Privacy Policy

Effective Date

Kannappa Memorial Hospital (“Hospital”, “we”, “our”, or “us”) is committed to protecting the privacy, confidentiality, and security of personal information entrusted to us by patients, attendants, visitors, employees, and website users.

This Privacy Policy explains how we collect, use, process, store, disclose, and protect personal information when individuals interact with our healthcare services, hospital operations, and website.

This Privacy Policy is designed in accordance with applicable Indian laws, including:

• The Digital Personal Data Protection Act, 2023 (DPDPA)
• The Information Technology Act, 2000
• The Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011
• Applicable healthcare regulations and medical confidentiality requirements

By accessing our website, visiting our hospital, booking appointments, or availing any of our services, you acknowledge and agree to the practices described in this Privacy Policy.

1. Scope and Applicability

This Privacy Policy applies to:

• Patients receiving medical care and treatment.
• Family members, caregivers, and attendants.
• Visitors accessing our website.
• Individuals submitting enquiries, feedback, or appointment requests.
• Employees, consultants, healthcare professionals, and job applicants.
• Vendors, contractors, and service providers interacting with the hospital.

The policy applies to information collected through:

• Hospital visits and registrations
• Medical consultations
• Diagnostic and treatment services
• Online appointment systems
• Website interactions
• Email, telephone, and digital communications

2. Information We Collect

We collect only the information necessary for providing healthcare services, hospital administration, legal compliance, and operational purposes.

Personal Information

• Full name
• Date of birth
• Age
• Gender
• Residential address
• Email address
• Mobile number
• Emergency contact information

Medical and Health Information

• Medical history
• Clinical records
• Diagnosis and treatment details
• Laboratory reports
• Radiology and imaging reports
• Prescriptions
• Surgical records
• Discharge summaries
• Follow-up records
• Health insurance information

Financial Information

• Billing details
• Payment transaction information
• Insurance claims and reimbursement records
• Bank details where applicable

Employment Information

For employees and applicants:

• Educational qualifications
• Professional credentials
• Employment records
• Payroll information
• Statutory compliance records

Technical Information

When you visit our website, we may automatically collect:

• IP address
• Browser type
• Device information
• Operating system details
• Website usage statistics
• Cookies and analytics data

Sensitive Personal Data

Certain information collected by the Hospital, including medical records and health information, may constitute sensitive personal data and is processed only for legitimate healthcare, legal, and operational purposes.

3. Purpose of Data Collection

We use personal information for the following purposes:

Healthcare Delivery

• Patient registration
• Medical diagnosis
• Treatment planning
• Clinical care
• Emergency services
• Follow-up consultations
• Telemedicine services

Hospital Administration

• Appointment scheduling
• Patient communication
• Record maintenance
• Quality assurance
• Service improvement

Financial and Insurance Processing

• Billing and invoicing
• Insurance verification
• Claims processing
• Payment management

Regulatory Compliance

• Compliance with healthcare regulations
• Medical record retention
• Government reporting obligations
• Audit and legal requirements

Human Resource Management

• Recruitment and onboarding
• Payroll administration
• Employee management
• Statutory compliance

Research and Quality Improvement

Where permitted by law, anonymized or aggregated data may be used for:

• Clinical research
• Public health initiatives
• Quality improvement programs
• Healthcare analytics

4. Consent for Data Processing

By providing personal information to Kannappa Memorial Hospital, you consent to the collection, processing, storage, and use of your information for the purposes described in this Privacy Policy.

Where required by law, explicit consent will be obtained before processing sensitive personal data.

You may withdraw consent at any time, subject to legal, medical, and regulatory obligations that may require retention of certain records.

5. Information Sharing and Disclosure

We do not sell, rent, or commercially trade personal information.

Information may be shared only when necessary with:

Healthcare Providers

• Treating doctors
• Consultants
• Diagnostic laboratories
• Imaging centres
• Referral hospitals
• Other healthcare professionals involved in patient care

Service Providers

• IT service providers
• Payment processors
• Insurance administrators
• Medical software vendors

All service providers are required to maintain confidentiality and appropriate security safeguards.

Legal and Regulatory Authorities

Information may be disclosed where required by:

• Courts of law
• Government authorities
• Public health agencies
• Regulatory bodies
• Law enforcement agencies

Such disclosures will be made only as required by applicable laws.

6. Data Security

Kannappa Memorial Hospital implements reasonable security measures to protect personal information against unauthorized access, disclosure, misuse, alteration, or destruction.

These measures include:

• Secure information systems
• Access controls and user authentication
• Encryption where appropriate
• Network security protections
• Regular monitoring and audits
• Employee confidentiality obligations

While we strive to maintain high security standards, no digital system can guarantee absolute security.

7. Data Retention

Personal information is retained only for as long as necessary to:

• Provide healthcare services
• Meet legal and regulatory obligations
• Resolve disputes
• Support operational requirements

Medical records are retained in accordance with applicable healthcare regulations and professional standards.

When information is no longer required, it will be securely deleted, anonymized, or archived as permitted by law.

8. Your Rights

Subject to applicable laws, you may have the right to:

Access

Request access to personal information held by the Hospital.

Correction

Request correction of inaccurate or incomplete information.

Erasure

Request deletion of personal information where legally permissible.

Withdrawal of Consent

Withdraw consent for processing where applicable.

Grievance Redressal

Raise concerns regarding the handling of your personal information.

Requests may be subject to verification and legal limitations.

9. Cookies and Website Technologies

Our website may use cookies and similar technologies to:

• Improve website functionality
• Enhance user experience
• Analyse website performance
• Maintain website security

Users may control cookie settings through their browser preferences. Disabling cookies may affect certain website features.

10. Changes to this Privacy Policy

Kannappa Memorial Hospital reserves the right to update, revise, or modify this Privacy Policy at any time.

Any updates will be published on this page with a revised effective date. Continued use of our services or website after such changes constitutes acceptance of the updated Privacy Policy.

11. Contact Us & Grievance Redressal

For questions regarding this Privacy Policy, personal data requests, or privacy-related concerns, please contact:

Privacy & Data Protection Officer
Kannappa Memorial Hospital

Website:
https://kannappamemorialhospital.com/

Email:
support@kannappamemorialhospital.com

We will make reasonable efforts to address privacy concerns and grievances in accordance with applicable laws and regulations.