Drlogy Technologies LLP(“us”, “we”, or “Drlogy”) is the author and publisher of the internet resource www.drlogy.com (“Website”) on the world wide web as well as the software and applications provided by Drlogy, including but not limited to the mobile application ‘Drlogy’ and the software and applications of the names ‘Drlogy Pro’ and ‘Drlogy’ (together with the Website, referred to as the “Services”).
1. PURPOSE OF OUR POLICY
1.1 Drlogy provides the Drlogy online medical appointment booking services and associated technologies.
a. Providing the system and services that Drlogy offers; and
b. The normal day-to-day operations of our business.
2. WHO AND WHAT THIS POLICY APPLIES TO
2.2 We handle Personal Information in our own right and also for and on behalf of our customers and users.
a. If, at any time, an individual provides Personal Information or other information about someone other than himself or herself, the individual warrants that:
b. With respect to Personal Information about a child, they are that child's "responsible person" as defined in the the Section 43A of the Information Technology Act, 2000; Regulation 4 and 3(1) of the Information Technology (Intermediaries Guidelines) Rules, 2011. (namely a parent or guardian); and/or They have that person's consent to provide such information for the purpose specified.
3. THE INFORMATION WE COLLECT
3.1 User Information: The type of information collected from the Users, In the course of business it is necessary for us to collect user Information. This information allows us to identify who an individual is for the purposes of our business, share Personal Information when asked of us, contact the individual in the ordinary course of business and transact with the individual. Without limitation, the type of information we may collect is:
a. Health Information. We may collect information for an appointment about the health, disability, health services, medical histories, prescriptions, allergies and other information about an individual defined as "health information" in the the Section 43A of the Information Technology Act, 2000; Regulation 4 and 3(1) of the Information Technology (Intermediaries Guidelines) Rules, 2011.;
Information. We may collect personal details such as an individual's name,
location, date of birth, nationality, family details and other information defined
as "Personal Information" in the the Section 43A of the Information
Technology Act, 2000; Regulation 4 and 3(1) of the Information Technology
(Intermediaries Guidelines) Rules, 2011 that allows us to identify who the
c. Profesional Information. We may collect profesional details such as an that allows us to identify who the individual is; either PAN card or Adhaar card or Election card or Driving Licence and also for ownership of practice, details of either Letterhead/Prescription pad or Tax receipt or bill or Registation detail or Documents of Medical waste. For Pharmacy and agency for verification we collect details of Drug Licence and pharmacist registration.
d. Contact Information. We may collect information such as an individual's email address, telephone & fax number, third-party usernames, residential, business and postal address and other information that allows us to contact the individual;
e. Financial Information. We may collect financial information related to an individual such as any bank or credit card details used to transact with us and other information that allows us to transact with the individual and/or provide them with our services;
f. Statistical Information. We may collect information about an individual's online and offline preferences, habits, movements, trends, decisions, associations, memberships, finances, purchases and other information for statistical purposes; and
g. Information an individual sends us. We may collect any personal correspondence that an individual sends us, or that is sent to us by others about the individual's activities.
3.3 We may also collect non-Personal Information about an individual such as information regarding their computer, network and browser. This may include their IP address. Where non-Personal Information is collected.
4. HOW INFORMATION IS COLLECTED
4.1 Most information will be collected in association with an individual's use of Drlogy, an enquiry about Drlogy or generally dealing with us. However we may also receive Personal Information from sources such as advertising, an individual's own promotions, public records, mailing lists, contractors, staff, recruitment agencies and our business partners. In particular, information is likely to be collected as follows:
a. Registrations/Subscriptions. When an individual registers or subscribes for a service, list, account, connection or other process whereby they enter Personal Information details in order to receive or access something, including a transaction;
b. Accounts/Memberships. When an individual submits their details to open an account and/or become a member with us;
c. Supply. When an individual supplies us with goods or services;
d. Contact. When an individual contacts us in any way;
e. Access. When an individual accesses us physically we may require them to provide us with details for us to permit them such access. When an individual accesses us through the internet we may collect information using cookies (if relevant – an individual can adjust their browser's setting to accept or reject cookies) or analytical services; and/or
f. As there are many circumstances in which we may collect information both electronically and physically, we will endeavour to ensure that an individual is always aware of when their Personal Information is being collected.
g. Where we obtain Personal Information without an individual's knowledge (such as by accidental acquisition from a client) we will either delete/destroy the information, or inform the individual that we hold such information.
