Privacy Policy – Priti Hospital

Effective Date: [16 April 2023]
Last Updated: [18 May 2025]

1. Introduction

At Priti Hospital (“we,” “us,” or “our”), your privacy is our top priority. This Privacy Policy explains how we collect, use, share, and protect personal and health information through our website https://www.pritihospital.com, in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR), Indian IT Act (2000) and its amendments, and HIPAA principles where relevant.

By accessing our website or using our services, you agree to the practices described in this Privacy Policy.

2. Information We Collect

We may collect the following types of data:

a. Personal Identifiable Information (PII):

  • Name, contact number, email address, mailing address.
  • Identification numbers (if required for treatment or insurance).

b. Health and Medical Information (Sensitive Personal Data):

  • Medical history, diagnostic reports, prescriptions, treatment records.
  • Insurance details, consultation records, lab reports.

c. Technical & Usage Information:

  • IP address, browser type, device information, access times.
  • Pages visited, session duration, geolocation (if enabled).

d. Cookies and Similar Technologies:

  • Used for session management, user experience improvement, and analytics.
  • Includes session cookies, preference cookies, and third-party analytics cookies (e.g., Google Analytics).

3. Lawful Basis for Processing (GDPR Compliance)

We process personal data based on one or more of the following lawful bases:

  • Consent: When you give us explicit permission.
  • Contract: For appointment bookings, online consultations, or medical services.
  • Legal Obligation: For public health reporting or regulatory compliance.
  • Vital Interest: In case of emergencies or life-saving interventions.
  • Legitimate Interests: To improve services, ensure security, and prevent fraud.

4. How We Use Your Information

We use the collected information to:

  • Register and manage patient care and appointments.
  • Provide medical diagnosis, treatment, and healthcare services.
  • Process payments, insurance claims, and generate invoices.
  • Improve our services, content, and website functionality.
  • Respond to queries, feedback, and follow-up requests.
  • Comply with legal, regulatory, or audit requirements.

5. Data Sharing and Disclosure

We do not sell or rent your personal data. However, we may share it with:

  • Authorized medical personnel involved in your care.
  • Insurance providers for claim processing.
  • Accredited labs or diagnostic centers.
  • Government authorities or regulatory bodies, if legally required.
  • Trusted third-party service providers (e.g., hosting, analytics) under strict confidentiality agreements.

6. Data Retention Policy

We retain your information only for as long as necessary:

  • To fulfill medical or legal obligations.
  • To comply with applicable laws (e.g., MCI/NMC guidelines).
  • After the retention period, data is securely archived or anonymized.

7. Your Data Protection Rights

You have the right to:

  • Access your data and request a copy.
  • Rectify incorrect or incomplete information.
  • Erase your data (“Right to be Forgotten”) under specific conditions.
  • Restrict or object to certain types of data processing.
  • Withdraw consent at any time (where applicable).
  • File a complaint with a Data Protection Authority if you believe your rights are violated.

To exercise any of these rights, please email us at support@pritihospital.com.

8. Data Security Measures

We implement appropriate administrative, technical, and physical safeguards:

  • SSL encryption for website data transmission.
  • Secure servers and firewalls.
  • Role-based access control and audit trails for sensitive health data.
  • Regular security updates and penetration testing.

9. Children’s Privacy

Our website and services are not intended for individuals under 18 years without parental consent. We do not knowingly collect data from minors without appropriate legal authority.

10. International Data Transfers

If data is transferred or processed outside India (e.g., cloud storage), we ensure it is protected with industry-standard encryption and governed by Data Processing Agreements (DPAs).

11. Cookies & Tracking Technologies

We use cookies and related technologies to:

  • Remember user preferences.
  • Track user engagement and improve performance.
  • Analyze trends via third-party analytics tools.

You can manage or disable cookies via your browser settings.

12. Updates to This Privacy Policy

We reserve the right to modify this policy at any time. Updated versions will be posted with a new revision date at the top of this page. Continued use of our site implies consent to the revised terms.

13. Contact Us

For questions, feedback, or complaints regarding your privacy or this policy, please contact:

Priti Hospital – Data Protection Officer (DPO)
📧 Email: support@pritihospital.com
📞 Phone: +91 63932-83820
🏥 Address: 29-B, Panna Lal Road (Near Indian Press Chauraha), Prayagraj, Uttar Pradesh – 211002, India