Privacy Policy

---

Welcome to Dr. Kaushik’s Homeopathy. We respect your privacy and secure your personal information. This Privacy Policy describes what data we gather, how we use and protect it, and your rights. We comply with India's Information Technology Act, 2000 and Digital Personal Data Protection Act, 2023, as well as U.S. laws like HIPAA and consumer privacy laws like California's CCPA, when providing services globally. Use of our Service implies acceptance of this Policy. If you disagree, do not use the Service.
Please contact our Privacy Officer at contact@drkaushikshomeopathy.com with any queries about this Policy or our data practices. We have a Grievance Officer for India as required by law; contact them at the same email. We will immediately and openly handle complaints.
We Collect Data
Our Service collects personal data from you when you join up or attend consultations. The data we collect includes:
• Personal Identifiers: Name, contact information (phone, email, postal), age, gender, and any other identity facts provided. This helps us find and contact you (for appointments, follow-ups).
• Medical and Health Information: Symptoms, past illnesses, diagnoses, prescriptions, allergies, lifestyle details, and shared medical records or lab tests. Personal health information including medical history and mental and physical health issues may be included. Only what you need for your homeopathic consultation and treatment is collected.
• Consultation Records: Includes notes, prescriptions, remedies, and communications (e.g., chat, email, recordings if consented to). These are private health records.
• Account Information: Provide login credentials (e.g., username/email, hashed password) and profile information when creating an account on our platform (returning patients must register from their second consultation onward). Our account securely stores your consultation history and health records for continuing care.
When you pay for our services, we or our third-party payment processor collects your billing information. This may include your billing name, address, and transaction information. Your CVV and credit/debit card numbers are not stored on our servers. According to industry standards, compliant third-party payment gateways (banks or processors) process card payments securely. We keep receipts and payment confirmation numbers for accounting and legal reasons.
• Website Usage Data: Cookies and various technologies collect technical data during your visit (see to Cookies and Analytics). Your IP address, browser type, device information, pages visited, and visit dates/times may be included. We use this data to evaluate traffic trends, safeguard our site, and improve user experience.
• Communication Data: We collect information from inquiries, feedback, and support requests via email, phone, contact forms, or messaging apps to react to you. Our conversations with you may be recorded for quality control and legal purposes.
• Marketing Preferences: Receive relevant notifications based on your preferences, such as subscription status and topics of interest, if you opt-in for newsletters or promotions. You can unsubscribe anytime (see Marketing Communications).
Note: We collect only the personal data needed for the mentioned purposes. Some information is optional, but not giving contact or health information may impair our ability to provide the consultation or associated services. We only collect information relevant to your treatment or our operations. We do not intentionally collect data regarding your race, ethnicity, religious or political beliefs, sexual orientation, or other non-essential information before offering our services.
We use your data
We use personal data for valid and particular purposes. Your data is processed for these main purposes:
• To offer healthcare services: We utilize personal information to arrange and conduct homeopathic consultations, evaluate medical history, customize treatment regimens, and track success. For instance, our doctors will analyze your medical history and symptoms to provide personalized advice.
• Account Management: We utilize your information to administer your user profile, appointment history, and health data. Returning users (from the second consultation onward) can read earlier consultation notes and recommendations for continuity of service.
We use your contact information (email, phone number) to connect with you regarding appointments and services. Sending appointment reminders, confirmations, follow-up instructions, and answering questions. System notifications like terms and privacy policy updates may also be sent. We use your information to offer you video call invitations or links for telehealth sessions in the form of Google Meet links or WhatsApp messages.
• Payment Processing: We collect fees for consultations or services using your payment information. We use payment credentials to bill your credit card or process UPI/online banking transactions using our secure payment gateway. We use transaction data to authenticate payments, issue receipts, and preserve financial records for accounting and tax purposes.
• For service improvement, we may analyze usage using aggregated and de-identified data. This enhances our consulting and user experience. Analyzing frequently requested queries or health problems can help us improve informational content or consultations. Website usage data from cookies/analytics helps us fix faults, optimize performance, and analyze user browsing habits.
