Privacy Policy

Introduction:This Privacy Policy applies to the use of all web and mobile-based applications/portals (collectively referred to as “Platforms”) and the products and services provided through these Platforms (“Services”) controlled by DigitalRX.io, owned by Zibew E-commerce PVT LTD, with its registered office at Bayshore Road, #31-02 Bayshore Park, Singapore - 469983.

Ownership: The Platforms are owned, managed, and operated by DigitalRX.io.

This Privacy Policy governs the collection, use, and disclosure of personal data through the use of the Platforms and Services by the following parties:

1. Doctors: Medical professionals with valid credentials and registration with any medical organization.
2. Patients: Individuals using the Platforms for their healthcare needs.
3. Employees: Individuals employed by hospitals/healthcare organizations.

Collectively, Patients, Employees, and Doctors are referred to as “Users” or “You/Your”. DigitalRX.io is dedicated to safeguarding the information and data shared by Users during their engagement, employment, and use of the Platforms and Services.

Commitment to Data Protection: DigitalRX.io is committed to protecting the personal information shared by Users. This Privacy Policy identifies the personally identifiable or personal information that may be collected, how it is used, and the choices Users have concerning its usage.

Agreement to Privacy Policy: Upon using the Platforms or Services, Users agree to be bound by the terms of this Privacy Policy. If any User does not agree to any or all of these terms, they should refrain from using the Platforms or Services.

If you have any questions about this data protection declaration or how data protection is handled at DigitalRX.io, our data protection team will be happy to help you. Please contact the team if you would like information about your data or if you would like your data to be deleted. You can reach our data protection team at support@DigitalRX.io your request will be forwarded immediately and processed by our data protection team.

Zibew Ecommerce PTE LTD

Bayshore Road, #31-02 Bayshore Park,

Singapore - 469983

abubakr@zibew.com

According to Art. 4 lit. 1 of the General Data Protection Regulation (GDPR), personal data is “Any information relating to an identified or identifiable natural person.” These are, for example, names, address data, telephone numbers, mobile numbers, bank details, or insurance numbers.

A subgroup of personal data is a special category of personal data according to Art. 9 of the GDPR. These include e.g. B. Information about health, sex life, and sexual orientation. Health data that can be generated by an online clinic such as DigitalRx.IO also belongs to the special category of personal data.

At DigitalRX.io, we offer a range of health-related IT services (patient portal/app, doctor portal/app, and admin portal) that you can access by contacting us online, by phone, or by mail. Whenever you use our services or get in touch with us, we collect different types of data:

From all Users:

• (i) Demographic information like name, gender, age, etc;
• (ii) Contact information such as email id, mobile number etc;
• (iv) Details required for provision of services (medical records and medical history of Patients whose data is uploaded by the Doctors or the Patients themselves, prescriptions, lab reports uploaded on the Platforms etc.);
• (v) Data regarding your usage of the Platform and Services and history of the appointments or visits made through the use of Platform and Services; and
• (vi) Other details as the Users may provide to DigitalRX.io.

From Doctors:

• (i) Information about doctor qualifications for use of our Platform;
• (ii) Information about clinic timing, patient appointments etc.
• (iii) Clinic Name, location, contact details, medical records and medical history as provided by Users, while rendering services. We also collect feedback, ratings and reviews etc. provided by Users.
• (iv) Non-personal information such as the device type, model details, browser, platform, etc. which are automatically collected during the engagement and are not explicitly provided by you.
• (vi) Access to audio and camera of your device to facilitate teleconsultations with Users.

We also analyze this data to improve our services and tailor them to your needs.

We process personal data in various areas to deliver efficient, personalized, and secure telehealth services, benefiting both patients and healthcare providers. At DigitalRX.io, we want to be transparent about how we use your personal data and who else may have access to it.

User Registration

When Users (Doctors, Employees) sign up or register for our telehealth platform and Users(Patients) sign up on your clinic website/app, All Users provide personal information such as your name, email address, contact number, and date of birth. This data is used to create user accounts and to facilitate effective communication between Doctors and patients.

Legal basis: GDPR Article 6(1)(a) - Lawfulness of processing (consent)

Telehealth Consultations

During telehealth consultations, Doctors collect personal data from their Patients, including their health history, symptoms, medical records, and other health-related information. This data is necessary for diagnosing conditions, providing medical advice, and offering appropriate treatment options.

Legal Basis: GDPR Article 9(2)(h) - Processing of special categories of personal data for health care purposes

Appointment Scheduling

Personal data, such as the Patient's name, contact information, and preferred appointment time, is used to schedule telehealth appointments efficiently and ensure a seamless experience for patients.

Legal basis: GDPR Article 6(1)(b) - Lawfulness of processing (contract performance)

Payment Processing

Our platform does not collect users' payment information. Instead, we integrate the payment gateway of the Users'(Doctor) choice, ensuring that all transactions take place securely within that platform.

Legal Basis: GDPR Article 6(1)(b) - Lawfulness of processing (contract performance)

Health Records

DigitalRX.io allows Doctors to maintain health records for their Patients. These health records contain comprehensive personal and health-related information, enabling Doctors to access Patient history, monitor progress, and ensure continuity of care.

Legal Basis: GDPR Article 9(2)(h) - Processing of special categories of personal data for health care purposes

Communication and Notifications

Personal data, such as email addresses and phone numbers, may be used to send appointment reminders, follow-up messages, and other important notifications to all Users. Effective communication enhances the telehealth experience and improves patient engagement.

