Information We Collect

We collect various types of information to provide and improve our healthcare services:

• Personal Information: Name, email address, phone number, date of birth, gender, and profile photo.
• Medical Information: Medical history, prescriptions, lab results, appointment records, symptoms, diagnoses, and treatment plans.
• Payment Information: Billing address, credit/debit card details, and transaction history (processed through secure payment gateways).
• Device & Usage Data: IP address, browser type, device identifiers, pages visited, and interaction patterns.
• Location Data: Approximate location to help you find nearby healthcare providers.
• Communications: Messages exchanged between you and healthcare providers through our platform.

How We Use Your Information

Your information is used for the following purposes:

• To facilitate appointment booking, rescheduling, and cancellations with healthcare providers.
• To enable secure communication between patients and medical professionals.
• To maintain and share your medical records with authorized healthcare providers for continuity of care.
• To process payments and issue invoices for medical services.
• To send appointment reminders, health tips, and important notifications.
• To improve our platform, services, and user experience through analytics.
• To comply with legal and regulatory requirements in the healthcare sector.
• To detect, prevent, and address fraud, security issues, and technical problems.

Protection of Medical Information

CareHup is committed to maintaining the highest standards of medical data protection:

• All medical records are encrypted using industry-standard AES-256 encryption both in transit and at rest.
• Access to medical information is strictly limited to authorized healthcare providers directly involved in your care.
• We implement role-based access controls to ensure data is only accessible to those who need it.
• Regular security audits and vulnerability assessments are conducted to protect against data breaches.
• We comply with applicable healthcare data protection regulations and standards.
• Two-factor authentication is available to enhance the security of your account.

Data Sharing & Disclosure

We may share your information in the following circumstances:

• Healthcare Providers: Your medical information is shared with doctors, clinics, and laboratories you choose to book appointments with.
• Payment Processors: Payment information is securely transmitted to our trusted payment partners to process transactions.
• Legal Requirements: We may disclose information when required by law, court order, or government regulations.
• Emergency Situations: In case of medical emergencies, relevant information may be shared with emergency responders.
• With Your Consent: We will share information with third parties when you explicitly authorize us to do so.

We do NOT sell, rent, or trade your personal or medical information to third parties for marketing purposes.

Data Retention

• Personal account information is retained as long as your account remains active.
• Medical records are retained in accordance with applicable healthcare regulations and laws, typically for a minimum of 7-10 years.
• Payment transaction records are kept for the period required by financial and tax regulations.
• You may request deletion of your personal data, subject to legal retention requirements.

Your Rights & Choices

You have the following rights regarding your personal and medical information:

• Access: Request a copy of your personal and medical data we hold.
• Correction: Request correction of inaccurate or incomplete information.
• Deletion: Request deletion of your data, subject to legal and medical record retention requirements.
• Portability: Request transfer of your medical records to another healthcare provider.
• Opt-Out: Unsubscribe from marketing communications at any time.
• Restrict Processing: Request limitations on how we process your data in certain circumstances.

Cookies & Tracking Technologies

• We use cookies and similar technologies to enhance your browsing experience and remember your preferences.
• Analytics cookies help us understand how users interact with our platform to improve our services.
• You can manage cookie preferences through your browser settings.
• Essential cookies necessary for platform functionality cannot be disabled.

Third-Party Services

• Our platform may contain links to third-party websites or services. We are not responsible for their privacy practices.
• Third-party healthcare providers listed on CareHup are independent practitioners with their own privacy policies.
• We recommend reviewing the privacy policies of any third-party services you access through our platform.

Children's Privacy

• CareHup is intended for users aged 18 and above.
• Minors may use our services only with parental or guardian consent and supervision.
• We do not knowingly collect personal information from children under 13 without verified parental consent.
• If you believe a child has provided us with personal information without consent, please contact us immediately.

International Data Transfers

• Your information may be transferred to and processed in countries other than your country of residence.
• We ensure appropriate safeguards are in place to protect your data during international transfers.
• By using CareHup, you consent to the transfer of your information to countries where we operate.

Changes to This Privacy Policy

CareHup reserves the right to update this Privacy Policy at any time. We will notify you of significant changes through:

• Email notifications to your registered email address.
• Prominent notices on our website and mobile application.
• In-app notifications when you log in.

We encourage you to review this policy periodically. Continued use of our services after changes constitutes acceptance of the updated policy.

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:

• Email: [email protected]
• Privacy Officer: You may reach our dedicated Privacy Officer at [email protected]

We are committed to addressing your privacy concerns promptly and transparently.