• Marketing and Education: We send newsletters, health suggestions, and promotional offers to your email with your consent. These communications educate you (e.g., holistic health articles or new homeopathic treatments) or alert you about beneficial services. Marketing emails can be unsubscribed at any moment (see Marketing Communications). We distribute meaningful content at a reasonable frequency to subscribers and other interested parties, not spam.
• Security & Fraud Prevention: We process IP addresses, log-in information, and cookies to safeguard our platform, users, and others. We authenticate user accounts, monitor for suspicious or unauthorized activity, enforce our Terms of Service, and prevent fraud, hacking, and data breaches. Our “reasonable security practices” under India's IT Act include these actions.
• Legal Compliance: We may use and share your information to comply with laws and regulations. Healthcare regulations may require us to keep medical records for a specific time or report certain information to authorities if required by law. If you are in the US, we will use and disclose protected health information (PHI) in accordance with HIPAA for treatment, payment, and healthcare operations. The Indian DPDP Act requires us to process user data for authorized purposes with consent or other legal reasons.
We will not use your personal data for any purpose other than those listed above without your consent. This Privacy Policy will be updated and you notified if we need to use your data for a new purpose. Personal data is not sold to third parties for marketing or commercial purposes.
Cookies, Analytics
For service improvement, our website employs cookies and other tracking technologies:
• Cookies are little text files kept on your device by your web browser. We use cookies to remember your language and region selections, keep you logged in, and improve usability. So you don't have to enter your credentials on every page, a cookie may save your login session ID. Browser settings control and erase cookies. Disabling certain cookies may compromise website functionality (you may not be able to stay logged in or some services may not remember your preferences).
• Google Analytics: We utilize Google Analytics to track user engagement with our site. Google Analytics collects IP address, browser type, pages visited, and page time using cookies and other technologies. This data is sent to Google's servers (in the US or elsewhere) and aggregated to analyze website traffic and usage. Analytics help us enhance site content, navigation, and user experience. Knowing which sites are most visited or where people spend the most time helps us determine what information is most beneficial. We don't gather personally identifying information or let Google utilize our analytics data for anything other than providing the service.
• Managing Analytics Preferences: A cookies notice may appear on your first visit to our site. We will obtain your consent before utilizing analytics or advertising cookies as needed by law. Google Analytics can be disabled using Google's browser add-on or your browser's Do Not Track settings (our website respects Global Privacy Control signals as required by some legislation). Analytics cookies improve our service, but you can choose to allow them.
Other than Google Analytics, this site does not employ third-party advertising networks or behavioral monitoring cookies. We will update our cookie policy and collect consents if this changes. For more information about our cookie use or to adjust your preferences, see our [Cookie Policy] or contact us.
Partner Services and Data Sharing
We employ a few trustworthy third-party services for our platform and consultations. Third parties receive personal data exclusively for the purposes listed below and in compliance with this Policy. We ensure third parties protect your data through contractual agreements and adhere with privacy rules when we exchange data. Our main third-party services are:
• Payment Processors: We use safe third-party gateways like banks, PayPal, Stripe, Razorpay, etc. for processing payments, depending on your area. These payment processors manage your credit card and UPI information for us. Your payment details are usually sent directly to the processor via integrated forms; we receive a confirmation of payment but not your card data. PCI-DSS-compliant processors are secure. We just share your name, order amount, and possibly email or phone number for receipt with them to charge your account. Your sensitive card information is only stored and referenced as the last few numbers or expiry. Payment processors may have privacy rules that govern payment data handling.
• We do online video/audio consultations via third-party platforms. We may utilize Google Meet for video calls and WhatsApp for voice and video messaging. We will send a calendar invite or meeting link to your email address for Google Meet telemedicine sessions. Google Meet may be configured to encrypt video calls in transit and comply with HIPAA. Standard Google Meet and other free video chat solutions may not have all the HIPAA-compliant precautions, such as signed Business Associate Agreements. We ensure no recordings are taken without your consent and recommend a private call to maintain confidentiality. Google will process your video/audio data and chat messages during a Google Meet session with us according to Google's terms.
