Privacy Policy background
Your Data, Protected

Privacy Policy

At Aegis Vitalis, protecting your personal and health information is our highest priority. This policy explains how we collect, use, and safeguard your data.

Last Updated: January 15, 2025
Information We CollectHow We Use Your InformationInformation Sharing & DisclosureData Security & ProtectionYour Rights & ChoicesData Retention
HIPAA Compliant
Healthcare Standards
SSL Encrypted
256-bit Security
Secure Servers
Pakistan Data Centers
No Data Selling
Your Privacy First

Introduction

Aegis Vitalis ("we," "our," or "us") is committed to protecting your privacy and ensuring the security of your personal and health information. This Privacy Policy describes how we collect, use, disclose, and protect your information when you use our chronic disease monitoring and preventive healthcare services, website, mobile applications, and related services (collectively, the "Services").

By using our Services, you agree to the collection and use of information in accordance with this policy. If you do not agree with our practices, please do not use our Services.

Section 1

Information We Collect

Personal Information

When you register for our services, we collect personal information including your full name, email address, phone number, date of birth, gender, and residential address. This information is essential for creating your patient profile and providing personalized healthcare services.

Health & Medical Data

We collect health-related information such as vital signs (blood pressure, heart rate, blood glucose levels), medical history, current medications, lab results, diagnostic reports, and any health conditions you disclose. This data is crucial for monitoring your health and providing accurate medical guidance.

Device & Usage Information

We automatically collect information about your device, browser type, IP address, and how you interact with our platform. This includes pages visited, features used, and time spent on our services to improve user experience.

Payment Information

When you subscribe to our plans, we collect billing information including payment card details and billing address. All payment data is processed through secure, PCI-compliant payment processors.

Section 2

How We Use Your Information

Healthcare Services

Your health data is used to monitor vital signs, generate health reports, provide personalized recommendations, alert you to potential health risks, and facilitate consultations with our medical team.

Communication

We use your contact information to send appointment reminders, health alerts, service updates, educational content, and respond to your inquiries. You can opt out of non-essential communications at any time.

Service Improvement

Aggregated and anonymized data helps us improve our platform, develop new features, conduct research, and enhance the overall quality of our healthcare services.

Legal Compliance

We may use your information to comply with applicable laws, regulations, legal processes, or governmental requests, and to protect the rights and safety of our patients and staff.

Section 3

Information Sharing & Disclosure

Healthcare Providers

With your explicit consent, we may share your health information with referring physicians, specialists, laboratories, or other healthcare providers involved in your care to ensure coordinated treatment.

Service Providers

We work with trusted third-party service providers for payment processing, cloud storage, analytics, and communication services. These providers are contractually bound to protect your data and use it only for specified purposes.

Legal Requirements

We may disclose your information when required by law, court order, or government regulation, or when necessary to protect the health and safety of individuals or the public.

Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of the transaction. We will notify you of any such change and your choices regarding your data.

Section 4

Data Security & Protection

Encryption

All data transmitted between your device and our servers is encrypted using industry-standard TLS/SSL protocols. Sensitive health data is encrypted at rest using AES-256 encryption.

Access Controls

We implement strict access controls ensuring only authorized personnel can access patient data. All access is logged and monitored for security purposes.

Infrastructure Security

Our systems are hosted on secure, HIPAA-compliant cloud infrastructure with regular security audits, penetration testing, and vulnerability assessments.

Incident Response

We maintain a comprehensive incident response plan. In the unlikely event of a data breach, we will notify affected individuals and relevant authorities as required by law.

Section 5

Your Rights & Choices

Access & Portability

You have the right to access your personal and health data at any time through your patient portal. You can request a copy of your data in a portable format.

Correction & Update

You can update your personal information through your account settings or by contacting our support team. We encourage you to keep your information accurate and current.

Deletion

You may request deletion of your account and associated data, subject to legal retention requirements. Certain health records may need to be retained as required by medical regulations.

Consent Withdrawal

You can withdraw consent for data processing at any time, though this may affect our ability to provide certain services. Essential healthcare communications cannot be opted out of while you remain a patient.

Section 6

Data Retention

Active Accounts

We retain your data for as long as your account is active and you are using our services. Health records are maintained according to medical record retention laws in Pakistan.

After Account Closure

Upon account closure, we retain certain data as required by law (typically 7-10 years for medical records). Non-essential data is deleted within 90 days of account closure.

Anonymized Data

Anonymized and aggregated data that cannot identify you may be retained indefinitely for research and service improvement purposes.

Section 7

Cookies & Tracking Technologies

Essential Cookies

We use essential cookies to enable core functionality such as user authentication, session management, and security features. These cannot be disabled.

Analytics Cookies

We use analytics cookies to understand how visitors interact with our platform, helping us improve user experience. You can opt out of analytics tracking.

Preference Cookies

These cookies remember your preferences such as language settings and display options to provide a personalized experience.

Section 8

Children's Privacy

Age Requirements

Our services are intended for individuals 18 years and older. For patients under 18, a parent or legal guardian must create and manage the account.

Parental Consent

We require verifiable parental consent before collecting any personal or health information from minors. Parents can review, modify, or delete their child's information at any time.

Section 9

International Data Transfers

Data Location

Your data is primarily stored and processed in Pakistan. Some service providers may process data in other countries with adequate data protection standards.

Safeguards

When data is transferred internationally, we ensure appropriate safeguards are in place, including contractual protections and compliance with applicable data protection laws.

Section 10

Changes to This Policy

Policy Updates

We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or other factors. The "Last Updated" date at the top indicates when the policy was last revised.

Notification

For significant changes, we will notify you via email or through a prominent notice on our platform before the changes take effect. Continued use of our services after changes constitutes acceptance of the updated policy.

Questions About Your Privacy?

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact our Data Protection Officer.

privacy@aegisvitalis.pk
+92 42 3578 9000
Contact UsView FAQ

Related Policies & Resources

Terms of Service

Review our terms and conditions for using Aegis Vitalis services.

Read Terms

FAQ

Find answers to common questions about our services and policies.

Browse FAQ

Contact Support

Get in touch with our team for privacy-related inquiries.

Contact Us