Privacy Policy
Last Updated: 2025
Welcome to Doctala Global, your secure gateway to advanced virtual healthcare.
This Privacy Policy explains how we collect, use, share, and protect your personal, medical, and digital information when you access our global telehealth services. By using Doctala Global’s website, mobile apps, and related digital solutions (“Platform”), you consent to the practices outlined in this policy.
1. Our Commitment to Your Privacy
As a worldwide virtual healthcare platform, we recognize our responsibility to protect your privacy across borders. Whether you're a patient, provider, or clinic, we ensure that your data is handled with transparency, integrity, and compliance with international privacy laws.
2.Who This Policy Covers
This Privacy Policy applies to:
- Individuals using our telemedicine and health services
- Licensed healthcare professionals and medical staff
- Clinics, hospitals, and institutional partners
- All visitors and users accessing the Doctala Global Platform
3. Information We Collect
To deliver safe, effective, and personalized healthcare experiences, we may collect:
a. Personal Information
- Full name, contact details, nationality, age, gender
- Identity documents (where legally required)
- Language, location preferences
b. Health & Clinical Information
- Symptoms, diagnoses, treatment history
- Prescriptions, lab results, uploaded medical files
- Consultation and care history with providers
c. Digital Usage & Device Data
- Device IDs, IP addresses, browser and session data
- Activity logs, access times, usage trends
d. Payment & Transactional Records
- Billing and payment confirmation via secure third-party processors
- Subscription history and invoice records
4. How We Use Your Information
Your data enables us to:
- Facilitate virtual consultations and health services
- Share data securely with your chosen healthcare providers
- Maintain and update your health records and prescriptions
- Send appointment reminders, follow-ups, and updates
- Improve user experience through analytics and platform optimization
- Comply with legal and regulatory health obligations
We never use your health data for targeted advertising.
5. Global Data Privacy Compliance
You agree to:
a. GDPR (Europe & EEA)
Doctala Global complies with the General Data Protection Regulation (GDPR) for users in the EU/EEA. You have the right to:
- Access, correct, or delete your data
- Object to or restrict processing
- Request data portability
- File complaints with your national data protection authority
b. HIPAA (United States)
For users in the U.S., health data is treated as Protected Health Information (PHI) and is managed under the Health Insurance Portability and Accountability Act (HIPAA). All healthcare providers using our platform adhere to HIPAA privacy standards.
c. Other Jurisdictions
Doctala Global aligns with applicable laws in:
- India (DPDP Act)
- UAE (Federal Health Data Law)
- UK (UK-GDPR and Data Protection Act)
- Additional regional frameworks where we operate.
6. Cross-Border Data Transfers
As a global platform, your data may be processed in countries outside your residence. When we transfer data across borders, we implement appropriate safeguards such as:
- Standard Contractual Clauses (SCCs)
- Binding corporate rules (BCRs)
- Government-approved data agreements
All cross-border transfers respect confidentiality, legality, and data security standards.
7. Data Security Measures
We employ advanced technologies to ensure the integrity and confidentiality of your information, including:
- End-to-end encryption (AES-256)
- SSL/TLS protocols for secure transmission
- Multi-factor authentication (MFA)
- Geo-redundant storage and disaster recovery
- Continuous monitoring, audits, and penetration testing
Our infrastructure meets or exceeds international standards like ISO 27001, SOC 2, and FHIR interoperability compliance.
8. Sharing Your Data
We do not sell your personal or medical data. Data is only shared with:
- Healthcare professionals with your authorization
- Accredited diagnostic labs, pharmacies, or care partners
- Regulatory or legal authorities (if required)
- Verified third-party service providers under strict data protection agreements
Each party is contractually obligated to protect your information.
9. Use of Cookies & Tracking Technologies
We use cookies and similar technologies to:
- Maintain secure sessions
- Optimize performance and interface experience
- Understand usage trends for improvement
You may manage cookie settings via your browser. Disabling essential cookies may limit Platform functionality.
10. Data Retention Policy
We retain your personal and health data only as long as necessary for:
- Delivering services and complying with medical laws
- Fulfilling regulatory retention requirements (typically 5–10 years)
- Supporting your right to access, recover, or delete records
You may request deletion or closure of your account, subject to legal or healthcare retention obligations.
11. Your Rights as a Data Subject
You may exercise the following rights under applicable data protection laws:
- Access your data
- Rectify errors or omissions
- Erase (delete) your records
- Restrict or object to processing
- Withdraw consent for marketing or optional services
- Export your data (data portability)
Submit requests via the Doctala Global Help Center or email us at support@doctalaglobal.com
12. Children’s Privacy
Our services are not intended for users under 18 without parental or legal guardian consent. We do not knowingly collect personal data from minors without such consent.
13. Updates to This Policy
We may update this Privacy Policy to reflect legal, technical, or service changes. We encourage you to review this page periodically. Continued use of the Platform constitutes acceptance of any updates.
15. Contact Information
For questions, feedback, or legal concerns, please contact::
Doctala Global Team