• We may use WhatsApp for consultations or follow-ups, if preferred. WhatsApp is end-to-end encrypted, so calls and chats are secure between our devices. This ensures content privacy, but WhatsApp is not HIPAA-compliant for U.S. healthcare use (it lacks audit logs and cannot sign a HIPAA Business Associate Agreement). We utilize WhatsApp mostly with customer consent and for convenience (for quick follow-up queries or if technical issues require a WhatsApp video consultation). By using WhatsApp to contact us, you agree that WhatsApp/Facebook will process your data (including your phone number and health information) under their privacy policy. We advise against providing unnecessary health information on WhatsApp. Shared information will be treated as confidential as platform-provided information.
• Analytics Providers: Google Analytics is used to assess site activity, as mentioned in the Cookies and Analytics section. In this case, Google processes usage data on our behalf and is contractually barred from utilizing it for other reasons (save as allowed in their analytics service conditions). Google Analytics anonymizes IP addresses when applicable. We do not give Google personally identifying information through analytics. Google may indirectly gather device identifiers or infer location from your IP. As mentioned, you can opt out of analytics. Data management is addressed by Google's Privacy Policy.
• Email & Communication Tools: We may utilize third-party email providers (e.g., Mailchimp, SendGrid) for newsletters, appointment reminders, and bulk messages. These providers just receive your email address, name, and message content to deliver emails for us. They cannot use your email else. We always identify as the sender of our communications and provide unsubscribe.
• Cloud Storage and Hosting: Our website and database may be hosted on third-party servers like Amazon Web Services or Microsoft Azure. Your personal data may be stored on cloud provider servers. We use reliable vendors with strong security and data protection standards. Our agreements with them restrict their use of your data to storing or processing it for us in strict confidence.
• Medical Service Partners: We may refer or coordinate with external labs, pharmacies, or healthcare professionals for lab tests or remedy delivery during your treatment. We would only share your name and test for a lab form or your address for a medication delivery with such partners. Disclosures will be made with your approval or as part of the service you requested. All partner organizations must protect and use your data as intended.
We don't sell your data. We don't give advertisers or social media firms your data. Service providers or partners with whom we share data must use it only to offer services to us and you under stringent privacy and security standards.
In addition, we may release personal information to other parties if required by law or legal action. We may share data to comply with a court order, subpoena, or regulation. We may also disclose information to defend our rights, your safety, or others', or to investigate fraud. In India, you can give sensitive personal data to government authorities for authorized purposes on written request or to others under secrecy with your approval. We will share PHI without your authorization only for HIPAA-authorized purposes, such as public health reporting or if required by law, and we will limit the data to the minimum necessary.
Third-Party Privacy Practices: If you utilize third-party services like Google Meet or WhatsApp through our Service, their privacy rules and terms will apply. Check those providers' privacy policies. We do not control third-party websites or services, but we chose reputable partners with high privacy standards. Contact us with any inquiries about our platform's third-party integration.
Data Security and Storage
Your personal and medical information is sensitive, therefore we take precautions to protect it. We protect your data with industry-standard measures:
• Secure Hosting: We save your data on secure servers. We utilize HTTPS/TLS to encrypt personal information on our website and during teleconsultations to prevent eavesdropping. Our online pages, especially those collecting health or payment data, use HTTPS, as seen by the padlock in your browser address bar.
We encrypt sensitive personal data, such as health records and passwords, at rest in our databases wherever possible. Passwords are hashed for security. Only authorized persons can access the database and servers (for example, only our doctors and technical staff can access health records using authenticated accounts). To ensure personnel and doctors only access information they need, we use access controls and authentication.
• Administrative Safeguards: Our personnel is trained on good privacy and security standards. Our internal policies prohibit illegal client data access and sharing. All practitioners and employees with access to personal data must maintain confidentiality. We continuously examine our data handling methods to ensure compliance with legislation including the DPDP Act's security measures and “privacy by design” and HIPAA's administrative safeguards for PHI.
We monitor and test our systems for vulnerabilities and assaults. We update our website with security patches. Firewalls, intrusion detection systems, and anti-malware technologies can prevent illegal access. We periodically test our applications and backend for security vulnerabilities and fix them.
• Secure Third-Party Practices: We select providers with strong security standards, such as ISO 27001 or SOC 2 compliance, and PCI-DSS for payment providers. We require these services to protect your data with adequate security measures under contracts.
