Privacy Policy
1. Introduction
This Privacy Policy explains how Damico Health Inc. ("we," "us," or "our") handles information in connection with the DH Field EMR web application (the "App") and this website. DH Field EMR is a free tool designed for international medical outreach and global health programs. It is not intended for use within the United States healthcare system and is not a certified Electronic Health Record (EHR) system.
2. We Do Not Collect Your Patient Data
We do not operate any servers that store the patient information you enter into the App, and we cannot see it. The App runs entirely in your own browser, and this website is a static site that does not collect patient data of any kind.
We never receive your patients' names, dates of birth, demographics, medical histories, diagnoses, lab results, medications, or any other clinical information.
3. Where Your Data Lives
On your device. Records you enter are saved locally in your browser's storage on the device you use. They stay on that device unless you sync or back them up.
In your own cloud (optional). If you choose to enable sync, your records are stored in a Supabase project that you create and control. We do not host it, administer it, or have access to it. You hold the credentials, you choose the region, and you can export or delete the data at any time. Supabase's own terms and privacy policy govern that hosting — see supabase.com/privacy.
4. What This Website Collects
This website (damicohealth.com) is hosted on GitHub Pages and contains no advertising, no analytics or tracking scripts, and no user accounts. As with any website, the hosting provider may log standard technical request information (such as IP address and browser type) for security and reliability; that is governed by GitHub's privacy statement. We do not place tracking cookies.
5. Your Responsibilities
Because your data stays under your control, you and your organization are responsible for:
- Obtaining appropriate patient consent before collecting medical data
- Complying with the data-protection laws of your country of operation
- Securing the devices that hold patient information
- Keeping regular backups (the App can export a complete backup file)
- Protecting your Supabase URL and key, and controlling who can use them
- Appropriately retaining and, when required, deleting patient records
6. It's Free — No Payments
DH Field EMR is free. There are no subscriptions, no per-seat fees, and we do not process any payments to use it. If you choose to make a voluntary donation, that payment is handled entirely by PayPal under PayPal's privacy policy; we receive only the limited information PayPal provides about a donation.
7. Children's Privacy
The App is a professional tool operated by trained adults. While the patients documented may be of any age, the App is not directed at or used by children.
8. International Data Transfers
If you enable sync, you select the region for your own Supabase project, and your data is stored there. You are responsible for ensuring compliance with any cross-border data-transfer laws applicable to your organization.
9. Data Retention and Deletion
- Data stored locally on a device persists until you delete it, clear the app's storage, or remove the app from that device.
- Data stored in your Supabase project persists until you delete it. Because the project is entirely yours, you can remove records or delete the whole project at any time from your Supabase dashboard.
- We cannot delete your data for you, because we do not hold it.
10. Security
Network traffic between the App, this website, and Supabase uses HTTPS encryption. Your Supabase project includes database access controls (row-level security) configured by the setup script. You are responsible for keeping your Supabase credentials and your devices secure, and for controlling which devices can access your data.
11. Changes to This Policy
We may update this Privacy Policy from time to time. Changes will be posted to this page with an updated date above. Continued use of the App after changes constitutes acceptance of the updated policy.
12. Contact Us
Damico Health Inc.
Email: md@damicohealth.org
Website: damicohealth.org
13. Disclaimers
DH Field EMR is not a medical device. It is a data-entry and record-keeping tool only. All clinical decisions must be made by qualified healthcare professionals. Damico Health Inc. assumes no liability for clinical decisions made using data from the App.
The App is not HIPAA-compliant and is not intended for use within the United States healthcare system or any jurisdiction requiring certified electronic health record systems. The software is provided free and "as is," without warranty of any kind.