Coordinating delivery schedules and confirming receipt

2.3 Improving Your Experience

  • Tracking your progress and displaying results visually

  • Sending reminders for doses and medical follow-ups

  • Improving the App and our services based on anonymized usage patterns

2.4 Legal and Regulatory Compliance

  • Complying with Iraqi Ministry of Health requirements

  • Maintaining medical records in accordance with applicable laws

3. Data Sharing with Third Parties

We never sell your personal or health data to any third party.

We may share your data only in the following limited circumstances:

3.1 Treating Physicians

Your assigned doctor accesses your health profile to provide phone-based medical consultation and monitor your treatment plan.

3.2 Licensed Partner Pharmacies

Pharmacies licensed by the Iraqi Ministry of Health receive prescription information only (not your complete health profile) to dispense your medications.

3.3 Refrigerated Delivery Service

Delivery drivers receive only your name, delivery address, and phone number to deliver medications. They do not have access to any medical data.

3.4 Government Authorities

We may share specific data if required by Iraqi law, court order, or official request from the Ministry of Health.

3.5 Technical Service Providers

We use technical service providers (cloud hosting, notifications) that process data on our behalf under strict data protection agreements.

4. Data Storage and Security

4.1 Storage

  • Your data is stored on secure, encrypted cloud servers

  • Some data is stored locally on your device to enable offline functionality

  • Locally stored data is protected by device-level encryption

4.2 Security Measures

  • Data encryption in transit (TLS/SSL) and at rest (AES-256)

  • Multi-factor authentication for administrative system access

  • Separation of health data from personal account data

  • Regular security audits and continuous updates

  • Health data access restricted to treating physicians only

4.3 Retention Period

  • We retain your health data for the duration of your program enrollment and for five (5) years after its conclusion, in accordance with medical record-keeping requirements

  • Personal account data is deleted within ninety (90) days of an account deletion request

  • We may retain anonymized data for service improvement purposes

5. Your Rights

You have the following rights regarding your data:

5.1 Right of Access

You have the right to request a copy of all personal and health data we hold about you.

5.2 Right to Rectification

You have the right to request correction of any inaccurate or incomplete data.

5.3 Right to Deletion

You have the right to request deletion of your account and personal data, noting that certain medical data may be retained as required by law.

5.4 Right to Object

You have the right to object to the processing of your data for certain purposes.

5.5 Right to Withdraw Consent

You have the right to withdraw your consent to data processing at any time, noting that this may affect our ability to provide medical services.

To exercise any of these rights, please contact us at: 3yada.app@gmail.com

6. Offline App Usage

The App provides offline functionality. When using this feature:

  • Your data is temporarily stored on your device in encrypted form

  • Data is automatically synchronized with our servers when connectivity is restored

  • No data is transmitted to third parties while offline

7. Notifications and Reminders

We send notifications including:

  • Dose schedule reminders

  • Medical follow-up reminders

  • Important alerts related to your treatment program

You can manage notification settings from the App settings or your device settings. We do not use notifications for advertising or third-party marketing purposes.

8. Children's Data Protection

3yada is intended for adults (18 years and older). We do not knowingly collect data from individuals under 18 years of age. If we become aware that data has been collected from a minor, we will delete it immediately.

9. Changes to This Privacy Policy

We may update this Policy from time to time. We will notify you of any material changes via:

  • An in-app notification

  • A text message or email

Your continued use of the App after changes are published constitutes your acceptance of the updated Policy.

10. Contact Us

If you have any questions or concerns about this Privacy Policy or our data handling practices, please contact us:

Email: 3yada.app@gmail.com

Location: Republic of Iraq

This Policy is written in Arabic and English. In the event of any conflict between the two versions, the Arabic version shall prevail.