• Data Minimization: Collect just necessary data. Minimizing storage reduces danger. Outdated logs or unnecessary data are safely deleted or anonymized.
• Physical Security: We secure physical storage and access of personal data, such as paper medical records or local servers in offices. Server room monitoring, lockable cabinets, and office access badges are examples.
We take these steps to protect your data, but no system is 100% secure. Despite our best efforts, breaches and unauthorized access are possible. However, we upgrade our protections to match new security threats and technology. If a data breach affects your personal information, we will notify you and the authorities as required by law. DPDP Act requires us to notify the Data Protection Board of India, and HIPAA requires us to notify affected persons and U.S. regulators of severe PHI breaches.
Please help safeguard your account. Use a strong, unique Service password and never disclose it. Beware of phishing emails—we will never request your password. Please notify us promptly of any account security issues or unauthorized access.
Keeping Data
We only keep your personal data as long as needed to fulfill the objectives for which it was obtained or as required by law. Medical records may be needed for treatment and legal compliance because we provide healthcare. In summary, our retention practices are:
• Patient Medical Records: We retain consultation records and medical information indefinitely (or until requested deletion) for continuing or future care. If you return after a long time, we can use your past history to treat you better. We will not keep your identifiable health data longer if you stop using our services. Some jurisdictions require us to maintain health records for a minimal duration, while others encourage retaining them for several years. We evaluate the statute of limitations for prospective legal claims (e.g. malpractice) when setting retention periods. If the retention period ends or we no longer need the data, we will securely delete or anonymize it.
• Account Data: Profile info and login credentials are stored while your account is active. If you close your account, we'll destroy or anonymize personal data. Medical record data may be archived for the reasons mentioned. We may contact you to confirm if you want to keep an inactive account, or we may delete it.
• Contact and Communication Data: Emails, chat logs, and communications are stored for the duration necessary to resolve inquiries or deliver services, and for future follow-up or record keeping. We may delete regular customer service emails unless they contain important information for ongoing services or legal purposes.
• Compliance with accounting, taxation, and financial requirements requires retention of payment and transaction records. We usually preserve billing records for 7 years (or as needed by law). We do not save sensitive payment information after the transaction; the payment processor does.
Data collected through Google Analytics and cookies is stored according to Google's retention settings, which we have configured to an appropriate period. For example, user-level data is retained for 14 months before being automatically deleted or anonymized by Google. We only see aggregate analytics, not personal data. We may preserve aggregated reports forever for historical reference, but they do not identify individuals.
In cases of legal disputes or investigations, we may need to keep pertinent information beyond our regular retention period until the situation is resolved. We will comply with legal orders to safeguard data.
Please note that you have the right to request deletion of your personal data (see to Your Rights below). We will delete your personal data upon request if we have no legal cause to maintain it. Please note that we may temporarily store certain data in backups until they cycle out, but we will not utilize it after we erase it.
No longer than required is our retention strategy. We regularly evaluate and delete or anonymize unnecessary data. For instance, the Indian Digital Personal Data Protection Act requires us to delete personal data after its intended use and unless mandated by law. If we don't need or need to maintain personal data, we delete it. We also avoid using retained data for incompatible reasons.
Rights and Options
We believe you should control your personal data. You have several rights about our data, subject to applicable legislation. To the degree possible, we honor requests regardless of origin, however these rights may vary by jurisdiction (Indian law, U.S. state laws, and EU/GDPR). Important rights:
• Right to Access: Request a copy of your personal data we hold about you. This includes account and consultation data. Our patients can request a summary or copy of their medical data and personal information. We must give you access to your records upon request under HIPAA for U.S. patients and DPDP Act for Indian patients. Unless you indicate differently, we will provide the information electronically.
• Right to Correction/Rectification: Request correction of faulty or outdated information. You can update your contact number or correct your medical history. We invite you to update your information, and we will swiftly make the requested changes (with proof). The DPDP Act of India allows data principals to repair or update erroneous data. HIPAA also allows patients to request an amendment of their health records to fix errors (but a practitioner may add a note of correction instead).
