This privacy policy (Policy) explains how we, “Docplix Solutions Private Limited” (“us”, “we”, or “DocPlix”, which also includes its affiliates) collect, use, share, store, disclose and protect your personal information when you access and use our website https://docplix.com, as well as the software, services and applications provided by DocPlix, including but not limited to mobile applications (Services).

By accessing our Services, you accept the terms of this Policy, and consent to our collection, use, disclosure, and retention of your information as described in this Policy.

IF YOU DO NOT AGREE WITH ANY PART OF THIS PRIVACY POLICY, THEN PLEASE DO NOT ACCESS OUR WEBSITE OR USE ANY OF THE SERVICES

Please note that this Policy does not apply to the information collected by or through third-party websites or third-party services that you may access through our website. The privacy policy and the terms and conditions of such third-party websites will be applicable to you, and you should read them before accessing such third-party websites/services.

1. STATEMENT OF PRACTICE AND POLICIES

1.1 This Policy has been published to comply with the requirements of the applicable laws, including Information Technology Act, 2000, the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Information) Rules, 2011 and the Information Technology (Intermediaries Guidelines) Rules, 2011 (IT Laws).

1.2 All personal information are collected, received, processed, stored, dealt and handled in accordance with this Policy.

1.3 We collect, receive, process, store, deal and handle certain personal information of, and from the user for the legitimate purpose of providing and maintaining the Services, including its operation, improvement and to diagnose its problems.

The IT Laws defines:

“Personal information” to mean any information that relates to a natural person, which, either directly or indirectly, in combination with other information available or likely to be available with a body corporate, is capable of identifying such person.

“Sensitive personal data or information” to mean any such personal information which consists of information relating to: (i) password; (ii) financial information such as bank account or credit card or debit card or other payment instrument details; (iii) physical, physiological and mental health condition; (iv) sexual orientation; (v) medical records and history; (vi) biometric information; (vii) any detail relating to the above as provided for providing service; and (viii) any of the information received under above for processing, stored or processed under lawful contract or otherwise.

2. INFORMATION COLLECTED AND PURPOSE OF COLLECTION

2.1 We only collect information which may be necessary for the provision of Services and compliance with applicable law, including:

(a) Personal Information: Information that you provide when registering for an account, such as your name, date of birth, contact information (email, phone number), address, and billing details.

(b) Usage Data: Information about your use of our Services, including your IP address, browser type, device information, operating system, and details of your interactions with our Services.

(c) Location Data: Information about your geographical location, if you permit location access.

(d) Cookies and Tracking Technologies: We may use cookies and similar technologies to enhance your experience of the Services and to provide necessary website functionality, including analyzing the traffic for the Services.

2.2 We may collect personal information in various ways, including:

(a) We may obtain personal information when you provide it to us through the website by using forms such as our “Contact us” form that seek information including your interests and concerns, preferences for products and services, or contact information. We also collect Personal information through email and other communications, and in other routine operations in the ordinary course of our business.

(b) If an organization you are affiliated with purchases our Services, we may obtain personal information about you for account creation and maintenance purposes, such as name, email, username, and password. From time to time, we may obtain business contact information you make publicly available, including from third-parties, for our marketing purposes.

(c) We, and certain third-party analytics and digital advertising vendors we engage, may also collect information automatically as you use the Services through the use of common data gathering technologies, such as cookies. Cookies and other technologies collect certain information about the web browsers and devices of users of our Services, such as IP addresses, access times, and what web pages they visit.

2.3 The personal information collected will be used for, among others, the following purpose:

(a) to register a user for the provision of our Services;

(b) providing features and functionalities of the Services;

(c) customer service;

(d) record keeping and internal purposes;

(e) tracking and analysing user preferences and trends to improve the quality of Services;

(f) monitoring aggregate usage metrics;

(g) remembering information so that users will not have to re-enter it during the next use of the Services;

(h) improvement of Services, including by monitoring the use and behaviour for its performance, operation, maintenance and troubleshooting;

(i) text, call or email in response to an inquiry or request submitted by an individual on our “Contact Us” form;

(j) communicating new offers, content, advertisements, surveys, key policies or other administrative information; and

(k) for commercialisation, monetisation, promotional, marketing, and training purposes, including providing or processing such user information for data analytics.

