Doc Prescrip

Doc Prescrip ("we," "us," or "our") is committed to protecting the privacy and security of your personal information and patient data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our medical practice management system ("Service"). This policy applies to all users of our Service, including healthcare professionals and their authorized staff. We understand the sensitive nature of medical data and are committed to maintaining the highest standards of data protection and privacy in accordance with applicable healthcare regulations and data protection laws.

Healthcare Professional Information: When you register for our Service, we collect personal identification information (name, email address, phone number), professional credentials (medical license number, degree, registration details), hospital or clinic information (name, address, contact details), authentication information (passwords, access keys), profile information and preferences. Patient Information: As part of your medical practice management, our Service processes patient demographics (name, age, gender, contact information), medical history and health records, prescription data and medication information, diagnostic information and test results, billing and payment information, appointment and follow-up data, medical certificates and related documentation. Technical Information: We automatically collect certain technical information, including device information (type, operating system, browser), usage data (features used, time spent, activity logs), IP addresses and location information, session information and authentication logs.

We use the collected information for the following purposes: Providing and maintaining the medical practice management services, Enabling prescription creation, patient record management, and billing functions, Generating medical certificates and other required documentation, Facilitating appointment scheduling and follow-up management, Ensuring data security and preventing unauthorized access, Improving our Service through usage analysis and feedback, Providing customer support and technical assistance, Complying with legal and regulatory requirements.

Local Storage: Our Service primarily uses local storage on your device to ensure data privacy and reduce external data transmission. This means that most of your patient data and practice information is stored locally on your computer or device, giving you direct control over your data. Security Measures: We implement comprehensive security measures to protect your information: Encryption of sensitive data both in transit and at rest, Secure authentication protocols and access controls, Regular security audits and vulnerability assessments, Limited access to data on a need-to-know basis, Secure backup and recovery procedures. Data Retention: We retain your information only as long as necessary to provide our services and comply with legal obligations. Since most data is stored locally, you have control over data retention periods in accordance with your professional and legal requirements.

We do not sell, trade, or otherwise transfer your personal information or patient data to third parties. We may disclose information only in the following limited circumstances: With your explicit consent, To comply with legal obligations or court orders, To protect our rights, property, or safety, or that of others, In connection with a business transfer or merger (with appropriate safeguards), To authorized service providers who assist in Service delivery (under strict confidentiality agreements).

You have the following rights regarding your information: Access: Request access to your personal information we hold, Correction: Request correction of inaccurate or incomplete information, Deletion: Request deletion of your personal information (subject to legal requirements), Portability: Request transfer of your data to another service provider, Restriction: Request restriction of processing under certain circumstances, Withdrawal of Consent: Withdraw consent for data processing where applicable.

While our Service is designed to support healthcare professionals in maintaining patient confidentiality and data security, you remain responsible for ensuring compliance with applicable healthcare regulations, including but not limited to: Health Insurance Portability and Accountability Act (HIPAA) where applicable, Local healthcare data protection regulations, Medical licensing board requirements, Patient consent requirements for data processing.

Since our Service primarily uses local storage, international data transfers are minimal. However, certain Service features may involve data processing in different jurisdictions. When such transfers occur, we ensure appropriate safeguards are in place to protect your information.

Our Service is not intended for use by children under 18 years of age. We do not knowingly collect personal information from children under 18. If we become aware that we have collected personal information from a child under 18, we will take steps to delete such information.

In the unlikely event of a data security incident that may compromise your information, we will: Investigate the incident promptly and thoroughly, Take immediate steps to contain and mitigate the breach, Notify affected users within 72 hours when feasible, Provide clear information about the nature and scope of the incident, Offer guidance on protective measures you can take, Comply with all applicable breach notification requirements.

Our Service may integrate with third-party services (such as Google authentication, PDF generation services, or communication platforms). These third-party services have their own privacy policies, and we encourage you to review them. We are not responsible for the privacy practices of these third-party services.

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by: Posting the updated policy on our Service, Sending you a notification through the Service, Providing at least 30 days' notice for material changes. Your continued use of the Service after such modifications constitutes acceptance of the updated Privacy Policy.

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us through: The application's support and feedback system, The help section within the Service, Our customer support channels. We are committed to addressing your privacy concerns and will respond to your inquiries in a timely manner.