Privacy PolicyYour Health Data is Sacred
We believe your health information is deeply personal. This policy explains how we collect, protect, and use your data with complete transparency.
Your Privacy Protections
We've built privacy and security into the foundation of ArogyaSuman
End-to-End Encryption
All health data is encrypted both in transit and at rest using industry-standard AES-256 encryption.
India-First Data Policy
Your health data never leaves India. All servers and backups are located within Indian borders.
No Data Selling
We will never sell your personal health information to third parties or advertisers. Period.
Full Data Control
You can view, download, or delete your data anytime. Your health information belongs to you.
Table of Contents
Privacy Overview
Our Core Privacy Commitment
ArogyaSuman Technologies Private Limited ("we," "our," or "us") is committed to protecting your privacy and health information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our services.
At ArogyaSuman, we understand that your health information is deeply personal and sensitive. We've designed our platform with privacy-by-design principles, ensuring that your data protection isn't an afterthought but a fundamental feature of our service.
This policy applies to all users of ArogyaSuman services, including our website, mobile applications, and API services. By using our services, you agree to the collection and use of information in accordance with this policy.
Key Principles:
- Transparency: We clearly explain what data we collect and why
- Minimal Collection: We only collect data necessary to provide our services
- User Control: You maintain control over your health information
- Security First: We use industry-leading security measures
- No Selling: We never sell your personal health information
Data Collection
Information You Provide Directly
When you use ArogyaSuman, you may provide us with the following types of information:
Account Information
- • Name, email address, phone number
- • Date of birth, gender
- • Profile picture (optional)
- • Family member information (Premium users)
Health Information
- • Medical reports and test results
- • Health parameters and trends
- • Medication information
- • Chronic condition details
Information We Collect Automatically
When you interact with our services, we may automatically collect certain information:
- Usage Data: How you interact with our app and services
- Device Information: Device type, operating system, browser type
- Log Information: Access times, pages viewed, IP addresses
- Analytics Data: Aggregated usage patterns (anonymized)
What We DON'T Collect
- • We don't collect data from third-party social media profiles
- • We don't track your location unless explicitly needed for a feature
- • We don't access your device contacts or photos without permission
- • We don't collect financial information (payments handled by secure processors)
Data Usage
We use your information to provide, maintain, and improve our services. Here's how:
Primary Uses of Your Data:
Data Processing Legal Basis:
Under Indian data protection laws and international standards, we process your data based on:
- Consent: You have given clear consent for specific purposes
- Contract: Processing necessary to perform our services
- Legitimate Interest: To improve our services and prevent fraud
- Legal Obligation: To comply with applicable laws and regulations
Data Security
We implement industry-leading security measures to protect your health information:
Technical Safeguards
- • AES-256 encryption for data at rest
- • TLS 1.3 encryption for data in transit
- • Multi-factor authentication
- • Regular security audits and penetration testing
- • Automated threat detection and monitoring
Operational Safeguards
- • Access controls and user authentication
- • Employee background checks and training
- • Data minimization and retention policies
- • Incident response and breach notification procedures
- • Regular backups and disaster recovery
Compliance and Certifications:
Your Rights
You have several rights regarding your personal health information:
How to Exercise Your Rights:
To exercise any of these rights, please contact us at privacy@arogyasuman.comor through your account settings. We will respond to your request within 30 days.
International Users
India-First Data Policy
ArogyaSuman is an Indian company serving primarily Indian users. All data is processed and stored within India in accordance with Indian data protection laws.
For International Users:
If you're accessing our services from outside India, please note:
- Your data will be transferred to and processed in India
- Indian data protection laws will apply to your information
- We comply with applicable international data transfer regulations
- You may have additional rights under your local laws
GDPR Compliance (EU Users):
For users in the European Union, we comply with the General Data Protection Regulation (GDPR). You have additional rights including the right to lodge a complaint with your local supervisory authority.
Contact Us
If you have any questions about this Privacy Policy or our data practices, please contact us:
Privacy Officer
Company Address
123 Health Tech Park
Bengaluru, Karnataka 560001
India
Changes to This Policy:
We may update this Privacy Policy from time to time. We will notify you of any material changes by email or through a notice on our website. The updated policy will be effective when posted.
Questions or Concerns?
We're here to help. If you have any questions about this Privacy Policy or how we handle your data, don't hesitate to reach out to our privacy team.