Privacy Policy

Last updated: June 1, 2025

This Privacy Policy describes how the Patient Health Education Portal (PHEP) collects, uses, and protects your personal and health information. By using our portal, you agree to the practices described in this policy.

1. Information We Collect

We collect only what is necessary to deliver safe, personalised health education:

• Personal Identifiers — Name, email address, date of birth, and contact details provided during registration.
• Health Information — Condition-related inputs you voluntarily provide, such as diagnosis type, medication history, or symptom trackers.
• Usage Data — Pages visited, articles read, time spent, and interaction patterns used to improve content relevance.
• Device & Technical Data — IP address, browser type, operating system, and device identifiers for security and compatibility.

2. How We Use Your Information

• Personalise Content — Recommend relevant health articles, videos, and resources based on your condition profile.
• Provide Patient Support — Enable care teams to review your learning progress and provide contextual guidance.
• Send Important Notifications — Appointment reminders, new educational content alerts, and portal updates.
• Improve the Portal — Analyse aggregated, de-identified usage patterns to enhance content quality and functionality.
• Ensure Security — Detect and prevent unauthorised access, fraud, and misuse of the portal.
• Comply with Legal Obligations — Meet applicable healthcare data regulations, including HIPAA and local health authority requirements.

3. Data Sharing & Disclosure

We do not sell, rent, or trade your personal or health data. Sharing is strictly limited to:

• Your Care Team — To coordinate your health education progress with treating clinicians.
• Trusted Technology Partners — For hosting, analytics, and communication infrastructure, under Data Processing Agreements.
• Regulatory & Legal Authorities — When required by law, court order, or to protect safety.
• Research Partners — Anonymised, aggregated data only, for approved health research.

4. Data Security

We employ clinical-grade security measures including:

• 256-bit Encryption — All data is encrypted in transit (TLS 1.3) and at rest (AES-256).
• HIPAA Compliance — Our systems follow HIPAA administrative, physical, and technical safeguards.
• Access Logging — Every access to patient records is logged, audited, and reviewed.
• Regular Backups — Automated, encrypted backups ensure data availability and disaster recovery.

In the event of a data breach, we will notify affected users within 72 hours of discovery in accordance with applicable law.

5. Your Rights & Choices

• Right to Access — Request a complete copy of all personal data we hold about you.
• Right to Correct — Update or correct inaccurate information in your profile at any time.
• Right to Delete — Request deletion of your account and associated data, subject to legal retention requirements.
• Right to Portability — Receive your data in a structured, machine-readable format.
• Right to Object — Opt out of non-essential data processing, including marketing communications.
• Right to Restrict — Request that we limit how we use your data while a concern is under review.

To exercise any of these rights, contact our Data Privacy Officer at info@setfacility.in. We will respond within 30 days.

6. Cookies & Tracking

• Essential Cookies — Required for portal authentication and session management. Cannot be disabled.
• Functional Cookies — Remember your language, accessibility settings, and reading preferences. Optional.
• Analytics Cookies — Anonymised usage statistics to help us improve content and navigation. Optional.

You can manage cookie preferences from your Account Settings.

7. Children's Privacy

The portal is designed for patients of all ages, including minors, under the supervision of a parent, guardian, or authorised healthcare provider. We do not knowingly collect personal data from children under 13 without verifiable parental or guardian consent. If you believe a child's information has been submitted without consent, contact us at privacy@phep.health.

8. Contact Us

• Email: info@setfacility.in
• Helpline: +91 9199015546
• Post: 2nd Floor SET Facility, Convergence Block, AIIMS, Ansari Nagar East, New Delhi, Delhi 110029

We may update this Privacy Policy periodically. Continued use of the portal after changes constitutes acceptance of the revised policy.

← Back to Portal