Privacy Policy

Updated March 01, 2024

Please ensure that this Privacy Policy (“Policy”) is perused by You (defined below) before availing any services from Us (defined below). This Policy shall be updated from time to time and therefore in order to stay abreast with respect to the purpose of using Your (defined below) Information (defined below) and protecting Your privacy, We (defined below) recommend You to please keep reviewing the Policy.

Synaegis Healthtech Private Limited, a company duly incorporated under the provisions of the Companies Act, 2013, having its registered office at Gopala Krishna Complex, No. 45/3 Residency Road, MG Road, Bengaluru-560025, India (collectively, “SHPL” “Company”, “We,” “Us,” or “Our”) own and operate the medsygn website [https://medsygn.in/] (“Website”), medsygn application (“App”) and the domains, namely (medsygn.in; doctor.medsygn.in; staff.medsygn.in; pharmacy.medsygn.in; medsygn.care; api.medsygn.in) (“Domains”), and is committed to protect the privacy and security of personal data, belonging to and/or provided by any person who accesses or uses the Platform, including healthcare professionals ("HCP”) and patients (“User” “You” or “Your”). The Website, App and Domains shall hereinafter be collectively referred to as “Platform”. We value Your privacy and advise You to carefully read this privacy policy as this Policy describes the types of Personal Data or Personal Information ("PI”) and Sensitive Personal Data or Information (“SPDI”) We collect, how We use the Information, how We process and protect the Information We collect, for how long We store it, with whom We share it, to whom We transfer it and the rights that individuals can exercise regarding Our use of their Information. We also describe how You can contact Us about Our privacy practices and to exercise Your rights.

It is clarified here that for the purposes of this Policy, PI and SPDI shall hereinafter be collectively referred to as “Information”

SHPL, being the owner of the Platform, respects Your privacy, and seeks to comply with all the applicable statutory requirements in India, including the Information Technology Act, 2000, and rules made thereunder in respect of data collection, processing and transfer.

This Policy is incorporated into and subject to Our Terms and Conditions (“User Terms”) and shall be read harmoniously and in conjunction with the User Terms. In the event of any conflict between the User Terms and this Policy, the provisions of the User Terms shall supersede this Policy. All capitalised terms not defined under this Policy shall have the meaning ascribed to it under the applicable User Terms. The User Terms can be found on https://medsygn.in/terms-conditions.THIS POLICY DOES NOT APPLY TO INFORMATION THAT YOU PROVIDE TO, OR THAT IS COLLECTED BY (i) ANY THIRD PARTY THROUGH OUR PLATFORM AND (ii) ANY THIRD PARTY WEBSITES THAT YOU ACCESS OR USE IN CONNECTION WITH THE SERVICES OFFEREDTHROUGH OUR PLATFORM. THE COMPANY SHALL NOT BE LIABLE FOR AND HAS NO CONTROL OVER THE PRACTICES AND CONTENT OF ANY SUCH THIRD PARTIES.

1. Our Services

The Platform is a patient management software (inclusive of EMR and Telemedicine features) that enable HCPs to manage their clinic operations digitally and maintain all digital records of patients by providing a wide range of services. Our services include:

  1. Registration of patients by the HCPs and book appointments.
  2. Providing clinical decision support by counselling the patients on their health status, tracking the vitals/metrics of the patients, generating prescriptions, management of specific disease scorecard etc.
  3. Provide virtual clinic administration and support by sending SMS to patients, conduct teleconsultation.
  4. Provide insight to the HCPs of their own practice by generating analytical practice report.
  5. Providing any other online support required by the Users while using the services on our Platform.

2. Consent

By clicking on the "I accept' button on the landing page individually and separately, once for the User Terms and second time for the Policy or by providing Us Your personal information by any means whatsoever or by making use of the features provided by the Platform, You hereby consent to the collection, storage, processing, disclosure and transfer of Your personal information in accordance with the provisions of this Policy. You acknowledge that You are providing Your personal information out of Your free will. You also consent that the collection, storage, processing, disclosure and transfer of any Information shall not cause any wrongful loss to You, if it is done in accordance with the provisions of this Policy. However, we shall not be liable for any loss that may happen to you owing to the provision of wrongful personal Information by You. We will ask for your explicit written consent to share any sensitive personal information.

