Uno.care (“Company”, “we”, “us”, or “our”) is committed to protecting the privacy and personal data of individuals (“Users” or “you”) who use our website, applications, services, connected healthcare solutions, and related platforms (“Platform”).

This Privacy Policy describes how we collect, use, store, process, protect, share, and retain personal data of users in accordance with the Digital Personal Data Protection Act, 2023 (DPDP Act) and other applicable data-privacy laws.

By accessing or using the Platform, you acknowledge that you have read and understood this Policy and consent to the processing of your personal data as described below.

1. Definitions

For purposes of this Policy:

2. Data We Collect

We may collect and process the following categories of personal data:

A. Personal Identification Data

• Name, age, gender, date of birth
• Mobile number, email address, address, photo identity documentation
  

B. Health & Medical Data (Sensitive Personal Data)

• Medical history, consultation notes, prescriptions, diagnosis
  
• Vital measurements, reports, scanned records, doctor observations
  
• Vaccination and screening information
  Uploaded images, documents, and attachments
  

C. Device, Technical & Usage Data

• IP address, device type, OS, browser information
• App usage statistics, logs, cookies, identifiers
  
• Location (if permitted)
  

3. Legal Basis of Processing

We process personal data based on:

• Explicit Consent
  
• Performance of contract (service delivery)
  
• Legal or regulatory requirement
  
• Legitimate interests (security, improvement, analytics)
  
• Protection of health or safety
  

4. How We Use Personal Data

We process data for the following purposes:

• To provide healthcare and wellness services
  
• To schedule and manage bookings and consultations
  
• To maintain patient health records and clinical documentation
  
• To improve services, analytics, troubleshooting, and support
  
• For communications, alerts, and updates
  
• To comply with applicable laws and respond to legal requests
  
• For platform security, fraud prevention, and operational monitoring
  

We do not sell personal data.

5. Sharing & Disclosure of Personal Data

We may share data only where necessary with:

A. Third-party service providers / processors

• Cloud & hosting partners
  
• Diagnostic and healthcare service partners
  
• CRM & communication systems
  
• Payment processors
  

B. Healthcare professionals

Authorised doctors or medical staff involved in your care.

C. Regulatory or legal authorities

Where required under law or governmental orders.

D. Corporate transfers

Merger, acquisition, restructuring — users will be notified.

All third-party processors operate under legally binding Data Processing Agreements (DPAs) ensuring confidentiality & security.

6. Cross-Border Data Transfer

Where personal data is transferred outside India, such transfer will take place only subject to:

• Adequate contractual and technical safeguards
  
• Encryption and controlled access
  
• Conformance to applicable data-protection requirements
  

Users provide explicit consent before such transfer.

7. Data Retention

We retain data only as necessary for the purpose collected:

After expiry, data is deleted or anonymized securely.

8. Data Security

We maintain technical, organizational, and administrative safeguards including:

• Encryption (Data at rest & in transit)
  
• Role-based access control (RBAC)
  
• Secure cloud infrastructure
  
• Monitoring, audit logging, and breach detection
  
• Internal security & confidentiality agreements
  

9. Data Breach Notification

In the event of a personal-data breach likely to impact users, Uno.care will notify affected individuals and the Data Protection Board of India without undue delay, along with necessary details and recommended protective actions.

10. Your Rights

Under DPDP Act, users have the following rights:

• Right to access personal data processed
  
• Right to correction, update and portability
  
• Right to withdraw consent
  
• Right to erasure
  
• Right to grievance redressal
  
• Right to be informed
  

Requests may be submitted via our contact information below.

11. Children’s Data

We do not knowingly process data of individuals under 18 without verified parental consent.

12. Cookies & Tracking

We use cookies for:

• Essential platform functionality
  
• Analytics and performance
  
• Personalization
  

Users may manage settings via browser or in-app cookie controls.

13. Grievance, Contact & Data Protection Officer

Grievance Officer / Data Protection Officer:

Name: Vardhan Srivastava

Email: support@uno.care 

Response time: within 7 working days.

14. Changes to This Privacy Policy

We reserve the right to change or update this Policy at any time. Any changes to this Policy will be posted on this website and in the Uno.care application, and updated links will indicate that the Policy has been modified. We encourage you to periodically review this Policy for any updates.

For new users, such changes or updates will be effective immediately upon posting.

For existing users, changes or updates will become effective 10 days after posting.

15. Withdrawal of Consent & Account Deletion

Users may withdraw consent or request account closure by contacting support. Upon verification, data will be deleted except where retention is required by law.

Acceptance

By using the Platform and providing personal data, you acknowledge that you have read and understood this Privacy Policy and consent to processing as described here.