• Right to Deletion: Request deletion of your personal data. Request that we delete your data if you no longer want us to. We shall comply with such demands as required by law. The Indian DPDP Act allows you to seek data erasure and requires us to remove data that is no longer needed or if you withdraw consent. California's CCPA (as amended by CPRA) allows users to request personal data deletion. We will remove or anonymize your data from our active systems and notify you after a deletion request. Even if you ask us to delete other data, we may retain a minimal record that you received medical services from us (without sensitive details) for legal compliance or billing records as required by law.
• Right to Withdraw Consent: You can withdraw consent for processing data, such as sending marketing emails or using health data beyond treatment needs, at any time. You can withdraw consent to marketing or revoke consent for us to use your testimonial on our site. We shall halt processing after withdrawing consent, but it will not affect the lawfulness of processing we did before. Please note that we may not be able to continue providing care if you withdraw consent for us to process your health data, such as your medical history. We will tell you of any such ramifications at the time of your request so you may decide.
• Right to Object or Restrict Processing: Certain privacy rules, such as GDPR in the EU or U.S. state legislation, allow individuals to object or restrict data processing. You could ask us to stop profiling or analyzing your data. Our operations are mostly based on consent and necessary service supply, however if you object to any processing activity, we will consider it. Valid requests to restrict processing (e.g., if you dispute data accuracy) will be honored.
• Right to Data Portability: In certain jurisdictions, such as the EU GDPR and some Indian DPDP legislation, you may have the right to receive your personal data in a portable format for transfer to another provider. You could request a digital copy of your medical records. If requested, we would provide your data in a sensible format like PDF or CSV.
• Specific U.S. Laws: Residents of specific states have additional rights:
California individuals have the right to obtain information about the personal information collected, its sources, purposes, and third parties with whom it is shared (CCPA/CPRA). You also have the right to request specific information we have collected about you, request deletion of your personal information, correct inaccurate information, and opt out of the “sale” or “sharing” of personal information. You can also restrict the use of sensitive personal information (we only use sensitive health information for services, not advertising). California law guarantees equal service and pricing if you exercise your privacy rights. We will not deny you service or deliver a lower experience.
In other states, such as Virginia (VCDPA) and Colorado, you may have comparable rights to access, rectify, remove, or opt-out of specific processing, such as targeted advertising. We will honor genuine state requests as required.
If we are a covered health care provider under HIPAA, you have specific rights regarding your health information. These include the right to access and obtain a copy of your health records, request amendments to correct errors, request an accounting of disclosures, and request confidential communication. HIPAA allows you to complain to us or the U.S. If you think your HIPAA privacy rights were violated, contact HHS. We give U.S. patients a separate Notice of Privacy Practices that explains our HIPAA practices.
If you believe your privacy rights have been violated, you can lodge a complaint with the relevant supervisory authority. Once operational, the Data Protection Board of India or other appellate authorities in India can address your concerns, while the Department of Health and Human Services in the US can handle HIPAA issues or state attorneys general for consumer privacy issues. We recommend contacting us first so we can address your issues. Fair and open problem-solving is our goal.
Exercise Your Rights: Email contact@drkaushikshomeopathy.com to request your rights. To protect your privacy, we may need to verify your identity before executing the request. We may verify your existing information. We shall respond to requests to access or delete data within the timeframe required by law (CCPA requires acknowledgment within 10 days and response within 45 days for California residents, and DPDP Act in India mandates fast compliance). We try to respond faster. Requests are normally free, but if they are excessive or unwarranted, we may impose a modest price or deny them (we will explain why).
We'll try to accommodate you. If we cannot execute a request due to legal or other reasons, we will explain. If you request deletion of data we are compelled by law to maintain, we will notify you and restrict its usage. We may cooperate with you to narrow a broad data export, especially if it contains references to others (to safeguard their privacy).
No discrimination: We will not refuse you services, charge you differently, or lower the quality of service because you exercised your privacy rights. We value your trust and respect your privacy choices. Service may be affected only if the request precludes us from providing it (for example, if you withdraw consent for us to use your medical data, we may not be able to continue a doctor-patient relationship). But we'll disclose the consequences ahead, so you decide.
Marketing Communications
Only if you have opted in or are a current user where such communications are permitted by law will we send you marketing or promotional emails as part of our service. Such communications may include:
• Receive newsletters about health, wellness, homeopathic treatments, and clinic updates.
