1. Introduction & Scope
Welcome to MedOne Hospitals, Hyderabad (“we,” “our,” “us”). This Privacy Policy outlines how we collect, use, share, and protect the personal information of patients, visitors, applicants, and site users. It applies to data collected on our website, mobile apps, in‑hospital interactions, and any offline forms or digital communications.
2. Information We Collect
a) Personal & Medical Information – This includes contact details, date of birth, gender, emergency contacts, medical history, lab results, diagnoses, medications, treatment records, insurance information, and payment history.
b) Technical & Usage Data – Includes IP addresses, browser type, device IDs, pages viewed, session duration, log‑ins, click patterns, and system performance logs.
c) Marketing Data – Preferences, consents, communication history, and interactions with our newsletters, SMS, or email campaigns.
3. How We Collect Data
- Directly from you: Registration forms, appointment bookings, medical exams, and feedback surveys.
- Automated systems: Website cookies, analytics tools, server logs.
- Third parties: Insurance providers, laboratories, pharmacies, referral physicians, and regulatory authorities when required by law.
4. Legal Basis for Processing
- Contractual necessity: To provide medical treatment, billing, and scheduling.
- Legal obligation: For compliance with medical reporting and health regulations.
- Legitimate interest: For internal auditing, quality improvement, and fraud prevention.
- Consent: For optional uses like marketing or non-treatment communications. You may withdraw consent anytime.
5. How We Use Information
- Medical Care: Treatment planning, diagnosis, follow‑up
- Administration: Appointments, billing, insurance claims
- Improvement: Quality audits, research (de‑identified)
- Communications: Appointment reminders, health alerts
- Legal compliance: Statutory reporting (e.g., infectious diseases)
- Marketing: Subject to consent only
6. Sharing & Disclosure
We disclose information to:
- Your chosen healthcare providers and insurers
- Labs, diagnostics, and pharmacies aiding in your treatment
- Third-party service providers (IT, billing, telehealth) under contractual confidentiality
- Legal or regulatory bodies, when mandated (e.g., Ministry of Health)
- Law enforcement in the case of valid legal processes
7. Cookies & Tracking Technologies
We use cookies and similar tools to:
- Improve site functionality
- Analyse site usage
- Provide personalised healthcare info and updates
- You can manage or disable cookies via your browser; note that some site features may not work properly without cookies.
8. Data Retention
- Medical records retained as per Indian Clinical Regulations (up to 8 years after last consultation)
- Personal data is retained as long as needed for treatment and legal compliance
- Marketing and technical data kept while there’s a business need or consent
9. Security Measures
We employ layers of safeguards:
- Access controls and strong password protocols
- Data encryption at rest and in transit (SSL/TLS)
- Regular data backups and vulnerability scanning
- Staff training on privacy and confidentiality
- Data breach policies in compliance with the Information Technology Act 2000 and applicable rules
10. Your Rights
You can request to:
- Access or receive a copy of your data
- Correct inaccurate medical or personal data
- Request deletion when there is no legal obligation to retain
- Object to or request restriction of processing
- Withdraw consent for marketing at any time
To exercise your rights, please contact our Data Privacy Officer at info@medonehospitals.com or our Hyderabad Hospital campus.
11. Third-Party Links & Services
Our site may link to external sites (e.g., insurance portals). We are not responsible for the privacy practices or content of these sites. Please review them independently.
12. Minors’ Data
We do not knowingly collect personal or medical information belonging to individuals under 18 without verifiable parental consent. Parents/legal guardians can contact us to request deletion or access.
13. International Transfers
While we store data within India, if we transfer data overseas (e.g., cloud service backups), we ensure such transfers are made with appropriate safeguards and in compliance with applicable Indian laws.
14. Policy Updates
We may update this Privacy Policy occasionally. The “Last Updated” date at the top will reflect any changes. We encourage you to review periodically.
