ShifaMate Privacy Policy

1. Introduction

ShifaMate (“we,” “our,” or “us”) respects your privacy and is committed to protecting your personal and health-related information.

This Privacy Policy explains how we collect, use, store, and safeguard your information when you use our mobile application (“App”) and related healthcare services. By using our App, you agree to the terms of this Privacy Policy.

2. Information We Collect

We collect the following types of information to provide and improve our services:

• Personal Information:
  The information we collect includes your full name, email address, and phone number. For payment processing, we accept transactions via:
  • Bank Debit/Credit Cards
  • MFS such as bKash or Nagad.

  All payments are processed securely through our authorized third-party payment partners. For your security, we do not store your complete card details or MFS PINs on our servers.

• Health Information:
  We collect information about your health, such as symptoms and medical history, that you voluntarily provide when talking to a doctor. This is essential for your diagnosis and treatment. We handle this sensitive data with the highest level of confidentiality and only collect it after you have given us your clear consent.
• Device and Usage Information:
  To improve our app's performance, security, and overall experience, we automatically collect certain technical information. This includes:
  • The type of device and operating system you use.
  • Your IP address and app version.
  • Information about how you use the app.
  • This data helps us identify issues, fix bugs, and enhance our services for you.

3. How We Use Your Information

We use your information to:

• Provide doctor consultations and other healthcare-related services.
• Process secure payments for appointments and services.
• Send important updates, appointment reminders, and notifications.
• Improve our App’s functionality and user experience.
• Comply with medical, legal, and data protection requirements.
• Maintain service records as required by the laws of the land.

4. Data Sharing and Disclosure

We do not sell, rent, or trade your personal information. Your data may only be shared in the following circumstances:

• With Doctors: To enable consultations and treatment. All medical professionals are bound by strict confidentiality and ethical obligations.
• With Payment Processors: Such as Stripe, bKash, or Nagad, for completing secure transactions.
• With Trusted Service Providers: Such as cloud hosting or analytics partners who help us operate our App. These providers are required to keep your data confidential and use it only for the intended purpose.
• When Required by Law: We may disclose information if mandated by applicable laws, regulations, or court orders.

If your data is transferred outside Bangladesh (for example, via international payment processors or cloud storage), we ensure that adequate safeguards and security standards are maintained.

5. Data Security

We use industry-standard encryption, secure servers, and restricted access controls to protect your personal and health data from unauthorized access, alteration, or disclosure.

While we take every reasonable measure to protect your information, users are responsible for maintaining the confidentiality of their login credentials and ensuring secure use of their devices.

6. Data Retention

We retain your information only for as long as necessary to:

• Provide the services you request.
• Comply with legal and regulatory obligations.
• Resolve disputes and enforce our agreements.

Once data is no longer required, it will be securely deleted or anonymized.

7. Your Rights

• Access and review your personal or health information.
• Request correction, update, or deletion of your data.
• Withdraw your consent for data processing at any time.
• Request a copy of your personal data, where technically possible.

You can request deletion of your account or data anytime using our Delete Account page or Delete Data page. To exercise any of these rights, please contact us at [email protected]. We will respond within 10 working days.

8. Children’s Privacy

Our services are not intended for children under the age of 13 without verified parental or guardian consent. If we discover that we have collected data from a child without such consent, we will promptly delete the information.

9. Updates to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. Any updates will be posted within the App and on our website, with the “Effective Date” revised accordingly.