PLEASE READ THE PRIVACY POLICY CAREFULLY BEFORE USING OR REGISTERING ON THE PLATFORM OR ACCESSING ANY MATERIAL, INFORMATION OR AVAILING ANY SERVICES THROUGH THE PLATFORM. BY CLICKING ON THE “I ACCEPT” BUTTON ON THE LANDING PAGE, YOU ACCEPT THIS PRIVACY POLICY AND AGREE TO BE LEGALLY BOUND BY THE SAME. IF YOU DO NOT AGREE TO THE PRIVACY POLICY, PLEASE DO NOT USE OR ACCESS THE PLATFORM.

3. Children Under the Age of 18

For children under 18 years of age, our services are provided only upon obtaining the express consent of their parent or guardian. If You are under 18 years of age, We require that Your parent or guardian use Our services on Your behalf to the extent possible. If You are under 18 years of age and do not have parental consent, donot use or provide any Information, including Your name, address, telephone number, email address, or any screen name or user name You may use to Us either through the Platform or otherwise. If We learn We have collected or received Information from a child under 18 years of age without verification of parental consent, We will delete that Information. If You believe that We might have any Information from a child under 18 years of age, please contact Us at info@medsygn.in.

4. Collection of Information

When You access Our services, we may ask you to voluntarily provide Us with certain Information that personally identifies You or could be used to personally identify You. PI for the purpose of this Policy shall include, but not be limited to:

For Patients:

  1. Contact Information- name, address, contact details like email ID and phone number;
  2. Demographic information: age, gender, date of birth;
  3. Any other information that is collected or generated in the course of availing the services including information about your computer, mobile device, and Internet connection, specifically your IP address, operating system, browser type, and Application version information.;
  4. Any other Information relating to the above which You may have shared with Us prior to this Policy for availing any of the services.

For HCPs:

  1. Contact Information- name, address, contact details like email ID and phone number;
  2. Demographic information: age, gender, date of birth;
  3. Information regarding Your medical qualifications, registrations, licenses, certifications and clinic details;
  4. Any other information that is collected or generated in the course of availing the services including information about your computer, mobile device, and Internet connection, specifically your IP address, operating system, browser type, and Application version information.

The Information collected from You by SHPL may also constitute SPDI under the Information Technology (Reasonable security practices and procedures and sensitive personal data or information) Rules, 2011. SPDI for the purpose of this Policy shall include, but not be limited to:

For Patients:

  1. Private user id and passwords that is sent to You;
  2. Information regarding height, weight and lifestyle details;
  3. Financial information such as Bank account or credit card or debit card or other payment instrument details;
  4. Information regarding Your physical, physiological and mental health condition which You voluntarily provide or is generated on usage of the Services including Information such as (i) clinical notes, (ii) prescriptions, (iii) reports, (iv) investigations conducted by the doctor etc.
  5. Any additional Information that You provide to Us during the use of the services, through any mode of communication or during any interaction with doctors, consultants, etc., while availing its services.

For HCPs:

  1. Private user id and passwords that is sent to You;
  2. Financial information such as Bank account or credit card or debit card or other payment instrument details;

ANY INFORMATION THAT IS FREELY AVAILABLE OR ACCESSIBLE IN PUBLIC DOMAIN OR FURNISHED UNDER THE RIGHT TO INFORMATION ACT, 2005 OR ANY OTHER LAW FOR THE TIME BEING IN FORCE SHALL NOT BE REGARDED AS INFORMATION FOR THE PURPOSE OF THIS POLICY.

When You visit Our Platform, We may collect certain non-personal information such as Your internet protocol address, operating system, browser type, internet service provider, aggregate user data, software and hardware attributes, pages You request, number of click, active seconds or minutes on Our Platform, frequency of Your visit to Our Platform, the date and time of Your visit to Our Platform.THIS TYPE OF INFORMATION DOES NOT IDENTIFY YOU PERSONALLY.

5. From where the data is collected

For Patients:

  1. Any Information that You voluntarily choose to provide to Us through the Platform or email, during registration or interaction with Us on call or chat and other modes of communication;
  2. Any Information that we collect from HCPs such as doctors, to whom You have permitted the sharing of Your Information. In that event an email or text message will be sent to the concerned patient providing the nature of information obtained and a brief description of the reason for obtaining such information.

