Privacy Policy

How We Collect, Use, and Protect Your Information

Effective Date: December 24, 2024
Last Updated: December 24, 2024

Introduction

Dr. Shah (“we,” “us,” or “our”) is committed to protecting your privacy and safeguarding your personal information. This Privacy Policy explains how we collect, use, disclose, and protect information when you visit our website or use our services.

By using our website, you agree to the collection and use of information in accordance with this policy.

Information We Collect

1. Personal Information

We may collect the following personal information when you:

  • Contact us through forms or email
  • Schedule an appointment
  • Subscribe to our newsletter
  • Comment on blog posts (if applicable)

Personal information may include:

  • Full name
  • Email address
  • Phone number
  • Date of birth
  • Gender
  • Address
  • Medical history (when scheduling appointments)
  • Any other information you voluntarily provide

2. Health Information

When you book an appointment or consult with Dr. Shah, we may collect health-related information including:

  • Medical history
  • Current medications
  • Symptoms and complaints
  • Previous treatments
  • Diagnostic test results
  • Insurance information

Health information is treated with the highest level of confidentiality and security.

3. Automatically Collected Information

When you visit our website, we automatically collect:

  • Device Information: IP address, browser type, operating system, device type
  • Usage Data: Pages visited, time spent on pages, links clicked, referring website
  • Cookies and Tracking Technologies: See our Cookie Policy section below

4. Location Information

We may collect approximate location data based on your IP address to:

  • Provide location-specific information
  • Improve our services
  • Comply with legal requirements

How We Use Your Information

We use collected information for the following purposes:

Medical Care and Services

  • Providing medical consultations and treatment
  • Scheduling and managing appointments
  • Maintaining medical records
  • Following up on treatments
  • Emergency contact purposes

Communication

  • Responding to your inquiries
  • Sending appointment reminders
  • Providing health tips and medical information
  • Sending newsletters (with your consent)
  • Notifying you of service updates

Website Improvement

  • Analyzing website usage and performance
  • Improving user experience
  • Personalizing content
  • Troubleshooting technical issues
  • Complying with legal obligations
  • Protecting our legal rights
  • Preventing fraud and abuse
  • Enforcing our terms and conditions
  • Sending promotional materials
  • Informing you about new services
  • Sharing health education content

You can opt-out of marketing communications at any time.

How We Share Your Information

We do not sell, rent, or trade your personal information. We may share your information only in the following circumstances:

Healthcare Providers

  • With medical specialists for referrals
  • With laboratory or diagnostic centers
  • With pharmacies for prescriptions
  • With other healthcare providers involved in your care

Service Providers

We work with trusted third-party service providers who assist us with:

  • Website hosting and maintenance
  • Email delivery services
  • Appointment scheduling systems
  • Payment processing
  • Data analytics
  • IT support

All service providers are contractually obligated to protect your information.

We may disclose information when required by law:

  • In response to court orders or legal processes
  • To comply with government regulations
  • To protect our rights, property, or safety
  • To protect the rights and safety of others
  • To prevent fraud or criminal activity

Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the new entity, subject to this privacy policy.

We may share information for other purposes with your explicit consent.

Data Security

We implement appropriate technical and organizational measures to protect your information:

Security Measures

  • Encryption: SSL/TLS encryption for data transmission
  • Secure Storage: Encrypted databases and secure servers
  • Access Controls: Limited access to authorized personnel only
  • Regular Audits: Security assessments and updates
  • Staff Training: Regular privacy and security training
  • Backup Systems: Regular data backups with encryption

Physical Security

  • Secure facilities with restricted access
  • Locked file cabinets for physical records
  • Visitor logs and monitoring systems

However, no method of transmission or storage is 100% secure. We cannot guarantee absolute security.

