1. Information We Collect

We collect information to deliver safe, effective, and personalized healthcare services and to ensure seamless operation of the Platform:

• Personal Identification Information: Full name, date of birth, gender, residential and mailing address, phone number, email address, emergency contact details, and national identification where applicable.
• Health Information: Comprehensive medical history, current and past diagnoses, treatment and care plans, prescriptions, allergies, laboratory and diagnostic results, imaging data, immunization records, surgical history, and clinician notes.
• Administrative Information: Health insurance provider details, membership numbers, billing and payment records, appointment and visit history, referrals, and discharge summaries.
• Technical Information: IP address, device identifiers, browser type, operating system, geolocation data (if enabled), access logs, login timestamps, and usage analytics.

2. How We Collect Information

• Direct Input: Information you or your representative provide during registration, consultations, follow-ups, or profile updates.
• Healthcare Integrations: Data from healthcare providers, specialists, laboratories, pharmacies, NHIS, and other integrated systems.
• Automated Technologies: Cookies, analytics tools, and session tracking to improve functionality, detect issues, and enhance user experience.
• Third-Party Sources: Partner facilities, insurance companies, and authorized public health authorities.

3. How We Use Your Information

Your information is used for:

• Delivering, coordinating, and managing healthcare services.
• Maintaining accurate and up-to-date medical records.
• Enabling secure communication between patients, providers, and caregivers.
• Processing billing, payments, and insurance claims.
• Generating reports for authorized health authorities and complying with public health obligations.
• Enhancing the Platform’s functionality, performance, and user experience.
• Conducting medical research and analytics using de-identified or aggregated data.
• Supporting urgent medical interventions and continuity of care.

4. Disclosure of Information

Your data is disclosed only when necessary and appropriate:

• Healthcare Professionals: Directly involved in your treatment or diagnosis.
• Insurance Providers: For claim processing and coverage verification.
• Regulatory Authorities: Where legally required for public health or compliance.
• Service Providers: Trusted vendors bound by confidentiality agreements.
• Emergency Situations: To protect your life or prevent serious harm.
• We will never sell your personal health information to third parties.

5. Data Protection and Security

We implement robust security measures:

• End-to-end encryption for stored and transmitted data.
• Role-based access controls and multi-factor authentication.
• Regular vulnerability assessments, penetration testing, and security audits.
• Secure, redundant data centres with disaster recovery capabilities.
• Continuous monitoring for unauthorized access or suspicious activity.

6. Your Rights

You have the right to:

• Access and obtain a copy of your medical records.
• Request corrections to inaccurate or incomplete information.
• Request restrictions on specific data uses or disclosures.
• Withdraw consent for certain non-essential data processing.
• File complaints with the Ghana Data Protection Commission if you believe your rights are violated.

7. Data Retention

• We retain your data only for as long as necessary to provide services, comply with legal and regulatory requirements, and resolve disputes.
• Retention periods follow Ghanaian healthcare record-keeping laws.

8. International Data Transfers

• If your data is transferred outside Ghana, we ensure it remains protected under Ghana’s Data Protection Act and relevant international safeguards, including encryption and contractual agreements.

9. Changes to This Policy

• We may update this Privacy Policy to reflect changes in laws, regulations, or our practices.
• Significant updates will be communicated through email, in-app notifications, or public announcements on our website.