Privacy Policy
Your privacy is important to us. This Privacy Policy explains how IUI Clinic collects, uses, stores, and protects your personal information when you use our fertility healthcare marketplace.
At IUI Clinic, we are committed to maintaining the confidentiality and security of your personal and medical information while providing a trusted digital healthcare experience across India.
Information We Collect
We collect different types of data depending on whether you are a patient browsing, booking an appointment, or a clinic providing service listings.
Patient Information
- Patient registration details (Full name, Gender, DOB)
- Profile information & contact credentials (Email, Phone)
- Medical logs & upload-ready reports (PDF charts, Lab tests)
- Fertility logs & reproductive history parameters
- Appointment bookings & consulting history timelines
- User-specified treatment & consultation preferences
Doctor Information
- Doctor registration profiles & identity verification logs
- Academic qualifications, university certificates, credentials
- Professional clinical experience records & medical councils
- Area of specializations & treatments offered list
- Verification documents (MCI/State Council registration PDFs)
- Availability status & custom schedule slot settings
- Consultation fee structures (In-clinic and online)
- Affiliated clinic & hospital association coordinates
Clinic Information
- Clinic registration data & commercial business logs
- Hospital details & medical infrastructure specifications
- Verification status documents (Clinical Establishment license)
- Location metadata & GPS maps location coordinates
- Public and private contact details (Email, helpline phone)
- Treatment list, IVF lab configurations, services offered
Technical Information
- IP Address, ISP parameters, and network entry logs
- Browser details & device identifier configurations
- Operating System versions & platform configurations
- Cookie tokens & functional browser session storage
- Session durations & web navigation clickstream records
- System analytics logs & platform error tracking files
How We Use Your Information
All data collected is used strictly to fulfill medical matching operations and secure patient-doctor communications.
Create and manage your account.
Connect patients with verified doctors and clinics.
Process appointment bookings.
Improve platform performance.
Send appointment confirmations and reminders.
Respond to customer support requests.
Improve our AI-powered fertility advisor.
Prevent fraud and maintain platform security.
Data Security
Our infrastructure is built with bank-grade encryption to secure health records.
Bcrypt Password Hashing
No passwords are stored in plain text; all credentials undergo cryptographically secure bcrypt hashing before database entry.
JWT Token Authentication
Secure token-based user sessions utilizing JSON Web Tokens with strict expiration timers.
PostgreSQL Database
Enterprise-grade database isolation with network access control lists and automated backups.
Prisma ORM Models
Strict schema declarations enforcing relational data integrity and preventing injection exploits.
HTTPS & TLS Encryption
All network traffic in transit is encrypted using secure Transport Layer Security (TLS 1.3) standards.
Role-Based Access (RBAC)
Granular administrative layers separating patient charts, doctor credentials, and clinic profiles.
Secure Backend APIs
Endpoints are protected behind token validation filters and query rate limits.
Administrative Permissions
Only audited, verified security officers hold permissions to view or update verification files.
Compliance Audit Logs
Persistent database logs tracking clinical record updates and sensitive configuration edits.
Security Notice
We use industry-standard security measures including HTTPS encryption, role-based access control, and continuous monitoring. Although we implement strong security measures, no online system can guarantee absolute security.
AI Healthcare Advisor
Guidelines regarding interactive query processing on the AI Fertility Advisor.
Our AI Fertility Advisor operates by querying state-of-the-art Large Language Models (LLMs) provided by Google Gemini, OpenAI GPT, and Anthropic Claude APIs.
AI Data Processing & Logs: User conversational prompts are transmitted to these third-party APIs. Prompts do not contain clinical records or identity details unless explicitly entered by the user. Chat history is stored in our database for audit, verification, and session continuity.
Human Escalation & Callbacks: If the advisor detects a request for critical medical intervention, complex diagnosis, or direct assistance, the system will append designated helpdesk channels, enable instant callback inputs, and transmit details to a clinical team member for personal follow-up.
Clinical Limit Disclaimer
All AI-generated responses are strictly informational and educational in nature. They do not constitute official clinical diagnoses or medical advice. Always consult a qualified fertility specialist for physical treatment cycles.
Location Permissions
Rules guiding coordinates collection to display localized clinical maps.
When you access our clinic directory, the platform requests optional geolocation permission.
Distance Map Search: We use your longitude and latitude coordinates exclusively to query Google Maps API, estimate distance bounds, and rank clinics or doctors closest to your current location.
Access Settings: You are not required to provide location permissions. You can configure your browser to disable GPS lookup. In such scenarios, search functions default to custom city search inputs.
Payment Gateways
Transaction security measures for online consultations booking slots.
We are integrating PCI-DSS compliant secure third-party payment gateways to handle credit card, netbanking, and UPI transfers.
Transaction Hashing: Sensitive financial credentials are encrypted in transit via SSL/TLS protocols. Raw payment numbers or CVVs are never saved on our physical databases.
Refunds & Disputes: Refund logs and claim histories are tracked using secure alphanumeric tokens linked strictly to your billing profile.
Data Retention
Rules guiding the duration of active database records.
Medical Records
10 Years
Regulatory record lifespan
Appointment History
5 Years
Audit trails archiving
AI Conversations
90 Days
Anonymized prompt logs
Support Tickets
12 Months
Grievance tracking files
Statutory Retention Requirements
Please note that clinical records and treatment receipts cannot be deleted instantly upon request due to medical compliance regulations enforced in India.
Your Rights (DPDP Act)
Control panel actions under the Digital Personal Data Protection Act, 2023.
✔ Access Data
Request a summary of your personal, medical, and registration information stored on our servers.
✔ Update Information
Request correction of inaccurate contact credentials, availability details, or certificates.
✔ Delete Account
Request absolute deletion of profile files, subject to clinical record legal retention limits.
✔ Download Data
Export your consult history logs and uploaded health files in structured formats.
✔ Withdraw Consent
Revoke authorization for cookie-tracking, location lookup, or AI assistant prompt processing.
✔ Contact Privacy Team
Direct recourse to coordinate concerns or request action logs from the designated Grievance Officer.
Third-Party Services
Platforms and services integrated to execute marketplace transactions and support chats.
Google Maps
Maps lookup & coordinates estimation
Google Analytics
Platform performance metrics tracking
AI Providers
Google Gemini, OpenAI, Claude APIs
Email Services
Transactional notification relays
Payment Gateways
Secure consulting booking transfers
Cloud Hosting
Secure servers & hosting drivers
Third-Party Privacy Policies
Each external provider maintains its own legal terms and privacy guidelines. Please review respective third-party documentation directly for details.
Policy Updates
This Privacy Policy may be updated periodically to reflect changing regulatory requirements or feature updates.
Changes become effective immediately upon publication on this page. Users are encouraged to review this page regularly to stay informed.
Contact Privacy Team
Have questions, updates, or concern claims regarding this Privacy Policy under the DPDP Act 2023? Reach out to our Grievance Officer.
Support Email
chandan@subhag.in
Phone
+91 9986490490
Coverage
Available Across India
Last Updated & Effective: July 2026
By accessing IUI Clinic, you acknowledge that you consent to the storage, processing, and transfer protocols detailed under this Privacy Policy in alignment with the DPDP Act 2023 and the Information Technology Act 2000.