LEGAL

Privacy Policy

Last updated: April 28, 2026  ·  Effective immediately

Summary: CHIKITSHA respects your privacy. We collect only what is necessary to provide secure video consultation services, protect it with industry-standard security, and never sell your personal data to third parties.

01 Information We Collect

We collect information you provide directly and data generated by your use of the app:

  • Identity Data: Name, date of birth, gender, profile photo.
  • Contact Data: Mobile number, email address.
  • Health Data: Medical history, symptoms, prescriptions, and information shared during video consultations.
  • Transaction Data: Payment method details (tokenised), consultation booking history, and invoices.
  • Technical Data: Device ID, IP address, app version, crash logs, and usage patterns.
  • Location Data: City or region to help match you with relevant doctors. Precise GPS is not required.

02 How We Use Your Data

Your data is used solely to deliver and improve our video consultation services:

Provide secure video consultations with verified doctors
Match you with the right specialist for your needs
Process payments and generate invoices
Send appointment reminders and follow-up notifications
Improve app performance and features
Comply with legal and regulatory obligations

03 Sharing of Information

We do not sell your personal data. We share data only in these circumstances:

  • With Doctors: Health information shared only with the verified doctor you specifically consult with on our platform.
  • With Payment Processors: Tokenised payment data with RBI-compliant payment gateways only.
  • With Service Providers: Cloud hosting, analytics, and SMS providers under strict data processing agreements.
  • Legal Requirements: If required by law, court order, or government authority.

04 Data Security

We implement multiple layers of security to protect your data:

  • 256-bit AES encryption for stored health records
  • TLS 1.3 encryption for all data in transit, including video calls
  • Two-factor authentication (2FA) for account access
  • Regular security audits and penetration testing
  • Role-based access controls within our team

05 Cookies & Tracking

We use essential cookies to keep you logged in and session-management cookies to improve performance. We also use anonymous analytics cookies to understand usage patterns. You can disable non-essential cookies via your browser settings. The app uses device identifiers for push notifications, which can be disabled in device settings.

06 Data Retention

We retain your personal data for as long as your account is active. Health records and consultation history are stored for a minimum of 7 years as required by Indian medical regulations. You may request deletion of non-medical personal data at any time. Transaction records are retained for 8 years for GST compliance.

07 Your Rights

Under applicable Indian data protection laws, you have the right to:

Access your personal data
Correct inaccurate data
Request data deletion
Withdraw consent
Data portability
Lodge a complaint

To exercise any right, email us at support@chikitsha.com. We respond within 30 days.

08 Children's Privacy

Our platform is not directed at children under 13. We do not knowingly collect personal data from children under 13 without verified parental consent. If you believe your child's data was collected without consent, contact us immediately for deletion.

09 Policy Changes

We may update this policy from time to time. Material changes will be communicated via email and an in-app notification at least 30 days before they take effect. Continued use of our services after the effective date constitutes acceptance of the updated policy.

10 Contact Us

For privacy-related queries, please contact us:

CHIKITSHA Online

support@chikitsha.com

+91 98317 30372

205, Block A, Laketown, 2nd floor, Kolkata 700 089