Privacy Policy

Privacy and Data Usage Policy

This Privacy and Data Usage Policy outlines how we collect, use, store, share, and protect your information when you use our mobile application. We are committed to safeguarding your privacy and handling your data responsibly, in accordance with applicable Indian laws, including:

  1. The Information Technology Act, 2000
  2. The Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011 (SPDI Rules)
  3. Any other relevant healthcare data norms or guidelines issued by Indian authorities

1. Information We Collect

We collect the following types of information:

Personal Information

  • Name, gender, date of birth
  • Contact details (phone number, email address)
  • Identification (Aadhaar or other government ID if necessary for authentication)

Health and Medical Data

  • Patient history related to ophthalmology (e.g., diagnoses, treatment plans)
  • Test results, prescriptions, and scans (e.g., OCT, fundus images)
  • Appointment history and visit notes

Device and Technical Information

  • Mobile device details, operating system, IP address
  • In-app activity logs (crash reports, diagnostics, feature usage)

We do not collect biometric data unless explicitly required for a specific medical procedure or consented to by the user.

2. Purpose of Data Collection

We collect your information for the following purposes:

  • To provide and improve eye care services through the app
  • To schedule and manage appointments and consultations
  • To maintain a secure electronic health record (EHR)
  • To send reminders and alerts for follow-ups, medications, or updates
  • To improve application performance, user experience, and functionality
  • To comply with legal and regulatory obligations

We do not use your data for advertising or third-party marketing.

3. User Consent

By using the app, you consent to:

  • The collection and processing of your data as described in this policy
  • The use of your health information for medical care and app-related operations
  • Secure data sharing with authorised medical staff or service providers when necessary

You can withdraw your consent at any time by contacting us or uninstalling the app. Please note that doing so may limit your access to some or all app functionalities.

4. Data Sharing and Disclosure

We do not sell, rent, or trade your personal or health information. Your data may be shared with:

  • Authorised medical professionals within our clinic or healthcare team
  • Third-party service providers (e.g., cloud storage, secure database hosting) strictly under data protection agreements
  • Government authorities or law enforcement when legally required under applicable laws or by court order

All sharing is done with strict adherence to the need-to-know basis and under confidentiality agreements.

5. Data Storage and Security

We implement appropriate technical and organisational safeguards, including:

  • Encryption of sensitive personal and medical data
  • Secure servers hosted within India (where feasible and legally required)
  • Role-based access control to prevent unauthorised access
  • Regular security audits and data backup procedures

We follow the IS/ISO/IEC 27001 standard as per Rule 8 of the SPDI Rules.

6. User Rights

You have the following rights regarding your data:

  • Access: Request a copy of the personal or health information we hold about you
  • Correction: Update or correct your information if it is inaccurate
  • Erasure: Request deletion of your account and associated data
  • Objection: Object to processing or request restricted use under certain conditions
  • Withdraw Consent: Revoke previously given consent (where applicable)

All such requests can be made via the contact details provided below. We may take reasonable steps to verify your identity before processing your request.

7. Data Retention

We retain your data:

  • For as long as you are an active user of the app
  • As required for medical records retention under applicable Indian healthcare regulations
  • As necessary to comply with legal obligations or defend legal claims

Upon request, we will delete or anonymise your data unless retention is legally mandated.

8. Children’s Privacy

This app is not intended for children under 18 years of age without the supervision of a parent or guardian. We do not knowingly collect data from minors without appropriate consent.

9. Policy Updates

We may update this Privacy and Data Usage Policy from time to time. Users will be notified of material changes via the app or email. Continued use of the app constitutes acceptance of the updated policy.