[email protected] +91 8396 919191 Jaipur, Rajasthan
Book Appointment

Privacy Policy

Your privacy matters to us. This policy explains what information we collect, how we use it, and how we protect it when you interact with Prakash Nethralaya & Panchakarma Kendra — online or in person.

Last Updated: 05 June 2026  |  Applicable To: Website, App & All Patient Data  |  Queries: [email protected]

Section 1

Who We Are

Prakash Nethralaya & Panchakarma Kendra ("the Hospital", "we", "us", or "our") is an Ayurvedic hospital based in Jaipur, Rajasthan, India, specialising in eye diseases and chronic conditions through classical Ayurvedic treatment. We are the data controller for all personal information collected through our website, in-person consultations, and digital platforms.

This Privacy Policy governs all data processing activities carried out by the Hospital in relation to patients, website visitors, and individuals who contact us through any channel.

Section 2

Data We Collect

We collect the following categories of information depending on how you interact with us:

Personal Identification Data

  • Full name, age, gender, and date of birth
  • Contact details — phone number, email address, and postal address
  • City, state, and country of residence

Medical & Health Data

  • Chief complaints, medical history, and current medications
  • Diagnostic reports, prescriptions, and treatment records
  • Photographs or videos shared for clinical assessment (e.g., eye images)
  • Prakriti (body constitution) assessment data

Technical & Usage Data

  • IP address, browser type, device type, and operating system
  • Pages visited, time spent on site, and referral source
  • Cookie identifiers and session data

Communication Data

  • Messages sent via our contact form, WhatsApp, or email
  • Feedback, testimonials, or reviews submitted voluntarily
  • Appointment booking details and preferences
Section 3

How We Collect Data

We collect your information through the following means:

  • Directly from you — when you fill a contact or appointment form, call us, walk into the Hospital, or correspond with us via email or WhatsApp.
  • During consultations — information recorded by our Vaidyas during in-person or online medical consultations.
  • Automatically — via cookies and analytics tools when you browse our website.
  • From third parties — such as referral sources, Google My Business, or social media platforms when you interact with our profiles.
Section 4

How We Use Your Data

We use the information we collect for the following purposes:

  • To provide, manage, and improve Ayurvedic medical consultations and treatment services.
  • To book, confirm, reschedule, and follow up on appointments.
  • To send health tips, treatment updates, and appointment reminders via SMS, WhatsApp, or email.
  • To conduct clinical assessments and maintain accurate patient health records.
  • To improve our website, understand user behaviour, and optimise the patient experience.
  • To respond to enquiries, complaints, or feedback submitted by you.
  • To comply with legal, regulatory, and accreditation obligations (AYUSH, NABH, etc.).
  • To conduct anonymised research and quality improvement activities.

We do not use your data for automated decision-making or profiling that produces legal or significant effects on you.

Section 5

Medical Records & Confidentiality

🔒
Patient confidentiality is a core principle of Ayurvedic medical practice. All medical information shared with our physicians is treated as strictly confidential and protected.

Medical records are accessible only to:

  • The treating Vaidya and directly involved clinical staff.
  • The patient themselves, upon formal written request.
  • Legal or regulatory authorities where disclosure is mandated by Indian law.
  • Other healthcare providers, only with the patient's explicit written consent.

Clinical notes, prescriptions, and diagnostic data are stored securely and are never shared with marketing agencies, advertisers, or third-party commercial entities.

Section 6

Data Sharing & Disclosure

We do not sell, rent, or trade your personal data. We may share data in the following limited circumstances:

  • Service providers — trusted vendors who assist in operating our website, appointment systems, or payment processing, bound by confidentiality agreements.
  • Legal compliance — when required by Indian law, court order, or government authority.
  • Medical referrals — with your explicit consent, to referred hospitals or specialists for continuity of care.
  • Accreditation bodies — anonymised or aggregated data may be shared with NABH or AYUSH for compliance audits.

Any third party with whom we share data is required to handle it in accordance with applicable data protection standards.

Section 7

Cookies & Tracking

Our website uses cookies and similar tracking technologies to enhance your browsing experience. We use the following types of cookies:

  • Essential cookies — required for the website to function correctly (session management, form submissions).
  • Analytics cookies — to understand how visitors use our site (e.g., Google Analytics). Data is anonymised and aggregated.
  • Marketing cookies — to show relevant content and retargeting ads on platforms like Google and Meta, if you have consented.

You can manage or disable cookies through your browser settings at any time. Note that disabling certain cookies may affect website functionality. We do not use cookies to collect sensitive medical information.

Section 8

Data Retention

We retain your data for as long as necessary to fulfil the purposes for which it was collected, subject to the following guidelines:

  • Patient medical records — retained for a minimum of 7 years from the last consultation date, in compliance with Indian medical record-keeping guidelines.
  • Appointment and communication data — retained for 3 years for administrative and audit purposes.
  • Website analytics data — retained for up to 26 months in anonymised form.
  • Marketing preferences — retained until you withdraw consent or unsubscribe.

Upon expiry of the retention period, data is securely deleted or anonymised.

Section 9

Data Security

We implement appropriate technical and organisational measures to protect your personal information against unauthorised access, alteration, disclosure, or destruction. These include:

  • SSL encryption on all website pages and data transmission channels.
  • Access controls ensuring only authorised personnel can access patient records.
  • Secure, password-protected systems for storing digital health records.
  • Regular review of our data security practices and staff training on data confidentiality.

While we take every reasonable precaution, no method of electronic storage or transmission is 100% secure. In the unlikely event of a data breach affecting your rights, we will notify you as required by applicable law.

Section 10

Your Rights

As a patient or website user, you have the following rights regarding your personal data:

  • Right to Access — You may request a copy of the personal data we hold about you.
  • Right to Correction — You may request correction of inaccurate or incomplete data.
  • Right to Deletion — You may request deletion of your data where there is no legal or medical obligation to retain it.
  • Right to Withdraw Consent — You may opt out of marketing communications at any time by contacting us or clicking "unsubscribe" in any email.
  • Right to Data Portability — You may request your data in a commonly used electronic format.
  • Right to Complain — You may raise a complaint with us or with the relevant Indian data protection authority.

To exercise any of these rights, please contact us at [email protected]. We will respond within 30 days.

Section 11

Children's Privacy

We provide medical care to patients of all ages, including children. When a patient is a minor (under 18 years of age), we collect and process their data only with the consent of a parent or legal guardian, who must be present during consultations and must provide consent on behalf of the child.

We do not knowingly collect personal data from minors through our website without verifiable parental consent. If you believe a child's data has been collected without appropriate consent, please contact us immediately.

Section 12

Third-Party Services

Our website and digital operations may use third-party services. Each of these operates under their own privacy policies:

  • Google Analytics — for website usage analytics. Google Privacy Policy
  • Meta (Facebook/Instagram) — for social media integration and marketing. Meta Privacy Policy
  • WhatsApp Business — for patient communication. WhatsApp Privacy Policy
  • Payment Gateways — for processing online payments securely. We do not store card or UPI details on our servers.

We encourage you to review the privacy policies of these third-party services. We are not responsible for their data practices.

Section 13

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we do, we will revise the "Last Updated" date at the top of this page.

For significant changes, we will notify active patients via email or SMS where possible. We encourage you to review this policy periodically. Continued use of our services after any update constitutes acceptance of the revised policy.

Ready to Begin Your Healing Journey?

Book a consultation — audio, video or in-clinic — from anywhere around the globe

Book Appointment Call Now
📞 Call Book Appointment