Privacy Policy

This Privacy Policy explains how PranaChain Inc. collects, uses, discloses, and protects information when you use our website, mobile application, and healthcare data platform.

Last updated: June 15, 2026

PranaChain Inc. ("PranaChain", "we", "our", or "us") respects your privacy and is committed to protecting your personal information.

This Privacy Policy describes how we collect, use, disclose, and safeguard information when you use:

  • the PranaChain mobile application
  • the PranaChain website (pranachain.com)
  • the PranaChain healthcare data platform

(collectively, the "Services").

PranaChain provides a consent-driven platform that enables individuals to securely manage and control access to their healthcare records, while allowing authorized healthcare providers and institutions to access relevant data when permission is granted.

By accessing or using the Services, you agree to the practices described in this Privacy Policy.

1. Information We Collect

We collect information necessary to operate and improve the Services.

1.1 Personal Information

When you create an account or interact with the platform, we may collect:

  • Name or user identifier
  • Email address
  • Login credentials
  • Blockchain wallet address
  • Identity verification information (KYC/AML)
  • Healthcare provider identification
  • Customer support communications
We collect only the minimum information necessary to provide and maintain the Services. Identity verification (KYC) information is collected solely for fraud prevention, account security, and compliance with applicable regulatory requirements, and is retained only for as long as required by law.

1.2 Health and Medical Information

PranaChain allows users to store and manage healthcare records. Health information may include:

  • Prescriptions
  • Medical reports
  • Laboratory results
  • Diagnoses
  • Treatment history
  • Allergies or conditions
  • Imaging references

Architecture note

Health records are not stored directly on the blockchain. Medical data is stored in secure, encrypted off-chain storage systems, while the blockchain records only cryptographic hashes, consent permissions, verification records, and access logs. This architecture helps ensure both data integrity and privacy protection. Users maintain control over who can access their health records.

1.3 Automatically Collected Information

When users access the Services, we may automatically collect:

  • IP address
  • Device type
  • Operating system
  • Browser information
  • Application usage data
  • Session activity
  • Timestamps and logs

This information helps improve system performance, reliability, and security.

1.4 Cookies and Tracking Technologies

We use cookies and similar technologies to improve functionality and analyze usage patterns. Types of cookies may include:

  • Essential cookies
  • Analytics cookies
  • Functional cookies
  • Security cookies

Users may manage cookies through browser settings. Disabling certain cookies may affect functionality.

2. How We Use Information

We use collected information to:

  • Provide and operate the Services
  • Create and manage user accounts
  • Enable secure healthcare record management
  • Process transactions and platform operations
  • Facilitate consent-based sharing
  • Support authorized provider access
  • Maintain platform security
  • Detect fraud and unauthorized activity
  • Improve product and user experience
  • Comply with legal obligations

3. Blockchain Data Transparency

Certain platform operations rely on blockchain technology. Blockchain records may include:

  • Wallet addresses
  • Transaction identifiers
  • Cryptographic proofs
  • Consent verification records

These records do not contain readable medical records or personal health data. Due to the nature of blockchain technology, certain transaction-related information cannot be modified or deleted once recorded.

5. Research and Anonymized Data

With explicit user consent, certain health data may be used for research purposes. When used for research:

  • Personally identifiable information is removed.
  • Data is anonymized or de-identified.
  • Research partners receive only approved datasets.

Users can choose whether to participate in research-related programs.

6. How We Share Information

PranaChain does not sell personal information or health data.

Information may be shared only in the following situations:

Service Providers

We may share information with trusted service providers for cloud infrastructure, secure storage, analytics, identity verification, and customer support. These providers are required to maintain strict confidentiality and security.

Legal Requirements

We may disclose information where required by applicable law, court order, regulatory authority, or other legal process.

Business Transfers

If PranaChain undergoes a merger, acquisition, restructuring, or sale of assets, user information may be transferred as part of the transaction. Where required, users will be notified.

Consent-Authorized Healthcare Sharing

Health data is shared only with parties explicitly authorized by the user.

7. Data Security

PranaChain implements industry-standard security measures, including:

  • Encryption of sensitive data
  • Secure off-chain storage
  • Identity authentication
  • Access control systems
  • Monitoring and logging
  • Blockchain-based verification

While we use strong safeguards, no method of transmission over the Internet is completely secure.

8. Your Privacy Rights

Depending on applicable laws, users may have rights including:

  • Access to personal data
  • Correction of inaccurate information
  • Deletion of certain data
  • Restriction of processing
  • Data portability
  • Withdrawal of consent

Requests may be submitted to: pranachain@gmail.com

We respond in accordance with applicable privacy laws.

9. Contact Information

If you have questions about this Privacy Policy, please contact:

Company

PranaChain Inc.

167 Ferry St

Windsor, ON N9A 0C5

Canada

pranachain@gmail.com

www.pranachain.com