2.4 Personal information is collected from all visitors to our website, including casual visitors. If you, as a casual visitor, who has inadvertently browsed any page of our website without reading this Policy, and you do not agree with the Policy, you can quit the browser, which should typically clear all temporary cookies. However, as we cannot guarantee or predict the behaviour of the technology or equipment, we encourage all such visitors to use the “clear cookies” functionality on their browsers to ensure clearing/deletion of information.

2.5 Please note you will not be considered as a casual visitor if you have willingly submitted any personal data or information to us through any means, including email, post or through the registration process on our website. All such visitors will be deemed to be, and will be treated as, users for the purposes of this Policy, and in which case, all the statements in this Policy apply to such persons.

2.6 No sensitive personal data or information is automatically collected by us from any casual visitors of this website, who are merely perusing the site.

2.7 We do not knowingly collect any personal information from children under the age of eighteen (18). If you are under the age of eighteen (18), please do not access our website or use our Services. If you have reason to believe that a child under the age of eighteen (18) has provided personal information to us through our websites or Services, please contact us and we will endeavor to delete that information and terminate the child's account from our databases.‍

2.8 We do not request or collect any patient information through our website or through our Services. If while using our Services, you collect, transmit, store or process any sensitive personal data or information of your patients, you agree to comply with all applicable laws, include IT Laws in relation to such patient information. While Docplix may have contracted with certain third-party infrastructure hosting services (like Amazon Web Services) to provide you with storage space for your patient information and such third party infrastructure hosting service providers have in place necessary security solutions to protect your patient information, Docplix shall under no circumstances be liable for your collection, transmission, storage or processing of such patient information. There may be certain support operations provided by us involving access to, and the processing of, your patient information. You agree and confirm that such patient information is provided to us lawfully by you after having obtained all relevant patient consents and authorizations to provide us with such patient information.

3. STORAGE, TRANSFER AND DISCLOSURE OF PERSONAL INFORMATION

3.1 Storage and Security. We store and process your personal information, and ensure that appropriate security standards are in place regarding the safeguarding, confidentiality, and security of your personal information. These measures include encryption, secure servers, and access controls. However, no method of transmission over the internet or method of electronic storage is 100% secure, and we cannot guarantee absolute security. We are not responsible for any interception or interruption of any communications through the internet or for changes to or losses of data. Further, for any data loss or theft due to unauthorized access to the user’s electronic devices through which the user avails the Services, we shall not be held liable for any loss whatsoever incurred by the user. Users of the Services are responsible for maintaining the security of any username, password or other form of authentication involved in obtaining access to password protected or secure areas of the Services. In order to protect us, you and your information, we may suspend your use of the Services, without notice if any breach of security is suspected. You further acknowledge and accept that the data protection laws in India may be different from those in your country of residence. Further, while Docplix may have contracted with certain third-party infrastructure hosting services (like Amazon Web Services) to provide you with storage space for your patient information and such third-party infrastructure hosting service providers have in place necessary security solutions to protect your patient information, Docplix shall under no circumstances be liable for your collection, transmission, storage or processing of such patient information.

3.2 Transfer. We may transfer and store your personal information in any other country where we or our affiliates or service providers maintain facilities. If we decide to transfer your data to other countries, we will take all commercially reasonable steps required to ensure that the data is stored, processed, and used according to the provisions of this Policy, and the requirements of applicable law wherever the data is located. Further, no transfer of your personal information will take place to an organization or a country unless there are adequate controls in place including the security of your data and other personal information.

3.3 Disclosure. We take your right to privacy very seriously and other than as specifically stated in this Policy, we will only disclose your personal information to:

(a) Third party vendors to the extent necessary to provide the user with the Services, including infrastructure hosting, software, storage, security, payment processing and improvement of the Services.

(b) To professional advisors, such as lawyers, auditors, bankers, and insurers, in the course of professional services that they render to us.

(c) To acquirers and other relevant participants in business transactions (or negotiations for such transactions) involving a corporate divestiture, merger, consolidation, acquisition, reorganization, sale or other disposition of all or any portion of the business or assets of, or equity interests in, our business (including, in connection with a bankruptcy or similar proceedings).

