Privacy Policy

Last Updated: November 27, 2024

At Ayurveda Hospital, we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our services.

1. Information We Collect

We collect information that you provide directly to us and information automatically collected when you use our services.

Personal and Contact Information:

  • Name, email address, phone number, date of birth
  • Emergency contact information
  • Home address and identification documents
  • Insurance information (if applicable)

Medical and Health Information:

  • Medical history, symptoms, and health conditions
  • Allergies, current medications, and treatment history
  • Consultation notes and doctor prescriptions
  • Laboratory test results and diagnostic reports
  • Treatment progress and follow-up records

Automatically Collected Information:

  • IP address, browser type, device information
  • Appointment booking patterns and preferences
  • Website usage data and interaction patterns
  • Cookies and similar tracking technologies

2. How We Use Your Information

We use the collected information for various purposes to provide and improve our services.

  • Provide medical consultations and Ayurvedic treatments
  • Maintain accurate medical records and treatment history
  • Schedule appointments and send appointment reminders
  • Process payments for consultations and treatment packages
  • Communicate important health information and follow-up care instructions
  • Improve our healthcare services and treatment protocols
  • Comply with legal obligations and healthcare regulations
  • Conduct research and analysis for better patient outcomes (with anonymized data)
  • Send wellness tips and health-related communications (with your consent)

3. Information Sharing and Disclosure

We do not sell your personal or medical information. We maintain strict confidentiality and may share your information only in the following circumstances:

  • Healthcare Team: Doctors, nurses, and medical staff directly involved in your treatment
  • Diagnostic Services: Laboratories and diagnostic centers for medical tests (with your consent)
  • Service Providers: Payment processors, appointment scheduling systems, and IT security services
  • Legal Requirements: When required by law, court orders, or healthcare regulatory authorities
  • Insurance Providers: For insurance claims and reimbursement processing (with your authorization)
  • Emergency Situations: To emergency services or family members in critical medical situations
  • With Your Consent: When you have given explicit written permission

4. Data Security

We implement robust technical and organizational measures to protect your sensitive medical information and maintain patient confidentiality.

  • End-to-end encryption for all medical records and patient data
  • Secure HIPAA-compliant servers with multi-factor authentication
  • Role-based access controls - staff can only access information necessary for treatment
  • Regular security audits and penetration testing
  • Comprehensive staff training on medical privacy and data protection
  • Physical security measures for paper records and storage areas
  • Automatic session timeouts and secure logout procedures
  • Regular backup and disaster recovery protocols

Note: While we implement industry-leading security measures to protect your medical information, no system is completely immune to security breaches. We continuously monitor and update our security practices.

5. Your Privacy Rights

You have important rights regarding your personal and medical information under Indian healthcare regulations.

  • Access Medical Records: Request copies of your complete medical records and treatment history
  • Correction: Request correction of inaccurate or incomplete medical information
  • Restriction: Request restrictions on certain uses of your health information
  • Confidential Communications: Request communications at alternative addresses or via specific methods
  • Accounting of Disclosures: Request a list of instances where your information was shared
  • Opt-Out: Unsubscribe from wellness tips and promotional communications
  • Data Portability: Receive your medical records in a structured, electronic format
  • Withdraw Consent: Withdraw consent for research or non-essential data processing

To exercise these rights, please contact us at privacy@ayurvedahospital.in

6. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience on our website. Cookies are small data files stored on your device.

Types of Cookies We Use:

  • Essential Cookies: Required for website functionality
  • Analytics Cookies: Help us understand how visitors use our site
  • Preference Cookies: Remember your settings and preferences
  • Marketing Cookies: Track your browsing for advertising purposes

You can control cookies through your browser settings. Note that disabling cookies may affect website functionality.

7. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies before providing any personal information.

8. Minors and Pediatric Patient Privacy

We provide healthcare services to patients of all ages, including children and minors, with special attention to their privacy rights:

  • For patients under 18 years, parental or guardian consent is required for treatment
  • Medical information of minors is shared only with authorized parents/guardians
  • Adolescent patients may request confidential consultations for sensitive health matters
  • Pediatric records are maintained with enhanced privacy protections
  • Parents/guardians have access rights to their children's medical records

9. Medical Records Retention

We retain medical records in accordance with Indian healthcare regulations and medical best practices:

  • Active Medical Records: Maintained for the duration of your treatment and for a minimum of 5 years after the last consultation
  • Pediatric Records: Retained until the patient reaches 25 years of age
  • Critical Cases: Permanently archived for complex or chronic conditions
  • Billing Records: Retained for 7 years as per financial regulations
  • Research Data: Anonymized data may be retained indefinitely for medical research

When retention periods expire, medical records are securely destroyed or permanently anonymized according to established protocols, unless longer retention is required by law or medical necessity.

10. Patient Rights and Medical Confidentiality

We are committed to maintaining the highest standards of medical confidentiality and respecting patient rights:

  • Doctor-Patient Privilege: All consultations and medical information remain confidential
  • Informed Consent: We obtain your consent before sharing medical information with third parties
  • Right to Privacy: Your dignity and privacy are protected during all medical procedures
  • Second Opinion: You have the right to seek second opinions and transfer medical records
  • Complaint Mechanism: Report privacy concerns to our Patient Relations Officer

Medical records are stored in India and comply with Indian healthcare privacy regulations. We do not transfer medical data outside India without explicit patient consent and appropriate legal safeguards.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by posting the updated policy on our website with a new "Last Updated" date. Your continued use of our services after such changes constitutes acceptance of the updated policy.

12. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Ayurveda Hospital
Address: Vijayawada, Andhra Pradesh, India

By using our website and services, you acknowledge that you have read and understood this Privacy Policy and agree to the collection, use, and disclosure of your information as described herein.