5. WHEN PERSONAL INFORMATION IS USED & DISCLOSED
5.1 The primary reason Personal Information is used or disclosed is to make a booking for an appointment or request a service through Drlogy. We maintain all Health Information in the strictest confidence.
5.2 In general, the primary principle is that we will not use any Personal Information other than for the purpose for which it was collected other than with the individual's permission. The purpose of collection is determined by the circumstances in which the information was collected and/or submitted.
5.4 It is necessary for us to disclose an individual's Personal Information to third parties in a manner compliant with the SPI Rules in the course of our business, which would primarily be to make appointments.
5.5 We will only ever pass your contact information to medical centres booked through the Drlogy booking platform for the purposes of maintaining up to date records and communicating to you health related information.
5.6 We will not disclose or sell an individual's Personal Information to unrelated third parties under any circumstances.
5.7 Information is used to enable us to operate our business, especially as it relates to an individual. This may include:
a. The provision of goods and services between an individual and us;
b. Verifying an individual's identity;
c. Communicating with an individual about:
d. Their relationship with us;
e. Our goods and services;
f. Our own marketing and promotions to customers and prospects;
g. Competitions, surveys and questionnaires;
h. Investigating any complaints about or made by an individual, or if we have reason to suspect that an individual is in breach of any of our terms and conditions or that an individual is or has been otherwise engaged in any unlawful activity; and/or
i. As required or permitted by any law.
5.8 There are some circumstances in which we must disclose an individual's information:
a. Where we reasonably believe that an individual may be engaged in fraudulent, deceptive or unlawful activity that a governmental authority should be made aware of;
b. As required by any law; and/or
c. In order to sell our business (in that we may need to transfer Personal Information to a new owner).
5.10 We may utilise third-pay service providers to communicate with an individual and to store contact details about an individual. No Health Information is stored in any third-party services in India or elsewhere.
5.11 End-Users’ personally identifiable information, which they choose to provide on the Website is used to help the End-Users describe/identify themselves. Other information that does not personally identify the End-Users as an individual, is collected by Drolgy from End-Users (such as, patterns of utilization described above) and is exclusively owned by Drlogy. Drlogy may also use such information in an aggregated or non-personally identifiable form for research, statistical analysis and business intelligence purposes, and may sell or otherwise transfer such research, statistical or intelligence data in an aggregated or non-personally identifiable form to third parties and affiliates. In particular, Drlogy reserves with it the right to use anonymized End-User demographics information and anonymized End-User health information for the following purposes:
a. Analyzing software usage patterns for improving product design and utility.
b. Analyzing such information for research and development of new technologies.
c. Using analysis of such information in other commercial product offerings of Drlogy.
d. Sharing analysis of such information with third parties for commercial use.
6. OPTING "IN" OR "OUT"
6.1 An individual may opt to not have us collect their Personal Information. This may prevent us from offering them some or all of our services and may terminate their access to some or all of the services they access with or through us. They will be aware of this when:
a. Opt In. Where relevant, the individual will have the right to choose to have information collected and/or receive information from us; or
b. Opt Out. Where relevant, the individual will have the right to choose to exclude himself or herself from some or all collection of information and/or receiving information from us.
6.2 If an individual believes that they have received information from us that they did not opt in or out to receive, they should contact us.
7. THE SAFETY & SECURITY OF PERSONAL INFORMATION
7.1 We will take all reasonable precautions to protect an individual's Personal Information from unauthorised access. This includes appropriately securing our physical facilities and electronic networks.
7.2 Drlogy uses SSL encryption to store and transfer Personal Information. Despite this, the security of online transactions and the security of communications sent by electronic means or by post cannot be guaranteed. Each individual that provides information to us via the internet or by post does so at their own risk. We cannot accept responsibility for misuse or loss of, or unauthorised access to, Personal Information where the security of information is not within our control.
7.3 We are not responsible for the privacy or security practices of any third party (including third parties that we are permitted to disclose an individual's Personal Information to in accordance with this policy). The collection and use of an individual's information by such third parties may be subject to separate privacy and security policies.
7.4 If an individual suspects any misuse or loss of, or unauthorised access to, their Personal Information, they should let us know immediately.
