Privacy Policy

1. Introduction

PScribe.in ("we," "our," or "us") is committed to protecting the privacy and security of your personal information and the patient data you entrust to our platform. This Privacy Policy explains how we collect, use, disclose, and safeguard information when you use our prescription management service. Given the sensitive nature of healthcare data, we implement rigorous security measures to protect all information processed through our platform.

2. Information We Collect

2.1 Healthcare Professional Information

• Full name, email address, and contact information
• Medical registration number and licensing details
• Professional qualifications and specializations
• Clinic/hospital name and address
• Digital signature (if provided)
• Account credentials and authentication data

2.2 Patient Health Information

• Patient name, age, gender, and contact details
• Medical history and current health conditions
• Allergies and drug sensitivities
• Pregnancy and breastfeeding status
• Prescribed medications, dosages, and instructions
• Vital signs and health measurements
• Comorbidities and relevant medical conditions

2.3 Technical Information

• Device information and browser type
• IP address and geographic location
• Usage patterns and access logs
• Session information for security purposes

3. How We Use Your Information

We use the collected information to:

• Provide prescription management and generation services
• Verify healthcare professional credentials
• Enable secure sharing of prescriptions with patients
• Generate prescription PDFs and digital records
• Maintain audit trails for regulatory compliance
• Improve and optimize our services
• Send important service-related communications
• Prevent fraud and ensure platform security
• Comply with legal and regulatory requirements

4. Data Security Measures

We implement comprehensive security measures including:

• End-to-end encryption for data transmission (TLS/SSL)
• Encryption of stored patient data at rest
• Secure authentication mechanisms
• Role-based access controls
• Regular security audits and vulnerability assessments
• Automated backup systems
• Incident response procedures
• Employee training on data protection

5. Data Sharing and Disclosure

We may share information in the following circumstances:

• With Patients: Prescriptions and related information shared via secure links
• Service Providers: Trusted third parties who assist in operating our platform (cloud hosting, email services) under strict confidentiality agreements
• Legal Requirements: When required by law, court order, or government regulation
• Professional Bodies: When required for credential verification with medical councils
• Emergency Situations: To protect the vital interests of patients when necessary

We do not sell, rent, or trade personal or patient health information to third parties for marketing purposes.

6. Data Retention

We retain prescription records and associated patient data for a minimum period as required by applicable healthcare regulations (typically 3-7 years depending on jurisdiction). Healthcare professional account information is retained as long as the account is active and for a reasonable period thereafter. You may request deletion of your account, subject to our legal retention obligations.

7. Your Rights

As a healthcare professional using our Service, you have the right to:

• Access your personal information and account data
• Correct inaccurate or incomplete information
• Request deletion of your account (subject to retention requirements)
• Export your prescription data
• Withdraw consent for non-essential data processing
• Lodge complaints with relevant data protection authorities

8. Patient Rights

Patients whose information is processed through our platform have rights under applicable data protection laws. Healthcare professionals are responsible for informing patients about data collection and obtaining necessary consent. Patients may contact their healthcare provider to exercise their rights regarding their health information.

9. Cookies and Tracking

We use essential cookies to maintain your session and ensure the proper functioning of the Service. We may use analytics cookies to understand how users interact with our platform, which helps us improve our services. You can control cookie preferences through your browser settings, though disabling essential cookies may affect Service functionality.

10. Third-Party Services

Our Service integrates with third-party services for authentication, cloud storage, and email delivery. These services have their own privacy policies, and we encourage you to review them. We select service providers that maintain appropriate security standards for healthcare data.

11. International Data Transfers

Your information may be processed on servers located outside your country of residence. We ensure that any such transfers comply with applicable data protection laws and that appropriate safeguards are in place to protect your information.

12. Children's Privacy

Our Service is intended for use by licensed healthcare professionals only and is not directed at individuals under 18 years of age. We do not knowingly collect information from minors for account creation. Patient information for minors should only be entered by authorized healthcare professionals with appropriate guardian consent.

13. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of material changes through the Service or via email. The "Last Updated" date at the top of this policy indicates when it was last revised.

14. Data Protection Officer

For questions about this Privacy Policy or our data practices, or to exercise your data protection rights, please contact our Data Protection Officer at: privacy@pscribe.in

15. Regulatory Compliance

We strive to comply with applicable data protection regulations including the Information Technology Act, 2000 and the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, as well as any applicable healthcare-specific data protection requirements in India.

16. Contact Us

If you have any questions, concerns, or complaints about this Privacy Policy or our data handling practices, please contact us at: support@pscribe.in