Skip to main content
MedVenture
Log in

Privacy Policy

Last updated: April 2026

MedVenture ("we", "us", "our") operates medventurecare.com and provides medical tourism coordination services for international patients seeking care in Egypt, including patients in the United Kingdom, European Union, Middle East, and elsewhere. This Privacy Policy explains how we collect, use, store, and share personal data, and the rights available to you under applicable law, including the UK GDPR and EU GDPR where they apply.

1. Who we are

The data controller for personal data processed through this website and our coordination services is MedVenture. For any privacy-related requests, contact us at info@medventurecare.com.

2. What data we collect

Depending on how you use our services, we may collect:

  • Identity and contact details: name, email address, telephone number, country of residence, and similar details you provide when you enquire, book, or communicate with us.
  • Medical and health-related information: details you choose to share to help us coordinate your care (for example treatment interests, medical history, reports, or documents you upload or send). This may include special category data under GDPR.
  • Payment information: payments for our services are processed by our payment provider (Stripe). We do not store full payment card numbers on our servers; Stripe handles card data in line with industry standards. We may receive limited payment metadata (such as transaction status, amount, and partial identifiers) as needed to administer bookings and invoices.
  • Technical data: IP address, browser type, device information, and similar data from your visits to our website, collected through cookies and similar technologies where applicable (see Section 8).
  • Communications: records of emails, messages, and calls as needed to provide support and coordinate your journey.

3. Why we use your data

We use personal data to:

  • Provide medical tourism coordination — including assessing your enquiry, matching you with partner clinics, preparing proposals, and supporting logistics before, during, and after your stay in Egypt.
  • Communicate with you by email, phone, or other channels you use.
  • Process payments and manage bookings, refunds, and invoicing in line with our terms.
  • Operate, secure, and improve our website and services; comply with legal obligations; and establish or defend legal claims where necessary.

Where GDPR applies, we rely on appropriate legal bases — including performance of a contract, legitimate interests (such as operating and securing our services, and coordinating care with your consent where relevant), compliance with legal obligations, and, where required, your explicit consent (for example for certain health data or marketing, where applicable).

4. How we store and protect data

We host and process data using Supabase and other secure infrastructure. We implement appropriate technical and organisational measures, including encryption in transit (and encryption at rest where supported by our providers), access controls, and staff training, to protect your information against unauthorised access, loss, or misuse. No method of transmission over the internet is completely secure; we work to apply recognised safeguards.

5. Who we share data with

We only share personal data when necessary to deliver our services or meet legal requirements. Recipients may include:

  • Partner clinics and healthcare providers in Egypt — to arrange consultations, treatment plans, and related coordination you have requested.
  • Stripe — as our payment processor, to take and refund payments securely.
  • Resend — as our email delivery provider, to send transactional and service-related messages.
  • Professional advisers — such as lawyers or accountants, where required.
  • Authorities — when we are legally required to disclose information.

Where we transfer personal data outside the UK or EEA, we use appropriate safeguards (such as standard contractual clauses or adequacy decisions) as required by applicable law.

6. Retention

We keep personal data only as long as necessary for the purposes described in this policy, including to fulfil contracts, meet legal, tax, and accounting requirements, and resolve disputes. Typical periods depend on the type of data — for example, enquiry and booking records may be retained for several years after the end of our relationship where a longer period is justified by law or legitimate business need. Medical-related documents may be retained in line with healthcare coordination and legal requirements. We review retention periodically and anonymise or delete data when it is no longer needed.

7. Your rights (GDPR / UK GDPR)

Where applicable, you have the right to: request access to your personal data; request rectification of inaccurate data; request erasure ("right to be forgotten") in certain circumstances; restrict processing; data portability (where processing is based on contract or consent and carried out by automated means); object to processing based on legitimate interests or for direct marketing; and withdraw consent where processing is consent-based. You may also lodge a complaint with a supervisory authority in your country of residence.

To exercise these rights, contact info@medventurecare.com. We will respond within the timeframes required by law.

8. Cookies

We use cookies and similar technologies for essential functions (for example security and basic site operation) and, where you allow them, for analytics to understand how our site is used. You can manage non-essential cookies through the cookie controls on our site. For more detail, see our cookie notice when you first visit and any updates we publish here.

9. Changes

We may update this Privacy Policy from time to time. The "Last updated" date at the top will reflect material changes. We encourage you to review this page periodically.

10. Contact

Questions or requests regarding this policy or your personal data: info@medventurecare.com

Terms of Service