(d) To our subsidiaries’ and affiliates’ employees, directors, representatives, or partners, on a need-to-know basis. All such personnel who have access to, and are associated with the personal information, are obliged to respect the confidentiality.

(e) If required to protect our, your or others’ rights, privacy, safety or property (including legal claims), enforce the terms and conditions that govern our Services.

(f) To comply with applicable laws, including to provide support to law enforcement agencies, or in connection with an investigation on matters related to public safety, fraud or other such mischiefs, or in response to a valid request.

3.4 Information Retention. Duration for retention of Personal information will depend on the respective processing purpose and the statutory retention period (e.g. medical, corporate and tax retention periods). Where the personal information is no longer required for the provision of the Service or under applicable law, such information will be deleted by us.

3.5 Social Media. If you elect to use our applications provided via social networks, such as Facebook, Twitter, etc., our application will be granted access to your social network account general information which includes your name and username in the social network, profile picture, gender, networks, user ID, list of friends, and any other information you have permitted to be shared depending on the settings you establish with the entity that provides the social sharing feature. For more information, please visit the privacy policies of the social network entities that provide these features.

3.6 Third Party Links:The Company site may contain links to third-party sites to provide additional, value-added services. Except as set forth herein, we do not share your personal information with those third-parties, and are not responsible for their privacy practices. We therefore have no responsibility or liability for the content and activities of these linked sites. We suggest you read the privacy policies on all such third-party sites.

3.7 Common Platform/Interaction.Our Services may enable users to communicate with other users or to post information to be accessed by others, whereupon other users may collect such data. Such users, including any moderators or administrators, are not our authorized representatives or agents, and their opinions or statements do not necessarily reflect those of ours, and they are not authorized to bind us to any contract. We, hereby expressly disclaims any liability for any reliance or misuse of such information that is made available by users or visitors in such a manner.

4. RIGHTS AND OBLIGATION OF USER

Right to correct or request for deletion of information.

(a) Right to information.You have the right to know how we collect, use, store, disclose and retain your information, which information is made available to you by this Policy. Further, we will collect only such personal information, including sensitive personal information that is necessary for the Services.

(b) Right to restrict information provided.You have the right to opt-out of providing any of the personal information collected by us. Please note that, in such event, we reserve the right to appropriately refuse or limit your access and use of the Services, or part thereof.

(c) Right to withdraw consent.You have the right to withdraw your consent to the use, disclosure, or processing of your personal information provided to us. Please note that, in such event, we reserve the right to refuse or limit your access and use of the Services, or part thereof.

(d) Right to correct or request for deletion of information.You have the right to update, rectify, modify and/or complete any user information provided by you to us.

(e) Right to request for erasure/deletion of your information.You have the right to request erasure or deletion of your information, however we may retain any information that may be necessary for any of the purposes specified in this Policy and for compliance with any applicable law.

(f) Obligation to provide updated and accurate information.It shall be the responsibility of the user to review the information they had provided and ensure that any personal information or sensitive personal data or information, which is inaccurate or deficient is corrected or amended. We will not be responsible for the authenticity of the personal information or sensitive personal data or information supplied by user.

(g) Patient Information:If while using our Services, you collect, transmit, store or process any sensitive personal data or information of your patients, you agree to comply with all applicable laws, include IT Laws in relation to collection, transmission, storage, and processing of such patient information.

(h) Consent to disclose and use personal information.By using our Service you have consented to disclose, use, retain, secure and transfer your personal information as set out in this Policy, including to third parties for the provision of the Services.

5. MODIFICATION

We reserve the right to update this Policy at any time and at our sole discretion. Any changes to or modifications of this Policy shall be in effect as of the “Last Updated Date” referred to at the top of this page. We encourage you to periodically visit our website to review the latest version of the Policy, as applicable from time to time.

6. APPLICABLE LAW AND DISPUTE RESOLUTION

This Policy shall be governed by the laws of India and the courts at New Delhi shall have exclusive jurisdiction.

7. CONTACT DETAILS

For queries on any aspect of this Policy, including the collection, use and disclosure of personal information by us, or access to your personal information, or to provide any feedback please contact us at contact@docplix.com.