7.5 We are not liable for any loss, damage or claim arising out of another person's use of the Personal Information where we were authorised to provide that person with the Personal Information.
8. HOW TO ACCESS AND/OR UPDATE INFORMATION
8.1 Users of Drlogy can update their Personal Information from within their Drlogy account or profile.
8.2 Subject to the SPI rules, an individual has the right to request from us the Personal Information that we have about them, and we have an obligation to provide them with such information within 28 days of receiving their written request.
8.3 If an individual cannot update its own information, we will correct any errors in the Personal Information we hold about an individual within 7 days of receiving written notice from them about those errors.
8.4 It is an individual's responsibility to provide us with accurate and truthful Personal Information. We cannot be liable for any information that is provided to us that is incorrect.
8.5 We may charge an individual a reasonable fee for our costs incurred in meeting any of their requests to disclose the Personal Information we hold about them.
9. COMPLAINTS AND DISPUTES
9.1 If an individual has a complaint about our handling of their Personal Information, they should address their complaint in writing to the details below (Clause 12).
9.2 If we have a dispute regarding an individual's Personal Information, we both must first attempt to resolve the issue directly between us.
9.3 If we become aware of any unauthorised access to an individual's Personal Information we will inform them at the earliest practical opportunity once we have established what was accessed and how it was accessed.
10. CONTACTING INDIVIDUALS
From time to time, we may send an individual important notices, such as changes to our terms, conditions and policies. Because this information is important to the individual's interaction with us, they may not opt out of receiving these communications.
11. CONSENT TO THIS POLICY
12. CONTACTING US
All correspondence with regards to privacy should be addressed to:
The Privacy Officer, Drlogy Technologies LLP
103-106, Balajihall, 150 feet ring road, Rajkot
13. ADDITIONS TO THIS POLICY
Indicative List of Information by Nature of Service
14.1 End-Users using the Website by registering for an account on the Website or ‘Drlogy’ mobile application:
You can create an account by giving us information regarding your (name, mobile number, email address) and such other information as requested on the End-User registration page. This is to enable us to provide you with the facility to use the account to book your appointments and store other health related information.
14.2 End-Users using the Website without registering for an account on the Website or ‘Drlogy’ mobile application (i.e., ‘Guest’ End-User):
You can use the Website without registering for an account, but to book an appointment, you may be asked certain information (including your mobile number and such other information as requested when you choose to use the Services without registration) to confirm the appointment.
14.3 Practitioner availing of the free listing service on the Website or ‘Drlogy’ mobile application by registering for an account:
As a Practitioner, you may be required to provide us with information regarding your (name, mobile number, email address) and such other information as requested on the Practitioner registration page to create an account. Drlogy may send email and/or SMS confirmations or other communications to End-Users in connection with their bookings, appointments or other interactions with you, if such interactions have been facilitated by Drlogy.
14.4 Practitioner availing of the free listing service on the Website or ‘Drlogy’ mobile application without registering for an account:
As a Practitioner, you may avail of the listing service without registering for an account by providing information regarding your (name, mobile number, email address) and such other information as requested by any of Drlogy’s employees or agents who contact you in person or by telephone. In such event, Drlogy will maintain this information if and until you choose to register for an account, for which Drlogy may contact you from time to time. Drlogy will, after such information is collected from you, send you a confirmation email confirming the information provided and the fact that you will be listed on the Website. In the event you do not wish to be so listed on the Website, please inform Drlogy immediately at hello@Drlogy.com
14.5 Practitioners using the ‘Pro’ product:
You will be required to create an account and may be required to provide Drlogy with information regarding your (name, mobile number, email address) and such other information as requested by Drlogy on the Pro Practitioner registration page, in order to complete your registration.
Upon registration, Drlogy will access non-personally identifiable information of your patients from your patient records. You agree to make your patients fully aware of such access.
You have an option under these products to switch on ‘End-User Feedback’. This will mean that you are giving one or more patients’ contact details to Drlogy’s feedback system. End-Users may choose to send feedback anonymously too, in which case you agree that you have no objection to such anonymous feedback. The feedback system will then send an SMS and email to the patient(s) asking for feedback which may then be published on the Website. You agree to make your patients fully aware of the possibility of their receiving such feedback queries.
How Likely you would recommended Drlogy to a friend and colleague?
What could we have done better?