Call Now : 7030359933
Privacy Policy

Privacy Policy

At Dr. Sonu Singh, we respect your privacy and are committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website and mobile application.

1. Who We Are

Dr. (Lt Col) Sonu Singh is a distinguished specialist in Physical Medicine and Rehabilitation (PM&R) with over 18 years of experience. The clinic offers personalized rehabilitation, pain management, and sports injury care at locations in Jaipur and New Delhi.

2. Information We Collect

We collect the following categories of information when you use our website or mobile app, create an account, make an appointment, or communicate with us:

  • Identity & Contact: Full name, email address, mobile number, gender, date of birth.
  • Account Data: Username, encrypted password, preferences.
  • Medical & Consultation Data: Health history, symptoms, prescriptions, treatment notes, appointment details.
  • Media & Documents: Images (e.g., profile photo, reports), PDFs or scans you upload for care.
  • Payment & Billing: Transaction identifiers and status (processed via secure third-party gateways; we do not store full card details).
  • Device & Usage: IP address, device type, OS, app version, browser, approximate location (if enabled), diagnostic logs.
  • Cookies & Analytics: Session cookies, performance/analytics data (see Cookies section).

Sensitive data: Medical information you provide is treated as sensitive and is accessed only by authorized personnel for your care.

3. How We Use Your Information

  • Schedule, manage, and confirm appointments (in-clinic and online).
  • Provide personalized medical consultation, follow-up, and care coordination.
  • Maintain medical records securely and comply with laws and clinical standards.
  • Process payments and send invoices/receipts.
  • Send reminders, critical updates, and service notifications.
  • Improve our services, security, and user experience.
  • Meet legal, regulatory, insurance, or audit obligations.

4. Legal/Lawful Bases for Processing

We process your data based on one or more of the following:

  • Consent: When you create an account, upload images, or opt into marketing.
  • Contract: To provide consultations and related services you request.
  • Legal obligation: Compliance with medical record-keeping and taxation laws.
  • Legitimate interests: Service improvement, fraud prevention, and security (balanced against your rights).

5. Data Storage & Security

  • Encrypted transmission (HTTPS/TLS); access controls and audit logging.
  • Passwords stored using industry-standard hashing.
  • Restricted access to medical data; role-based controls for staff.
  • Regular backups and vulnerability monitoring.

6. Data Retention

We retain personal and medical records for as long as necessary to provide services and as required by applicable laws. When no longer needed, data is securely deleted or anonymized.

7. Sharing of Information

We do not sell or rent personal data. We may share information with:

  • Authorized medical staff for diagnosis and treatment.
  • Service providers under contract (hosting, storage, analytics, messaging/OTP, payments). These parties must protect your data and use it only for our instructions.
  • Legal authorities or emergency responders, if required by law or to protect vital interests.

8. Your Rights & Choices

  • Access a copy of your personal data.
  • Request corrections to inaccurate information.
  • Request deletion, restriction, or portability of your data (subject to medical/legal retention requirements).
  • Withdraw consent for optional processing (e.g., marketing) at any time.
  • Manage cookies/analytics preferences via your browser or device settings.

To exercise rights, contact us at enquiry@drsonusingh.com.

9. Cookies, SDKs & Analytics

  • We use essential cookies for core functionality and analytics cookies to improve performance.
  • Our mobile app may use third‑party SDKs (e.g., analytics, crash reporting, OTP). These providers receive limited data necessary to operate their services.
  • You can disable non‑essential cookies/analytics in your device or browser settings; core functions may be affected.

10. Children’s Privacy

Our services are intended for individuals aged 18 and above. We do not knowingly collect data from children under 18. If you believe a child provided us data, contact us to remove it.

11. International Data Transfers

Your data may be processed in India and other jurisdictions where our service providers operate. Protections are applied consistent with this Policy and applicable laws.

12. Changes to This Policy

We may update this Policy periodically. We will post updates here with a new effective date and, where required, notify you within the app or by email.

13. Contact Us

For questions, requests, or complaints about this Policy or your data, contact:

14. Consent Declaration

By creating an account, booking an appointment, or uploading images/documents, you consent to the collection and processing of your information as described in this Policy. You may withdraw consent for non‑essential processing at any time.