Privacy Policy

• Identity: name, age, sex, occupation, address, contact number, email.
• Aadhaar number: used solely to securely link your records across visits.
• Health information: reason for consultation, medical/surgical history, current medications, allergies, vitals (weight, height, BP), and any lab reports you upload.
• Consultation records: doctor's notes, prescriptions, follow-up plans.
• Technical: approximate IP (hashed) used only to prevent abuse of patient-lookup.

• To provide tele-consultation and follow-up care.
• To maintain medical records as required by applicable medical-council guidelines.
• To contact you about your appointment (email and SMS).
• Lawful basis: your consent at the time of booking, and our legitimate interest in providing care.

• The consulting doctor assigned to your appointment.
• The founder/administrator (Dr. Keerthana Madhu Anand) for clinical supervision and quality.
• No third party receives your data for marketing or analytics.
• We use trusted infrastructure providers (cloud hosting, email/SMS) under contractual confidentiality.
• Every reveal of your full Aadhaar number by a clinician is logged with the viewer's identity and time.

• Data is stored on secure servers with encryption in transit (HTTPS) and at rest.
• Access is restricted by role (doctor, admin) and protected by row-level security policies.
• Aadhaar is masked in dashboards by default and shown in full only on explicit reveal, which is logged.
• Lab files are stored in a private bucket; access is via short-lived signed links (30 minutes).

We retain medical records for the period required by applicable law and medical-council guidelines (typically a minimum of three years from the last consultation). You may request earlier deletion where the law permits.

• Access — request a copy of the personal data we hold about you.
• Correction — ask us to correct inaccurate or outdated information.
• Erasure — request deletion subject to legal record-keeping obligations.
• Withdraw consent — at any time, by writing to us (this stops future processing; past records may be retained where law requires).

For privacy questions or complaints, please write to us via the contact page. We will respond within 30 days.

We may update this policy. Material changes will be reflected by updating the "Last updated" date above. Continued use of the site after an update constitutes acceptance of the revised policy.