Legal Basis: GDPR Article 6(1)(b) - Lawfulness of processing (contract performance)

User Support

Personal data collected during User interactions with the platform can assist in providing better customer support to Doctors and their Patients. Prompt resolution of any issues or inquiries ensures a positive telehealth experience.

Legal Basis: GDPR Article 6(1)(f) - Lawfulness of processing (legitimate interests)

Analytics and Improvements

Aggregated and anonymized personal data can be used for internal analysis and data-driven improvements to enhance the overall User experience for both healthcare providers and patients. Insights gained from analytics help optimize the telehealth platform's performance and usability.

Legal basis: GDPR Article 6(1)(f) - Lawfulness of processing (legitimate interests)

Compliance and Legal Obligations

Personal data may be used to fulfill legal requirements, such as compliance with healthcare regulations, privacy laws, and reporting obligations. We ensure that our telehealth platform adheres to relevant data protection laws, such as HIPAA (Health Insurance Portability and Accountability Act) in the United States or GDPR (General Data Protection Regulation) in the European Union, to safeguard patients' sensitive information and maintain trust with users.

Legal Basis: GDPR Article 6(1)(c) - Lawfulness of processing (legal obligation)

Marketing and Communications

With User consent, we may use personal data to provide relevant information, such as newsletters, product updates, or new service offerings, to healthcare providers and patients. Consent-based marketing efforts ensure that users receive content of interest and relevance to them.

Legal Basis: GDPR Article 6(1)(a) - Lawfulness of processing (consent)

The data collected on our platform is primarily kept confidential and is not extensively shared outside our platform. However, in specific cases where legal requirements need to be met, we may share certain data. We prioritize transparency and want our users to be informed about who may receive their personal data. Here's a closer look at the recipients:

DigitalRX.io Employees and Affiliates

Your data may be shared with DigitalRX.io's employees and affiliates to ensure the seamless provision of services on the platform. It's noteworthy that our employees and affiliates are bound by strict confidentiality obligations.

Internal Analysis

Aggregated and anonymized data may be used for internal analysis and improvements, ensuring a better user experience for Doctors and Patients.

Compliance and Legal Obligations

Personal data may be shared to fulfill legal requirements, such as compliance with healthcare regulations, privacy laws, and reporting obligations.

Your data may be shared with government institutions or authorities under specific circumstances outlined in our privacy policy. These instances include

• (i) When mandated by laws, rules, regulations, or orders from relevant judicial or quasi-judicial bodies.
• (ii) For the detection, investigation, and prosecution of cyber incidents.
• (iii) To report any offenses committed by users.
• (iv) To safeguard and uphold the rights or property of DigitalRX.io.
• (v) To combat fraudulent activities.
• (vi) To enforce DigitalRX.io's Terms and Conditions, which also include this Privacy Policy.
• (vii) For verification of information provided by users.
• (viii) When deemed necessary by DigitalRX.io, at its sole discretion, to protect its rights or rights of others.

We take data privacy seriously and handle personal data responsibly in accordance with relevant data protection laws.

At DigitalRX.io, your safety and security are of utmost importance to us. That's why we have implemented a range of measures to ensure both legal compliance and the highest standards of data protection.

Technical and organizational measures

We prioritize your online safety. Our company employs comprehensive technical and organizational security measures (TOMs) to safeguard the data we manage from any accidental or intentional manipulation, loss, destruction, or unauthorized access. Our team members undergo regular training to stay vigilant about the latest IT security practices and ensure your data remains protected.

Cookies

We use cookies on our website to enhance your browsing experience. Cookies are small text files stored on your device by your browser. They enable smooth navigation, improve website effectiveness, and ensure security. Some cookies are temporary (session cookies), while others remain longer (persistent cookies) to remember your settings and preferences. These cookies also help us analyze website usage to provide better services. You have control over cookies through your browser settings. If you have any questions about cookies, feel free to contact us.

(Legal basis: GDPR Article 6(1)(f) - Legitimate interests)

You have the following statutory data protection rights:

Right to information (Article 15 GDPR)

You have the right to know what data is collected, how it is used, how long it is stored, and whether it is shared with third parties.

Right to erasure (Article 17 GDPR)

You can request that we delete your data in certain circumstances, e.g. if the data is no longer required, the data has been processed unlawfully or the data no longer correspond to the lawful reason for which they were collected. This also applies if you revoke your consent.

Right to rectification (Article 16 GDPR)

If you find that the information we hold about you is incorrect or incomplete, you can request an update of the data. As with the right to access, we will process the request within one month.

Right to restriction of processing (Article 18 GDPR)

You can request that we restrict the use of your personal information. This is possible if you contest the accuracy of your personal data or if DigitalRx.IO is currently unable to delete the data to establish, exercise or defend a legal claim.

Right to data portability (Article 22 GDPR)

You have the right to receive and reuse your personal data for your own purposes or to request transmission to another service provider. This right only applies to personal data that you, as the data controller, have provided to us under a contract or consent.

Right of appeal to a data protection supervisory authority (Article 77 GDPR)

You have the right to complain to a data protection supervisory authority about alleged data protection violations. The competent authority of the DigitalRx.IO can be found in the "your contact person" section.

Right to revoke consent (Article 7 paragraph 3 GDPR)

You have the right to object to certain data processing measures (Article 21 GDPR): You can object to the processing of your personal data that is collected on the basis of legitimate interests or the performance of a task in the interest of exercising public authority.

If you want to assert your rights, you can get in touch with our contact person.