Patient Health Data Security & Storage Policy

1. Introduction

We value your trust and are committed to protecting your personal and health information. This policy explains how we collect, store, and secure your health data when you use our platform. By using our services, you agree to the terms outlined in this policy.

2. Purpose of This Policy

Our goal is to provide complete transparency about:

  • Where your data is stored.
  • How it is protected.
  • Who can access it (and who cannot).
  • How we comply with applicable laws and regulations.

3. Data Storage Location

  • All health records are stored in Google Cloud Healthcare in the Mumbai Region (India).
  • Your data never leaves India and is not stored or backed up in any other country.
  • This ensures compliance with Indian data residency regulations.

4. Data Format & Standards

  • We store your data using the FHIR (Fast Healthcare Interoperability Resources) standard, which is widely recognized for healthcare data exchange and security.
  • FHIR ensures your records are structured, accurate, and compatible across healthcare systems.

5. Security Measures

We use multiple layers of security to protect your information:

  • Encryption: Your data is encrypted both during transmission and while stored.
  • Access Controls: Only authorized personnel with verified credentials can access necessary data.
  • Regular Audits: Our systems are periodically reviewed to maintain compliance with legal and security standards.
  • Activity Monitoring: Any attempt to access data is logged and monitored.

6. Privacy & Confidentiality

  • Your health data will never be shared with third parties without your explicit consent, unless required by law.
  • No unauthorized staff members can view your personal health records.
  • We do not sell or trade your personal information.

7. Compliance with Indian Laws

We follow all applicable Indian laws and guidelines regarding healthcare data privacy, including:

  • Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011.
  • Any other relevant government regulations as updated from time to time.

8. Your Rights as a Patient

You have the right to:

  1. Request a copy of your health data.
  2. Ask for corrections if any information is inaccurate.
  3. Request deletion of your data, subject to legal requirements.
  4. Withdraw your consent for data storage and usage.

9. Consent Statement

By continuing to use our platform and selecting “I Agree” during onboarding, you confirm that:

  1. You understand your data will be stored in Google Cloud Healthcare in the Mumbai Region (India).
  2. Your data will be stored in the FHIR standard.
  3. Your data will not be transferred outside India.
  4. Your privacy is protected in compliance with Indian regulations.

10. Contact Information

If you have questions or concerns about this policy or your data, please contact:
📧 Email: smartcareplus@whatsdiscuss.in
📞 Phone: +91 93103 25556

11. Updates to This Policy

We may update this policy to reflect changes in our practices, technology, or legal requirements. All updates will be posted on this page with a revised “Last Updated” date.

Last updated: 14th August 2025

← Previous page
Terms and Conditions
Next page →
Legal & Compliance Statement