Privacy Policy
Last updated: April 2026
Introduction
Privemen Health Pvt Ltd ("Company," "we," "us," or "our") operates the privemen.com website and related telehealth services. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and use our telehealth services.
We are committed to protecting your health information in compliance with the Digital Personal Data Protection Act, 2023 (DPDPA) and the Telemedicine Practice Guidelines, 2020 (TPG 2020) issued by the Medical Council of India.
1. Data We Collect
Personal Information
- Name, email address, phone number
- Age, gender, medical history
- Delivery address and payment information
- Account credentials (email and password)
Health Information
- Consultation responses and medical questionnaires
- Doctor consultations notes and summaries
- Prescriptions and medication records
- Treatment history and progression tracking
- Digital signatures on prescriptions (where applicable)
Usage Information
- Browser type and IP address
- Pages visited and time spent
- Device information and operating system
- Cookie data and analytics information
2. How We Use Your Information
- To provide telehealth consultation services and process subscriptions
- To deliver prescriptions and medications to your address
- To maintain medical records and enable continuity of care
- To comply with legal and regulatory requirements
- To send appointment reminders, billing notifications, and service updates
- To improve our services through analytics and user feedback
- To detect and prevent fraud or unauthorized access
- To respond to customer inquiries and provide customer support
3. Health Information Protection
Your health information is treated as highly sensitive and confidential data in accordance with DPDPA, 2023 and TPG 2020 guidelines.
Confidentiality: All health information is stored securely with restricted access to authorized medical professionals only. Doctors and support staff access your data only for treatment purposes.
Prescriptions: Digital prescriptions are securely stored and shared only with authorized pharmacies. Prescription records are maintained for regulatory compliance and continuity of care.
Consultation Records: Doctor consultation notes are confidential and accessible only to your assigned healthcare provider and you.
4. Data Storage and Security
Location: All personal and health information is stored on secure servers located within India, as required by DPDPA 2023.
Security Measures: We implement industry-standard security measures including:
- Encryption of data in transit and at rest (SSL/TLS protocols)
- Secure authentication with password hashing
- Regular security audits and penetration testing
- Access controls and role-based permissions
- Secure backup and disaster recovery procedures
5. Data Sharing with Partners
We only share your information with trusted partners necessary for service delivery:
Healthcare Providers: Your health information is shared with licensed doctors for consultation and treatment purposes only.
Pharmacy Partners: Prescriptions are shared with registered pharmacies to fulfill medication orders. These partners are bound by confidentiality agreements.
Logistics Partners: Delivery address and order information is shared with courier services solely for shipment purposes.
Payment Processors: Payment information is processed by secure third-party payment gateways (Razorpay). We do not store credit card details.
No sale of data: We never sell, trade, or share your personal or health information for marketing purposes or to any unauthorized third parties.
6. Cookies and Tracking
We use cookies and similar tracking technologies to:
- Keep you logged in during your session
- Remember your preferences and settings
- Analyze website usage and improve user experience
- Prevent unauthorized access and fraud
Most browsers allow you to control cookie settings. You can disable cookies, but some features may not work properly.
7. Your Rights as a Patient
Under DPDPA 2023 and TPG 2020, you have the right to:
- Access: Request and obtain a copy of your medical records and personal data
- Correction: Request correction of inaccurate or incomplete information
- Deletion: Request deletion of your account and associated data (subject to legal retention requirements)
- Portability: Request your health records in a portable format to share with another healthcare provider
- Consent Withdrawal: Withdraw consent for data processing at any time
- Grievance Resolution: File a complaint if you believe your rights have been violated
8. Data Retention
We retain your information as follows:
- Health Records: Retained for minimum 5 years after last consultation (as per medical regulations)
- Transaction Records: Retained for 7 years for regulatory and tax compliance
- Account Data: Retained during active account; upon deletion, retained only as legally required
- Usage Logs: Retained for 90 days for security and analytics purposes
9. Children's Privacy
Our services are intended only for individuals 18 years of age and older. We do not knowingly collect information from minors. If we become aware that we have collected data from a minor, we will delete such information immediately.
10. Third-Party Links
Our website may contain links to third-party websites. We are not responsible for the privacy practices of external sites. We recommend reviewing their privacy policies before sharing your information.
11. Policy Changes
We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. We will notify you of material changes via email or prominent notice on our website. Continued use of our services constitutes acceptance of updated terms.
12. Contact Information
If you have privacy concerns, questions, or wish to exercise your rights, please contact us:
Privemen Health Pvt Ltd
Email: privacy@privemen.com
Website: privemen.com
For complaints related to data protection, you can also file a complaint with the relevant Data Protection Authority as per DPDPA 2023.