For HCPs:

  1. Before on-boarding You, We may request Information regarding Your qualifications, licenses, registrations, experience, public profile, etc., and representations made by You to Us from time to time;
  2. During Your usage of the Platform, We may collect Information based on Your use of Our services.

6. Use of Information

We collect Your Information necessary for our legitimate interests and lawful purpose to monitor how Our Platform is used to help us improve the layout and information available on Our Platform and provide a better service to Our Users, including the following:

  1. In order to enable You to use the Platform and utilize Our services. For instance, You may provide Your health related Information on the Platform Name in order to consult privately with an HCP, or You may provide Your financial information in order to process a payment which You need to make on the Platform;
  2. to help You to manage Your clinic operations in a more efficient manner;
  3. to respond to Your inquiries;
  4. to provide You with information about products and services available on the Platform.
  5. to personalize Your experience on the Platform;
  6. to help You address Your problems incurred on the Platform including addressing any technical problems;
  7. for proper administering of the Platform;
  8. to conduct internal reviews and data analysis for the Platform (e.g., to determine the number of visitors to specific pages within the Platform);
  9. to improve the services, content and advertising on the Platform;
  10. to protect the integrity of the Platform;
  11. to respond to judicial process and provide information to law enforcement agencies or in connection with an investigation on matters related to public safety, as permitted by law;
  12. to conduct research studies at an aggregate level using the anonymised data to gain insights on trends in disease, treatment, clinical outcomes and advance developments in medicine to improve patient healthcare outcomes;
  13. to make disclosures as may be required under applicable law.

7. Data Sharing

We may share, disclose and in some cases transfer Your Information to such entities as required to provide services to You, improve our services, and to provide value added services or any other technical services, tothe extent permitted by applicable law. These entities may be located outside India, which You hereby consent to. We require such entities to protect Your Information through equivalent security measures as what We would adopt. An indicative list of entities We may disclose or transfer Information to, as provided below:

  1. (a) Business affiliates: We may disclose or transfer Your PI, limited only to the analytic data and not SPDI, to Strategic Marketing Solutions and Research Centre, being a business affiliate of the Company as per the terms of the shareholder agreement. In the event of a merger, reorganization, acquisition, joint venture, assignment, spin-off, transfer, asset sale, or sale or disposition of all or any portion of Our business, including in connection with any bankruptcy or similar proceedings, We may transfer any and all Information to such entity, with Your consent, with the same rights of access and use and , that ensures the same level of data protection that is adhered to by SHPL as provided under the relevant rules in India. It is hereby also clarified that for the purpose of this clause HCP are deemed to be business affiliates of SHPL.
  2. (b) Payment Service Provider: We may also share the Information including financial information with third party payment service providers like payment gateways, payment aggregator, and other payment service providers for the purpose of fulfilling Services to You.
  3. (c) Law Enforcement Agencies: We may disclose Your Information if required to do so by law or when We believe that such disclosure is appropriate to comply with law or in good faith belief that such disclosure is reasonably necessary to respond to subpoenas, court orders, or other legal process. We may disclose Information to law enforcement agencies, pursuant to lawful requests for information, and otherwise as required under any law applicable at the given time, both in India and outside India.

8. Data Retention

We shall not retain Your Information for longer than is required for the purposes for which the Information may lawfully be used. However, We may retain data related to You if there is a legal obligation to retain the data; if required to comply with any applicable statutory or regulatory retention requirement by law; if We believe it may be necessary to prevent fraud or future abuse; to enable the Company to exercise its legal rights and/or defend against legal claims; or for other legitimate purposes. We may continue to retain Your data in anonymised form for analytical and research purposes. SHPL shall not retain any Information beyond the period necessary to satisfy the purpose for which it is processed and shall delete the information at the end of the processing.