• Promotions, such as discounts on follow-up sessions or invitations to wellness webinars.
• Information about new services, features, and events relevant to homeopathic and holistic health enthusiasts.
Consent for Marketing: We will either ask for your explicit consent to receive marketing emails (by ticking a checkbox or signing up via a form) or rely on the applicable “soft opt-in” provisions if you are an existing customer. We shall comply with anti-spam regulations (CAN-SPAM in the U.S. and analogous standards overseas). Every marketing email will identify its sender and offer an easy unsubscribe.
You can opt out of marketing or promotional communications at any time. Some ways to opt out:
• Click the “Unsubscribe” option at the bottom of any marketing emails or newsletters. Unsubscribe from the mailing list (wait a few days).
• To opt out of marketing, contact us at [support email]. You will be manually removed from future mailings.
If our website allows user profile editing, you can adjust account settings to remove marketing preferences.
You might still receive service-related emails after opting out of marketing emails. Appointment confirmations, reminders, password reset emails, and practitioner responses will still be delivered. These are services, not marketing.
Third parties cannot use your contact information for marketing. In the event of a collaborative marketing event, such as a webinar with a partner, we would invite you and not share your information without your approval. We and our authorized communication service providers keep your email and phone number private.
Telehealth consent, communication
We want to be clear about how we protect your privacy in video or SMS telemedicine consultations and what you consent to:
You consent to telehealth services by scheduling or attending a remote consultation (video or voice call) with us. This signifies you consent to online or phone consultation and treatment. We'll let you know our telehealth platform (Google Meet or WhatsApp) in advance. To avoid eavesdropping, we conduct these sessions in a private environment and ask you to be in a quiet, private space. Like medical consultations, our telemedicine sessions are confidential.
For your safety, we chose systems like Google Meet, which encrypts calls in transit, and WhatsApp, which encrypts end-to-end. All internet services carry some risk, such as technical breaches or illegal device access. By using teleconsultation, you accept these minor risks. Without your consent, we will not record the session. If we need to record for quality review or to copy the session, we will ask you to sign a second consent form. Records aren't saved without that.
Consent to Electronic Communication: After live consultations, you may receive follow-up emails, SMS, or WhatsApp messages. By giving us your email and phone number and connecting with us on WhatsApp, you consent to receiving communications. We will mostly use these channels for service-related needs, such as giving you a PDF of your prescription or a quick WhatsApp check-in. You can always instruct us not to contact you through a given route. If you don't want us to use WhatsApp, let us know and we'll use phone or email. We attempt to interact in your preferred style while safeguarding your privacy.
Alternatives: We understand some people may not like third-party programs. You can avoid a platform. If you don't want to utilize Google Meet or WhatsApp, ask us about phone calls or other video services. Our top goal is your comfort and wellness.
You agree to consent to telehealth and electronic communications by using our Service and can withdraw it at any time. If you withdraw consent to telemedicine, we will try to schedule an in-person appointment (depending on your location and our operations). If you opt out of internet communication, we'll use phone or letter.
International Data Transfers
Your personal information may be transferred to and kept in other countries because we are a worldwide service. India is our main location, but we may process data in the US. Your data will likely be transmitted to our servers in India where our staff and practitioners process it if you are not in India. Cloud hosting and email providers may have servers in the US or other countries. This means personal data may transcend borders.
distinct countries have distinct data protection rules. Some may be less severe than your home country's. We promise to protect your data as outlined in this Privacy Policy wherever it is handled. We will transfer your personal data internationally under EU Standard Contractual Clauses or to countries deemed “adequate” by regulators if you live in the EU or UK, which have comprehensive data protection laws (GDPR). While this policy focuses on India and the US, we consider other jurisdictions' needs.
India: The Digital Personal Data Protection Act, 2023 allows personal data to be transferred beyond India with government notifications. We shall ensure that overseas recipients of Indian residents' data provide equal data protection. For instance, our U.S. cloud provider must protect data by contract. We will follow any DPDP Act transfer conditions or whitelisted country rules from the Indian government.
United States: Data sent from outside the US may be subject to U.S. legislation (such CLOUD Act legal orders). We follow sectoral data protection rules like HIPAA in the US, but not GDPR. Since the EU doesn't trust US laws, we use protections while handling EU citizens' data. We protect against government access with contractual terms and encryption.
