Privacy Policy

SpotMedics ("we", "our", "the platform") is operated by Pillai InfoTech LLP. This policy explains what information we collect, how we use it, and your rights over it. We are committed to protecting your health and personal data.

1. Information We Collect

• Patients: Name, phone number, email, city, and any health records you voluntarily upload (lab reports, prescriptions). Appointment details including doctor, date, and reason.
• Healthcare Providers: Name, qualifications, registration number, clinic address, consultation fee, and practice details required for your public listing.
• All Users: Device type, browser, IP address, and pages visited — used only for improving platform performance and security.

2. How We Use Your Information

• To display your doctor profile to patients searching for healthcare providers.
• To facilitate appointment booking and send confirmation/reminder messages.
• To store and display health records you upload — accessible only to you and providers you explicitly share with.
• To improve search results, detect fraud, and maintain platform security.
• We do not sell your data to advertisers, insurers, or pharmaceutical companies.

3. Health Record Data

Health records (lab reports, prescriptions, medical history) are stored securely and are private by default. You control sharing — a record is only accessible to a doctor after you explicitly share it. We do not read, analyse, or share your health records without your consent.

4. Data Sharing

We share data only in these limited cases:

• With the healthcare provider you book an appointment with — they receive your name, contact, and appointment details.
• With service providers who help operate the platform (hosting, SMS delivery) — under strict confidentiality agreements.
• When required by law or a valid court order.

5. Your Rights

• Access: Request a copy of all data we hold about you.
• Correction: Update incorrect information at any time from your account settings.
• Deletion: Request deletion of your account and all associated data. Health records are permanently erased within 30 days.
• Portability: Export your health records in PDF format from your account.

6. Cookies

We use essential cookies for session management (keeping you logged in) and analytics cookies (Google Analytics, anonymised) to understand which pages are used. You can disable analytics cookies in your browser settings — this does not affect platform functionality.

7. Data Retention

Active accounts: data retained while your account exists. Deleted accounts: personal data removed within 30 days. Aggregated and anonymised analytics are retained indefinitely.

8. Security

All data is transmitted over HTTPS (TLS 1.2+). Passwords are hashed using bcrypt. Health records are stored with access controls — only you and explicitly-authorised providers can read them. We conduct periodic security reviews.

9. Contact

For privacy questions, data requests, or deletion requests:
Pillai InfoTech LLP
Email: privacy@spotmedics.com
We respond within 5 business days.