9. Withdrawal of Consent

You may choose to withdraw Your consent provided hereinunder at any point in time. Such withdrawal of the consent must be sent in writing to info@medsygn.in. In case You do not provide or later withdraw Yourconsent, We reserve the option to not allow You to undertake any transaction or access Our service for which the said Information was sought. However, if You are a part of any on-going transaction, We reserve the right to retain all Your financial information until completion of the transaction. Further, You acknowledge and agree that in case of such withdrawal of Your consent, the Company reserves the right to store Your information in an anonymised form such that the Information stored will not be attributable to You or identify You in any manner whatsoever. The Company shall complete the anonymizing of the data within 30 (thirty) days from the date of withdrawal of consent.

10. Rectification of Data

You represent and warrant that any and all Information, is absolutely correct and complete in all aspects. You further undertake to immediately update any change or variation of Your Information by sending Us a request in writing to info@medsygn.in to rectify or update Your Information. Once You send an email to Us, You agree to comply with the instructions as may be provided/communicated by Us.

11. Rights of the Users

Your rights w.r.t data protection and privacy are:

  1. The right to access;
  2. The right to rectification;
  3. The right to erasure;
  4. The right to restrict processing;
  5. The right to object to processing;
  6. The right to complain to a supervisory authority; and
  7. The right to withdraw consent

Further it is hereby clarified that processing for the purpose of this Policy shall mean an automated operation or set of operations performed on digital personal data, and may include operations such as collection, recording, organisation, structuring, storage, adaptation, alteration, retrieval, use, alignment or combination, indexing, sharing, disclosure by transmission, dissemination or otherwise making available, restriction, erasure or deletion.

You have the right to confirmation as to whether or not We process Your Information and, where We do, the platform and/ or any other source wherefrom the access to such Information, together with certain additional information, is obtained. That additional information includes details of the purposes of the processing, the categories of Information concerned and the recipients of such Information. Provided the rights of others are not affected, We will supply to You a copy of Your Information.

You have the right to have any inaccurate Information about You rectified and, taking into account the purposes of the processing, to have any incomplete Information about You completed.

In some circumstances You have the right to the erasure of Your Information without undue delay. Those circumstances include: (i) the Information is no longer necessary in relation to the purposes for which they were collected or otherwise processed; (ii) You withdraw consent to consent-based processing; (iii) You object to the processing under certain rules of applicable data protection law; and (iv) the processing is for direct marketing purposes and (v) the Information have been unlawfully processed. However, there are exclusions of the right to erasure. The general exclusions include where processing is necessary, for exercising the right of freedom of expression and information, for compliance with a legal obligation, or for the establishment, exercise or defence of legal claims.

Right to restrict processing of Your Information: In the following circumstances You have the right to restrict the processing of Your Information: Where, (i) You contest the accuracy of Your Information; (ii) processing is unlawful but You oppose erasure; (iii) We no longer need Your Information for the purposes of Our processing, but You require Your Information for the establishment, exercise or defence of legal claims; and (iv) You have objected to processing, pending the verification of that objection. In the event the processing has been restricted on the above circumstances, We may continue to store Your Information. However, We will only otherwise process it, with Your consent, (i) for the establishment, exercise or defence of legal claims; (ii) for the protection of the rights of another natural or legal person; and (iii) or for reasons of public interest.

You have the right to object to Our processing of Your Information on grounds relating to Your particular situation, provided such objection is not to the extent, as far as practicable, of processing where the legal basis of such processing is necessary for, (i) undertaking a transaction carried out in public interest or in the exercise of any official authority vested in Us; or (ii) the purposes of legitimate interests pursued by Us in a bona fide manner.

If You make such an objection as mentioned above, We will cease to process the Information, provided that We shall not cease such processing if We can demonstrate compelling and legitimate grounds for the processing which override Your interests, rights and freedoms, or the processing is for the establishment, exercise or defence of legal claims.

You have the right to object to our processing of Your Information for direct marketing purposes, including profiling for direct marketing purposes. If You make such an objection, We will cease to process Your Information for this purpose.

Where processing is for scientific or historical research purposes or statistical purposes, You have the right to object to our processing of Your Information on grounds relating to Your particular situation, unless the processing is necessary for the performance of a task carried out for reasons of publicinterest, to the extent that the legal basis for our processing of Your Information is: (a) consented; or (b) that the processing is necessary for the performance of a contract to which You are party; or (c) in order to take steps at Your request prior to entering into a contract, and such processing is carried out by automated means.

