Privacy Policy

Doctivity Healthcare Management Platform
Last Updated: January 29, 2026

Table of Contents

  1. Introduction
  2. Information We Collect
  3. How We Use Your Information
  4. Data Sharing and Disclosure
  5. Data Security
  6. Data Retention
  7. Your Rights and Choices
  8. Children's Privacy
  9. International Data Transfers
  10. Changes to This Policy
  11. Contact Us

1. Introduction

Welcome to Doctivity ("we," "our," or "us"). Doctivity is a healthcare management platform designed to facilitate connections between patients and healthcare providers. We are committed to protecting your privacy and handling your personal and health information responsibly.

This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application (Doctivity Patient App, Doctivity Clinic App) and web services (collectively, the "Services"). Please read this policy carefully. By accessing or using our Services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy.

Healthcare Data Compliance: We comply with applicable healthcare data protection regulations, including adherence to principles aligned with HIPAA (Health Insurance Portability and Accountability Act) standards for handling Protected Health Information (PHI) where applicable.

2. Information We Collect

2.1 Information You Provide

  • Account Information: Name, email address, phone number, date of birth, gender, and login credentials when you register for an account.
  • Health Information: Medical history, symptoms, medications, allergies, appointment details, and other health-related information you choose to share through the platform.
  • Profile Information: Profile photos, emergency contact details, and preferences you add to your account.
  • Communication Data: Messages, feedback, and correspondence you send through the platform or to our support team.
  • Payment Information: Billing address and payment method details (processed securely through certified payment processors).

2.2 Information Collected Automatically

  • Device Information: Device type, operating system, unique device identifiers, and mobile network information.
  • Usage Data: App features accessed, pages visited, time spent on the Services, and interaction patterns.
  • Location Data: With your consent, approximate location to help you find nearby healthcare providers and clinics.
  • Log Data: IP address, browser type, access times, and referring URLs for security and diagnostic purposes.

2.3 Information from Third Parties

  • Healthcare Providers: Medical records, prescriptions, lab results, and clinical notes shared by your healthcare providers with your consent.
  • Authentication Services: Basic profile information if you choose to sign in using third-party authentication (Google, Apple).

3. How We Use Your Information

We use the information we collect for the following purposes:

Healthcare Services

To facilitate appointment booking, telemedicine consultations, and communication between patients and healthcare providers.

Account Management

To create and manage your account, authenticate your identity, and provide customer support.

Communications

To send appointment reminders, health notifications, service updates, and respond to your inquiries.

Service Improvement

To analyze usage patterns, identify issues, and improve our Services' functionality and user experience.

Security

To protect against unauthorized access, fraud, and other illegal activities, and ensure platform security.

Legal Compliance

To comply with applicable laws, regulations, legal processes, and governmental requests.

4. Data Sharing and Disclosure

We do not sell your personal information. We may share your information in the following circumstances:

5. Data Security

We implement robust technical and organizational measures to protect your information:

  • Encryption: All data is encrypted in transit (TLS 1.2+) and at rest using industry-standard encryption algorithms.
  • Access Controls: Strict role-based access controls ensure only authorized personnel can access sensitive data.
  • Secure Infrastructure: Our Services are hosted on Microsoft Azure with enterprise-grade security certifications.
  • Regular Audits: We conduct regular security assessments and vulnerability testing.
  • Incident Response: We maintain incident response procedures to quickly address any security concerns.
  • Employee Training: Our team receives regular training on data protection and security best practices.
Important: While we strive to protect your information, no method of transmission over the Internet or electronic storage is 100% secure. Please use strong passwords and keep your login credentials confidential.

6. Data Retention

We retain your information for as long as necessary to:

  • Provide our Services and maintain your account
  • Comply with legal obligations (medical records retention requirements)
  • Resolve disputes and enforce our agreements
  • Fulfill the purposes described in this Privacy Policy

Health records may be retained for longer periods as required by applicable healthcare regulations. When information is no longer needed, we securely delete or anonymize it.

7. Your Rights and Choices

You have the following rights regarding your personal information:

Access

Request a copy of the personal information we hold about you.

Correction

Request correction of inaccurate or incomplete information.

Deletion

Request deletion of your personal information, subject to legal retention requirements.

Portability

Request your data in a portable, commonly used format.

Opt-Out

Opt out of marketing communications at any time.

Withdraw Consent

Withdraw previously given consent for specific processing activities.

To exercise these rights, please contact us using the information provided in the Contact section below. We will respond to your request within 30 days.

8. Children's Privacy

Our Services are not intended for children under 13 years of age (or the applicable age of consent in your jurisdiction). We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

For minors between 13-18 years of age, parental or guardian consent may be required in certain jurisdictions before using our healthcare services.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws. When we transfer your information internationally, we take appropriate safeguards to ensure your information remains protected in accordance with this Privacy Policy.

By using our Services, you consent to the transfer of your information to India and other countries where we operate or where our service providers are located.

10. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will:

  • Update the "Last Updated" date at the top of this policy
  • Notify you through the app, email, or other appropriate means
  • Obtain your consent where required by law

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

11. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Doctivity Healthcare Solutions
Data Protection Officer

We take all privacy concerns seriously and will respond to your inquiry as promptly as possible.

Back to Login

© 2026 Doctivity Healthcare Solutions. All rights reserved.