Other Regions: We will secure your data in accordance with this Policy for users in the EU, UK, and Asia/Africa. Local law may mandate GDPR rights or data localization, which we will handle individually. Our dispersed service infrastructure ensures efficiency and reliability, therefore we do not require data localization. We shall comply with any future laws requiring local storage (e.g., Indian data must stay in India) and change our processes.
When we move your data internationally, we use precautions like:
• Ensures data security throughout transfer through encryption.
• Trained personnel and partners on cross-border data handling and limited access to data depending on necessity.
• Agreements with data receivers to protect your information throughout processing. If we share data to a foreign business partner (such as a specialist doctor consulting on a case), that partner must keep the information confidential and use it exclusively to benefit your case.
• Compliance with EU personal data frameworks, such as Standard Contractual Clauses, or other mechanisms under the DPDP Act or other regulations.
By using our Service, you consent to international data transfer for service provision. We take this obligation seriously and aim to keep your data safe wherever it goes.
If you have questions concerning foreign data transfers or want more specifics about a specific transfer's safeguards (e.g., EU users requesting to see our SCCs), please contact us.
Child Privacy
Without parental approval, we do not serve children under 18. We offer healthcare services for children, such as homeopathic guidance for a minor child's illness, but a parent or legal guardian must register and consult on their behalf. Please get parental permission before registering or sending us sensitive information if you're under 18.
Without consent, we do not collect personal data from minors under 18. In India, anybody under 18 is a “child” for data protection, and processing their personal data requires parental consent. COPPA (Children's Online Privacy Protection Act) protects children under 13 (and 18 in health privacy circumstances) in the U.S. We follow these rules. Please notify us immediately if your child has provided us with personal information without your consent. Unless you consent to data retention for care, we will delete the information and terminate the child's account.
We prefer a parent or guardian to care for and provide data for legally minor adolescent users (13-17). In some areas, minors can consent to certain medical services without parental involvement. We will manage their data with the highest confidentiality in accordance with laws and ethical norms. Consider consulting a parent/guardian if you're unsure.
We do not market to kids. Educational information for children should be seen with adult supervision. In the future, we may offer a health education app for teens, in which case we will give further privacy notifications.
Privacy Policy updates
This Privacy Policy may be updated to reflect changes in our policies, technologies, regulatory requirements, or other operational reasons. This page will have a new “Last Updated” date when we make modifications to the Policy. We may email or post a notice on our website/app if the changes are noteworthy. New data processing aims, data sharing methods, or legal upgrades (such as user rights or government requirements) are significant changes.
Please revisit our Privacy Policy periodically to learn how we secure your information. After any Policy modification, your continuing use of our Services will indicate your acceptance of the changes and commitment to be bound by the revised Policy (subject to consent requirements). If you disagree with the changes, stop using the Service or contact us.
We will archive previous versions of this Policy (and offer them upon request) so you can observe how our privacy practices have changed.
Contact Us
Your privacy matters to us. Contact us with any questions, concerns, or requests about this Privacy Policy or your personal data. We'll assist.
Contact Info:
• Email: contact@drkaushikshomeopathy.com
The postal address is Dr. Kaushik’s Homeopathy, chamber 3, kamadgiri tower, Anand Vihar, Kaushambi, Ghaziabad, Uttar Pradesh 201010.
In accordance with the IT Act and DPDP Act, we have hired a Grievance Officer to resolve Indian user issues. Ms. Nandini Parashar. contact@drkaushikshomeopathy.com. Office address in India. You can complain or exercise your data rights to the Grievance Officer. We shall respond to Indian complaints within 24 hours and address them within 15 days per standards.
Data Protection Officer (if applicable): If GDPR or DPDP Act designates us a Significant Data Fiduciary, our DPO is [DPO Contact, if any]. You can contact them about privacy issues.
We will try to answer all legitimate questions swiftly. Please include your account email or phone number in your contact information so we can identify you and help you.
We protect your data and disclose its use to maintain confidence. We prioritize your privacy and well-being.
The Privacy Policy is in English. If there are contradictions in our translations, the English version will prevail.