You have the right to receive Your Information from Us in a structured, commonly used and machine- readable format. However, this right does not apply where it would adversely affect the rights and freedoms of other users as well as that of SHPL and its affiliates.

If You consider that our processing of Your Information infringes data protection laws in India, You have a legal right to lodge a complaint with a supervisory authority responsible for data protection.

To the extent that the legal basis for Our processing of Your Information is consented, You have the right to withdraw that consent at any time. Withdrawal will not affect the lawfulness of processing before the withdrawal.

You may exercise any of Your rights in relation to Your Information by written notice to Us by email or speed post/registered post at the below mentioned address:
Mr./ Ms. Mr. Sagar Rathod
Office of the Concerned Officer, Synaegis Healthtech Private Limited
Gopala Krishna Complex, No. 45/3 Residency Road, MG Road, Bengaluru-560025, India
(E): info@medsygn.in

SHPL will take reasonable steps to resolve Your queries at the earliest. However, in any event We will provide You the response within a period of 1 (one) month from the receipt of such requests. In case We are unable to address Your concern within the said period, We will communicate the same along with reason for delay during the said period.

12. Use of Cookies

Cookies are files with small amount of data, which may include an anonymous unique identifier. Cookies are sent to You on the Platform. We may store temporary or permanent ‘cookies’ on Your computer/device to store certain data (that is not SPDI). You can erase or choose to block these cookies from Your computer. You can configure Your computer’s browser to alert You when We attempt to send You a cookie with an option to accept or refuse the cookie. If You have turned cookies off, You may be prevented from using certain features of the Platform. We do not control the use of cookies by third parties.

13. Security of Information:

  1. Your security is important to Us. We adopt reasonable security practices and procedures to include technical, operational, managerial and physical security control measures in order to protect Your Information in Our possession from loss, misuse and unauthorised access, disclosure, alteration and destruction.
  2. We work to protect the security of Information during transmission by using SSL certificate for network encrypted connection.
  3. We have authenticated all API request using OAuth 2.0 Server and CSRF and We use 2F authentication to authenticate the users.
  4. We have automated backup policy at server level. We use the AWS managed cloud servers which automatically takes the incremental backup every day.
  5. We maintain physical, electronic and procedural safeguards in connection with the collection, storage, processing and disclosure of Information. Our security procedures mean that we may occasionally request proof of identity before we disclose Personal Information to You.
  6. Our reasonable security measures shall be audited by an auditor at least once a year.

14. Policy Changes

We reserve the unconditional right to change, modify, add, or remove portions of this Policy at any time, without specifically notifying You of such changes. Any changes or updates will be effective immediately. You should review the privacy notice, published on the Website at medsygn.in, regularly for changes. If We make any significant changes, We will endeavour to provide You with reasonable notice of such changes, such as via a prominent notice on the Website or to Your email address on record with Us and where required is applicable by an Indian law, We will obtain Your consent. Your acceptance of the amended privacy policy and/ or Your continued use of Our services after We publish or send a notice about Our changes to this Policy shall signify Your consent to such changes and be legally bound by the same. In case of breach of Information, We will notify You via email or a phone call, on record with Us, when We are aware of such breach at the earliest as practicable.

15. Grievance Redressal

SHPL shall address any discrepancies and grievances of provider of the information with respect to processing of information in a time bound manner. If You have any discrepancies or grievances relating to the processing or usage of Information provided by You in connection with this Policy, please email us at info@medsygn.in or write to our Grievance Officer at the following address:

  1. Mr. Chaitanya Golikere
  2. Office for Grievance Redressal, Synaegis Healthtech Private Limited
  3. Gopala Krishna Complex, No. 45/3 Residency Road, MG Road, Bengaluru-560025
  4. (E): support@medsygn.in

Your grievances shall be addressed by the Grievance Officer within 1 (one) month from the date of receipt of grievance.

Contacting Us

If you’d like to discuss our privacy policy, or if you have any questions regarding your privacy while visiting our website, do not hesitate to contact us.

Contact Us
images

Dedicated Product
Specialist

customer service

24/7
Support

images

Regular & Continuous
Updates

images

Highest Data
Security Standards