Privacy Policy for Nifas Telemedicine Services

Last Updated: [2024/12/08]

This policy explains how your personal data is collected, used, and protected when you use the "Nifas" application (referred to as the "application" or "we"), in accordance with the Saudi Personal Data Protection Regulation and under the Saudi Health Information Exchange Policies.

1. Information We Collect

  • Personal Data: Names, phone numbers, and addresses.
  • Medical Information: Medical history and other health-related data.
  • Audio and Video Calls: Audio and video calls are recorded for documentation purposes, as required by Saudi regulations.

2. Purpose of Data Usage

  • Providing Medical Services: To deliver healthcare services and consultations through the app.
  • Improving User Experience: To personalize app features and enhance the app's performance.

3. Sharing Data with Third Parties

We only share your personal data with authorized parties to ensure effective and secure delivery of medical services, including:

  • Healthcare practitioners: Personal and medical data may be shared with licensed healthcare practitioners providing consultations and medical services.
  • Service Providers: Data may be shared with providers offering home healthcare services, laboratory services, and other related medical services.

Safeguards in Place

  • Confidentiality Agreements: All third-party partners are bound by strict confidentiality agreements to ensure data security.
  • Limited Use: Shared data is used only for the purposes for which it was collected, such as delivering medical care.
  • Security Measures: Data is protected from unauthorized access or unlawful use.

We do not share your data with other parties for marketing or commercial purposes without your explicit consent.

4. Data Retention Period

  • Video Calls: Retained for 24 hours only.
  • Audio Calls: Retained for 5 years, as required for medical documentation purposes.

5. User Rights

  • Right to Access: You can request access to your personal data.
  • Right to Rectification: You can request corrections to inaccurate or incomplete data.
  • Right to Deletion: You can request the deletion of your personal data from our records.

6. Security Measures

  • HTTPS (TLS/SSL) Encryption: All communications between you and our servers are encrypted to ensure data confidentiality.
  • Password Hashing: Passwords are encrypted before being stored in our database.
  • API Security: Token-based authentication and encrypted API communications.
  • Session Encryption: AES-256-CBC encryption is used to protect session data.

7. Privacy Policy Updates

We will notify you of any updates to this Privacy Policy through app notifications or other appropriate means. It is important to review the Privacy Policy regularly to stay informed of any changes.

8. Contact Us

If you have any questions, concerns, or requests regarding your privacy or personal data, please contact us via email:

info@nifas.net