Privacy Policy

Protecting Your Health Data
With Transparency & Trust

Privacy Policy Overview

At Medrotic, we are committed to protecting your privacy and ensuring the security of your personal and health information. This Privacy Policy explains how we collect, use, store, and protect your data when you use our healthcare platform.

This policy applies to all users of the Medrotic platform, including patients, healthcare providers, medical professionals, and healthcare organizations. By using our services, you acknowledge that you have read and understood this Privacy Policy and agree to the collection and use of your information as described herein.

We process your data in accordance with applicable healthcare regulations, including HIPAA, GDPR, and other relevant data protection laws. Our commitment to privacy is fundamental to the trust our users place in our platform.

Information We Collect

We collect information necessary to provide our healthcare services effectively and securely. The types of information we collect include personal identification details, health-related data, usage analytics, and communication records to improve service quality and ensure regulatory compliance.

  • Personal information such as name, email address, phone number, date of birth, and account credentials
  • Health-related data you provide through the platform, including medical history, symptoms, and treatment records
  • Device and usage data including browser type, IP address, operating system, and interaction patterns
  • Communication records from support requests, feedback submissions, and in-platform messaging
  • Payment and billing information when applicable for premium healthcare services

How We Use Your Information

Your information is used exclusively to deliver, maintain, and improve our healthcare services. We do not use your personal or health data for advertising purposes or sell it to third parties under any circumstances.

  • Providing core healthcare services including appointment scheduling, patient record management, and telemedicine
  • Authenticating users and enforcing role-based access controls to protect sensitive information
  • Improving platform reliability, performance, security, and user experience through analytics
  • Communicating important service updates, appointment reminders, and healthcare notifications
  • Complying with legal obligations and responding to lawful requests from regulatory authorities

Legal Basis for Processing

We process your personal data under several legal bases depending on the nature of the processing activity. These include your explicit consent, the performance of our contractual obligations, compliance with legal requirements, and our legitimate interests in providing secure and effective healthcare services.

Data Sharing and Disclosure

We do not sell, rent, or trade your personal information to third parties. We share your data only in the following limited circumstances, and always with appropriate safeguards in place:

  • With authorized healthcare providers directly involved in your medical care and treatment
  • With trusted service vendors operating under strict confidentiality and data processing agreements
  • With regulatory authorities when legally required to comply with applicable laws and regulations
  • In anonymized or aggregated form for research and analytics that cannot identify individual users

Data Security Measures

We implement enterprise-grade security measures to protect your data from unauthorized access, alteration, disclosure, or destruction. Our security infrastructure includes end-to-end encryption for data in transit and at rest, multi-factor authentication, role-based access controls, regular security audits, and continuous monitoring of our systems.

Data Retention Policy

We retain your personal and health data only for as long as necessary to fulfill the purposes outlined in this policy, comply with legal and regulatory obligations, resolve disputes, and enforce our agreements. When data is no longer needed, it is securely deleted or anonymized in accordance with our data retention schedule.

Cookies and Tracking Technologies

We use essential cookies for authentication, session management, and security purposes. We also use limited analytics cookies to understand how our platform is used and to improve the user experience. You can manage your cookie preferences through your browser settings at any time.

Your Privacy Rights

Depending on your location and applicable laws, you may have the following rights regarding your personal data. We are committed to honoring these rights in a timely and transparent manner.

  • Access, review, and obtain a copy of your personal data held by Medrotic
  • Request correction or update of inaccurate or incomplete personal information
  • Request deletion of your personal data where permitted by applicable law
  • Request data portability to receive your data in a structured, machine-readable format
  • Withdraw consent and opt out of non-essential data processing and communications
  • Lodge a complaint with a supervisory authority if you believe your rights have been violated

Policy Updates

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. When we make material changes, we will notify you through the platform or via email. We encourage you to review this policy periodically to stay informed about how we protect your information.