Your Rights and Choices

You have the following rights regarding your personal information:

Access and Correction

  • Request access to your personal information
  • Request correction of inaccurate information
  • Request a copy of your medical records

Deletion

  • Request deletion of your personal information
  • Note: We may retain certain information for legal or legitimate business purposes

Opt-Out

  • Unsubscribe from marketing emails (link provided in each email)
  • Disable cookies through your browser settings
  • Opt-out of SMS notifications

Data Portability

  • Request your data in a portable format
  • Transfer your data to another healthcare provider

Object to Processing

  • Object to certain types of data processing
  • Withdraw consent at any time

To exercise your rights, contact us at [email protected]

Cookies and Tracking Technologies

Our website uses cookies and similar technologies:

Types of Cookies We Use

Essential Cookies

  • Required for website functionality
  • Cannot be disabled

Analytics Cookies

  • Google Analytics for website performance
  • Understanding user behavior
  • Improving user experience

Functional Cookies

  • Remember your preferences
  • Language settings
  • Session information

Marketing Cookies (With Consent)

  • Deliver relevant advertisements
  • Track campaign effectiveness

Managing Cookies

You can control cookies through:

  • Browser settings (disable or delete cookies)
  • Our cookie consent banner
  • Third-party opt-out tools

Note: Disabling cookies may affect website functionality.

Third-Party Analytics

We use Google Analytics to understand website usage. Google Analytics collects:

  • Pages visited
  • Time on site
  • Device and browser information
  • Geographic location (approximate)

Learn more about Google Analytics privacy

You can opt-out: Google Analytics Opt-out Browser Add-on

Children’s Privacy

Our services are not directed to children under 18. We do not knowingly collect information from children without parental consent.

If we discover we have collected information from a child without consent, we will:

  • Delete the information promptly
  • Notify the parent or guardian
  • Prevent future collection

Parents: If you believe we have collected your child’s information, please contact us immediately.

Data Retention

We retain your information for as long as necessary to:

  • Provide our services
  • Comply with legal obligations
  • Resolve disputes
  • Enforce our agreements

Retention Periods

  • Medical Records: As required by law (typically 7-10 years)
  • Communication Records: 3-5 years
  • Website Usage Data: 2 years
  • Marketing Data: Until you unsubscribe or request deletion

After the retention period, we securely delete or anonymize your information.

International Data Transfers

Our servers are located in [Your Country/Region]. If you access our website from outside Nepal, your information may be transferred internationally.

We ensure appropriate safeguards are in place for international transfers through:

  • Standard contractual clauses
  • Adequacy decisions
  • Your explicit consent

Third-Party Websites

Our website may contain links to third-party websites. This Privacy Policy does not apply to those websites.

We are not responsible for:

  • Privacy practices of third-party websites
  • Content on external sites
  • Security of third-party platforms

We recommend reviewing the privacy policies of any websites you visit.

Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect:

  • Changes in our practices
  • Legal or regulatory requirements
  • New features or services

Notification of Changes

  • Updated “Last Updated” date at the top of this page
  • Email notification for significant changes
  • Prominent notice on our website

Your continued use of our services after changes constitutes acceptance of the updated policy.

Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our privacy practices:

Contact Information

Dr. Shah’s Clinic

Privacy Officer

For privacy-specific inquiries, you may contact our designated Privacy Officer:

Email: E-mail Us
Response Time: We aim to respond within 5-7 business days

Complaints

If you believe your privacy rights have been violated, you may:

  1. Contact us directly to resolve the issue
  2. File a complaint with relevant data protection authorities in Nepal
  3. Seek legal advice regarding your rights

We are committed to working with you to resolve any privacy concerns.

By using our website and services, you consent to:

  • Collection of your information as described
  • Use of your information for stated purposes
  • Sharing of information as outlined
  • Cookie usage as specified
  • Terms of this Privacy Policy

You may withdraw consent at any time by contacting us.

Summary

What We Collect: Personal, health, and usage information
Why We Collect: To provide medical care, improve services, and communicate with you
How We Protect: Encryption, secure storage, access controls, and staff training
Your Rights: Access, correction, deletion, opt-out, and data portability
Contact Us: For questions or concerns about your privacy

Thank you for trusting Dr. Shah with your personal information. Your privacy and confidentiality are our top priorities.