Privacy Policy

1. Introduction

iSayHealth ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your health information and personal data in compliance with the Health Insurance Portability and Accountability Act (HIPAA) and the Digital Personal Data Protection Act (DPDP) of India.

2. Information We Collect

We collect information that you provide directly to us through our discovery surveys, including:

• Personal Identifiers: Name, mobile number, and email address.
• Health Information (PHI): Symptoms, health goals, lifestyle data, and preferences for alternative medicine.
• Technical Data: IP address, browser type, and usage patterns.

3. How We Use Your Data

We use your data strictly for the following purposes:

• To provide personalized recommendations for alternative therapies.
• To improve our discovery algorithms and user experience.
• To communicate with you regarding your health journey (with your explicit consent).

4. Data Protection & Security

We implement industry-standard security measures to protect your sensitive data:

• Encryption: All data is encrypted in transit (TLS 1.2+) and at rest (AES-256).
• Access Control: Strict internal controls to ensure only authorized personnel can access anonymized health data.
• Compliance: Our systems are designed to meet HIPAA Security Rules and DPDP data residency requirements.

5. Your Rights

Under DPDP and HIPAA, you have the following rights:

• Right to Access: You can request a copy of the data we hold about you.
• Right to Correction: You can ask us to correct inaccurate information.
• Right to Erasure: You can request the deletion of your personal and health data.
• Right to Withdraw Consent: You can opt-out of data processing at any time.

6. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact our Data Protection Officer at privacy@isayhealth.com.