Re-Hair Transplantation Privacy Policy

At Re-Hair Transplantation, we value your privacy and are committed to protecting your personal and medical information in compliance with Indian data protection laws, including the Digital Personal Data Protection Act, 2023 (DPDPA) and the IT Act, 2000. This Privacy Policy outlines how we collect, use, disclose, and protect your information when you visit our website or use our services.

1. Information We Collect

We collect various types of information when you interact with us, including:

- Personal Data: Identity Information (name, age, gender, photograph), Contact Information (phone number, email address, postal address), Medical Information (hair transplant history, photos, medical conditions, allergies), and Financial Information (payment details processed via third-party payment gateways).

- Technical Data: IP address, device type, browser details, and cookies.

- Sensitive Personal Data: Medical history and financial details, which we collect only with your explicit consent and use solely for providing hair transplant services.

2. Lawful Basis for Processing Data

We collect and process your data based on:

- Consent: You provide explicit consent for data collection and processing.

- Contractual Necessity: We process your data to provide our services (e.g., scheduling procedures).

- Legal Obligation: We may retain and disclose data as required by Indian laws.

3. How We Use Your Information

Your data is used for:

- Providing Services: Scheduling hair transplant appointments and consultations.

- Customer Support: Responding to inquiries and resolving issues.

- Payments: Securely processing transactions via third-party gateways.

- Marketing & Communication: Sending information and promotional offers (only if you opt in).

4. Sharing & Disclosure of Data

We do not sell or rent your data. However, we may share it under the following conditions:

- Third-Party Service Providers: We share data with trusted third parties to process payments, host and maintain our website, and conduct marketing activities (with consent).

- Legal Authorities: We may disclose your information if required by Indian law enforcement, courts, or regulatory bodies.

5. Data Security & Storage

We use industry-standard security protocols, including:

- SSL encryption for secure website transactions.

- Access control mechanisms to prevent unauthorized access.

- Regular security audits to identify vulnerabilities.

6. Your Rights Under Indian Law

As per DPDPA, 2023, you have the following rights:

- Right to Access & Correction: You can request a copy of your data and correction of inaccurate or incomplete information.

- Right to Withdraw Consent: You can withdraw consent for data processing (except where legally required).

- Right to Erasure: You may request deletion of your data unless retention is required by law.

7. Data Transfer Outside India

We do not transfer personal data outside India unless required for cloud storage or international transactions, ensuring adequate security safeguards.

8. Third-Party Links

Our website may contain links to external websites. We are not responsible for their privacy policies, and we recommend reviewing them before sharing data.

9. Changes to This Privacy Policy

We may update this policy periodically, per Indian data protection laws. Any changes will be posted on this page with an updated effective date.

By continuing to use our website and services, you acknowledge that you have read, understood, and agreed to this Privacy Policy.