Dr. Kiran Jangra

Privacy Policy

Last updated: June 2025

Your privacy and the security of your health information is our top priority. This policy explains how we collect, use, and protect your personal data in compliance with healthcare regulations.

Your Privacy Matters

Medical Confidentiality & Data Protection

Dr. Kiran Jangra operates the drkiranjangra.com website and healthcare services. We are committed to protecting your personal health information and maintaining the highest standards of medical confidentiality in accordance with applicable privacy laws and medical ethics.

Secure Storage

Your data is encrypted and securely stored with enterprise-grade security

Transparent

Clear information about data usage and your privacy rights

Your Control

You have full control over your personal health information

Information We Collect

What personal and health information we collect and how we gather it.

We collect information necessary to provide you with quality healthcare services, ensure proper medical care, and comply with healthcare regulations.

Personal Health Information (PHI)

Email address and contact information for communication
Full name, date of birth, and demographic details
Phone number for appointments and emergency contact
Address for service delivery and billing purposes
Complete medical history, symptoms, and health conditions
Health insurance information and payment details

Technical Information

IP address, browser type, and device information
Cookies and usage data for website functionality
Session information and page interaction data
Website analytics and performance metrics

Communication Records

Consultation notes and treatment discussions
Email correspondence and appointment scheduling
Phone call records for quality assurance
Forms, questionnaires, and feedback submissions

Data Storage & Security

How we securely store and protect your health information.

We implement comprehensive security measures to protect your health information from unauthorized access, use, or disclosure.

Technical Safeguards

End-to-end encryption for all data transmission
Encrypted data storage with advanced security protocols
Multi-factor authentication for system access
Regular security audits and penetration testing
Secure backup systems with disaster recovery plans

Physical Safeguards

Secure data centers with 24/7 monitoring
Restricted access to facilities and equipment
Environmental controls and fire protection
Secure disposal of physical documents and devices

Administrative Safeguards

Staff training on privacy and security policies
Role-based access controls and permissions
Regular privacy impact assessments
Incident response and breach notification procedures

Data Retention Policy

We retain your health information for the minimum period required by law and medical best practices, typically 7-10 years after your last consultation.

Information Sharing & Disclosure

When and how we share your information with third parties.

We do not sell, trade, or rent your personal health information. We only share information in specific circumstances outlined below.

Information Sharing Scenarios

Healthcare Providers

With your explicit consent, we may share information with other healthcare providers involved in your care.

Legal Requirements

We may disclose information when required by law, court order, or government requests.

Public Health

In cases of public health emergencies, we may share information with health authorities as required.

Emergency Situations

In medical emergencies, we may share information necessary to protect your health and safety.

Third-Party Service Providers

Secure hosting and cloud storage services
Payment processing and billing services
Appointment scheduling platforms
Healthcare technology and telemedicine platforms

Your Privacy Rights & Choices

Your rights regarding your personal health information and how to exercise them.

You have important rights regarding your personal health information. We are committed to helping you understand and exercise these rights.

Your Privacy Rights

Right to Access

Request access to your personal health information and receive copies of your medical records.

Right to Correct

Request corrections to inaccurate or incomplete health information in your records.

Right to Restrict

Request restrictions on how we use or disclose your health information.

Right to Delete

Request deletion of your personal information, subject to legal requirements.

Right to Portability

Request your health information in a portable format for transfer.

Right to Withdraw Consent

Withdraw your consent for certain uses of your information at any time.

How to Exercise Your Rights

1
Submit a written request via email or postal mail
2
Verify your identity for security purposes
3
Receive confirmation and timeline for your request
4
Get your requested information or confirmation of actions taken

Policy Changes & Updates

How we handle updates to this privacy policy.

We may update this privacy policy to reflect changes in our practices or legal requirements. We are committed to keeping you informed about any changes.

Update Process

1
Review and update the policy based on operational or legal changes
2
Post the updated policy on our website with the new date
3
Notify you of material changes via email or website notification
4
Provide a summary of key changes for your review

Material Changes Include

New purposes for using your health information
Sharing information with new types of third parties
Significant changes to your privacy rights
Changes to data retention periods

Key Privacy Features

Additional privacy protections we provide

Data Rights

Exercise your rights to access, correct, or delete your personal information at any time.

Legal Compliance

We comply with HIPAA, Indian Personal Data Protection laws, and international privacy standards.

Data Retention

We retain your data only as long as necessary and securely delete it when no longer needed.

Regulatory Compliance

We comply with applicable healthcare privacy laws and regulations.

HIPAA (Health Insurance Portability and Accountability Act)

US federal law protecting health information privacy and security

Personal Data Protection Act (India)

Indian data protection law governing personal data processing

Information Technology Act, 2000 (India)

Indian cybersecurity and data protection framework

Medical Council of India Guidelines

Professional medical ethics and patient confidentiality standards

Questions About Your Privacy?

If you have any questions about this privacy policy, how we handle your personal information, or want to exercise your privacy rights, please contact us.

Email Us

privacy@drkiranjangra.com

Call Us

Available during business hours

Write to Us

Privacy Officer, The Healing Monk, Gurgaon, Haryana, India