Privacy Policy
RIMS IND - Digital Healthcare Platform
Your privacy is our priority. This policy explains how we collect, use, and protect your personal information.
1. Introduction
RIMS IND ("we," "our," or "us") is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy describes how we collect, use, disclose, and safeguard your information when you use our digital healthcare platform and related services.
We comply with applicable data protection laws including the Information Technology Act, 2000, and the Personal Data Protection Bill of India, as well as international standards for healthcare data privacy.
2. Information We Collect
Personal Information
- Name
- Email
- Phone Number
- Date of Birth
- Gender
- Address
Medical Information
- Health Records
- Symptoms
- Medications
- Test Results
- Treatment History
Technical Information
- Usage Analytics
Payment Information
- 3rd Party Payment Method
- Transaction History
3. How We Use Your Information
We use your information for the following purposes:
Healthcare Services
- Provide medical consultations and treatments
- Maintain health records and medical history
- Schedule appointments and send reminders
- Generate medical reports and prescriptions
Platform Operations
- Account creation and management
- Payment processing and billing
- Customer support and communication
- Platform improvement and analytics
4. Information Sharing and Disclosure
We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following circumstances:
Healthcare Providers
With your consent, we share relevant medical information with your healthcare providers for treatment purposes.
Legal Requirements
When required by law, court order, or government regulations, we may disclose information to authorities.
Service Providers
Trusted third-party service providers who assist in platform operations under strict confidentiality agreements.
5. Data Security Measures
We implement comprehensive security measures to protect your personal and medical information:
End-to-End Encryption
All sensitive data is encrypted during transmission and storage
Access Controls
Role-based access with multi-factor authentication
Regular Security Audits
Periodic security assessments and vulnerability testing
Secure Servers
Data stored on secure, compliant cloud infrastructure
Staff Training
Regular privacy and security training for all employees
Incident Response
24/7 monitoring and rapid response to security incidents
6. Your Privacy Rights
You have the following rights regarding your personal data:
Right to Access
Request a copy of your personal data we hold
Right to Rectification
Correct inaccurate or incomplete personal data
Right to Erasure
Request deletion of your personal data (Right to be Forgotten)
Right to Portability
Receive your data in a structured, machine-readable format
Right to Restriction
Limit how we process your personal data
Right to Objection
Object to processing based on legitimate interests
How to Exercise Your Rights: Contact our Data Protection Officer atsupport@rimsind.com or use the privacy controls in your account dashboard.
7. Data Retention
We retain your information for as long as necessary to provide our services and comply with legal obligations:
- Medical Records
Retained for 7 years after last treatment as per medical record keeping requirements
- Account Information
Retained while your account is active and for 2 years after account closure
- Payment Records
Retained for 7 years for tax and audit purposes
- Analytics Data
Anonymized data may be retained indefinitely for research and improvement
8. Cookies and Tracking Technologies
We use cookies and similar technologies to enhance your experience on our platform:
Essential Cookies
Required for platform functionality, security, and user authentication.
Analytics Cookies
Help us understand how users interact with our platform to improve services.
Preference Cookies
Remember your settings and preferences for a personalized experience.
9. International Data Transfers
Your data is primarily stored and processed in India. In some cases, we may transfer data to other countries for cloud storage or service provision. When we do:
- We ensure adequate protection through contractual safeguards
- We comply with applicable data transfer regulations
- We maintain the same level of protection as provided in India
10. Children's Privacy
For pediatric healthcare services:
- We require parental or guardian consent for children under 18
- Parents/guardians have full access to their child's health records
- We implement additional safeguards for children's data
11. Appointment Charges Policy
To maintain platform operations and support services, we apply the following structure for appointment bookings:
Subscribed Patients
FREE
Appointment Booking
Patients with an active RIMS IND subscription can book online and offline appointments without any additional charges.
Non-Subscribed Patients
₹10
per Appointment Booking
A service charge of ₹10 will be applied per appointment booking made by non-subscribed patients. This amount covers usage of the digital infrastructure and automated booking system.
12. Enhanced Data Protection & Patient Privacy
RIMS IND is committed to maintaining the highest standards of data protection and patient confidentiality. Our platform complies with industry regulations and follows best practices for storing, processing, and sharing medical data securely.
Key Data Privacy Measures:
End-to-End Encryption
All user data, including health records, prescriptions, and messages, are encrypted during transmission and storage.
Access Control
Only authorized users (doctors, clinic staff, or the patient) can access sensitive health data.
Audit Logs
All access to patient data is logged for accountability and traceability.
Third-Party Data Sharing: We do not share or sell any personally identifiable health information to third parties without patient consent, except as required by law.
13. Patient Data Sharing Terms
At RIMS IND, we value your privacy and ensure that your medical data is shared only with your consent and strictly for healthcare purposes. By using our platform and booking appointments, you agree to the following data-sharing terms:
When Your Data is Shared:
With Doctors
Post-Appointment Booking
Once a patient books an appointment, their relevant medical history, current symptoms, and uploaded reports will be shared securely with the assigned doctor to facilitate informed medical consultation.
With Institutes
Post-Treatment
After the treatment is completed, the patient's evaluation report and e-prescription will be shared with the respective Institute (e.g., Polyclinic, Nursing Home, or Hospital) for their internal records and continuity of care.
With Diagnostic Centres
If Patient Books a Test
If a patient books a test through the platform, the e-prescription and relevant test instructions will be shared with the selected diagnostic centre to ensure accurate test preparation and execution.
Data Protection Measures:
- All shared data is encrypted and transferred over secure channels
- Access is strictly limited to authorized medical professionals and institutions involved in the patient's care
- No personal health data is shared with third parties for marketing or non-clinical purposes
14. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make changes:
- We will notify you via email or platform notification
- We will update the 'Last Updated' date at the top of this policy
- Material changes will require your explicit consent
15. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
Data Protection Officer
privacy@rimsind.com
Webel IT Park, Haldia, West Bengal
General Support
support@rimsind.com
+91-9749431711
Support Hours: Monday to Saturday, 10:00 AM – 7:00 PM (IST)
Legal Disclaimer: This Privacy Policy is governed by the laws of India. Any disputes arising from this policy shall be subject to the jurisdiction of the courts in West Bengal, India. This policy was last updated on January 10, 2025 and is effective immediately.