logo

Privacy Policy

Last Updated: December 6, 2024

1. Introduction

ClinetiX Technologies (OPC) Private Limited ("ClinetiX", "we", "us", or "our") is committed to protecting the privacy and security of healthcare information. This Privacy Policy explains how we collect, use, disclose, and safeguard healthcare data through our Hospital Management System (HMS) platform, in compliance with applicable healthcare privacy laws including but not limited to the Information Technology Act, 2000, and healthcare regulations in India.

2. Healthcare Data We Collect

2.1 Patient Health Information (PHI)

  • Medical records, diagnoses, and treatment histories
  • Laboratory results and diagnostic reports
  • Prescription and medication information
  • Appointment and visit records
  • Billing and insurance information
  • Emergency contact details

2.2 Healthcare Provider Information

  • Doctor and staff credentials and licenses
  • Professional contact information
  • Schedule and availability data
  • Performance and quality metrics

3. Data Security Measures

3.1 Technical Safeguards

  • End-to-end encryption for all data transmission
  • AES-256 encryption for data at rest
  • Multi-factor authentication for system access
  • Regular security audits and vulnerability assessments
  • Secure cloud infrastructure with ISO 27001 compliance

3.2 Administrative Safeguards

  • Role-based access control (RBAC) systems
  • Regular staff training on data privacy practices
  • Comprehensive audit trails for all data access
  • Incident response procedures for data breaches
  • Business Associate Agreements with third-party vendors

4. Patient Rights

Patients have the following rights regarding their healthcare information:

  • Right to Access: Request copies of their medical records
  • Right to Amendment: Request corrections to inaccurate health information
  • Right to Restriction: Request limitations on how health information is used
  • Right to Portability: Obtain their data in a structured, machine-readable format
  • Right to Accounting: Request a list of disclosures made of their health information
  • Right to Notification: Be notified in case of any data breach involving their information

5. Data Retention

We retain healthcare information for the periods required by applicable law and professional standards:

  • Adult Patient Records: 15 years from last patient encounter
  • Pediatric Records: Until patient reaches age 25 or as required by state law
  • Billing Records: 7 years from date of service
  • System Logs: 2 years for security and audit purposes

6. Contact Information

For privacy-related inquiries, requests, or complaints, contact our Privacy Officer:

ClinetiX Privacy Officer

ClinetiX Technologies (OPC) Private Limited

Email: privacy@clinetix.in

Phone: +91 9966 481 421

Address: Hyderabad, Telangana - 500090, India

Effective Date: This Privacy Policy is effective as of December 6, 2024, and applies to all healthcare information collected by ClinetiX HMS platform.