Privacy Policy

Last updated: 21 June, 2023

This Privacy Policy explains how [LEGAL COMPANY NAME] (“GlobalMedBooking,” “we,” “us,” or “our”) collects, uses, stores, shares, and protects personal data when you visit https://globalmedbooking.com (the “Website”), create an account, search for doctors or healthcare facilities, book or request services, subscribe to updates, or otherwise interact with our services.

1. Who we are

Data Controller
Email: [email protected]
Support: [email protected]

If we have appointed a Data Protection Officer (“DPO”), you can contact them at: [email protected].

2. Scope of this Privacy Policy

This Privacy Policy applies to personal data collected through:

  • our Website;
  • account registration and login;
  • doctor, healthcare facility, and service search features;
  • appointment booking, service ordering, and related communications;
  • newsletter subscriptions;
  • customer support communications;
  • cookies and similar technologies.

This Privacy Policy does not apply to third-party websites, platforms, payment providers, or healthcare providers that have their own privacy notices. When you interact directly with a doctor, clinic, hospital, or other third party, their privacy policy may also apply.

3. Personal data we collect

Depending on how you use the Website, we may collect the following categories of personal data:

A. Information you provide directly

  • full name;
  • email address;
  • phone number;
  • password or login credentials;
  • country, city, preferred language;
  • account profile details;
  • appointment, booking, and service request details;
  • messages you send through forms, chat, or support channels;
  • newsletter subscription preferences;
  • any documents or information you voluntarily submit.

B. Healthcare-related information

If you submit information relating to health, symptoms, treatment preferences, medical needs, appointment reasons, insurance details, or similar data, this may be treated as special category personal data under applicable law.

We only process such data where we have a valid legal basis and, where required, your explicit consent or another lawful exception under applicable law.

C. Information collected automatically

When you use the Website, we may automatically collect:

  • IP address;
  • browser type and version;
  • device type, operating system, and identifiers;
  • date/time of access;
  • pages viewed and actions taken on the Website;
  • referral URLs;
  • cookie identifiers and similar online identifiers;
  • diagnostic, security, and analytics information.

D. Information from third parties

We may receive information from:

  • healthcare providers or facilities listed on the platform;
  • identity, authentication, or social login providers;
  • payment processors;
  • analytics, hosting, security, and communication vendors;
  • marketing or CRM tools;
  • publicly available sources, where lawful.

4. Why we process your data

We use personal data for the following purposes:

  • to create and manage user accounts;
  • to authenticate users and provide login functionality;
  • to enable users to search for doctors, healthcare facilities, and services;
  • to process appointment bookings, inquiries, and service requests;
  • to communicate with users about bookings, requests, support matters, or account activity;
  • to provide customer service;
  • to operate, maintain, secure, and improve the Website;
  • to personalize content and user experience;
  • to send newsletters or marketing communications where permitted by law;
  • to comply with legal, regulatory, and contractual obligations;
  • to establish, exercise, or defend legal claims;
  • to prevent fraud, abuse, unauthorized access, and other security incidents.

5. Legal bases for processing

Where the GDPR or similar laws apply, we rely on one or more of the following legal bases:

  • Performance of a contract: to provide the services you request, including account creation, login, bookings, and communications related to those services.
  • Legitimate interests: to maintain and improve the Website, secure our systems, prevent fraud, provide support, and manage our business, except where overridden by your rights.
  • Consent: where required, including for certain cookies, direct marketing, or processing certain health-related or sensitive data.
  • Legal obligation: where we must process data to comply with applicable law, regulation, court order, or lawful request.
  • Establishment, exercise, or defense of legal claims.
  • Explicit consent and/or another permitted exception for special category data, where required by law.

6. Cookies and similar technologies

We use cookies and similar technologies to:

  • make the Website function properly;
  • remember preferences;
  • improve performance and security;

We distinguish between:

  • Strictly necessary cookies, which are required for the Website to function;
  • Analytics cookies, which help us understand usage;
  • Functional cookies, which remember settings and preferences;
  • Advertising/targeting cookies, if applicable.

Where required by law, we will ask for your consent before placing non-essential cookies on your device. You can manage your preferences through our cookie banner/settings and through your browser settings.

7. Newsletter and marketing communications

If you subscribe to our newsletter or consent to receive marketing, we may send you updates, offers, service news, or platform-related communications.

You can unsubscribe at any time by:

We will not send marketing communications where prohibited by law without the required consent.

8. Sharing of personal data

We may share personal data with:

  • healthcare providers, clinics, hospitals, laboratories, or other facilities involved in the services you request;
  • payment processors and financial service providers;
  • cloud hosting and infrastructure providers;
  • analytics providers;
  • CRM, communications, and support vendors;
  • email delivery providers;
  • identity verification or authentication service providers;
  • legal, compliance, audit, and professional advisors;
  • courts, regulators, law enforcement, or competent authorities when required;
  • acquirers, investors, or successor entities in connection with a merger, sale, restructuring, or acquisition.

We do not sell personal data in exchange for money. If local law defines certain targeted advertising or data sharing as a “sale” or “sharing,” applicable rights may still apply.

9. International data transfers

Your personal data may be processed in countries outside your country of residence, including outside the European Economic Area.

Where required by law, we will implement appropriate safeguards for international data transfers, such as:

  • adequacy decisions;
  • Standard Contractual Clauses;
  • other lawful transfer mechanisms recognized by applicable law.

10. Data retention

We retain personal data only for as long as necessary for the purposes described in this Privacy Policy, including to:

  • provide services;
  • maintain user accounts;
  • comply with legal, tax, accounting, and regulatory obligations;
  • resolve disputes;
  • enforce agreements;
  • preserve evidence and records.

Retention periods may vary depending on the type of data and legal requirements. When personal data is no longer needed, we will delete it, anonymize it, or securely archive it where deletion is not immediately possible.

11. Your rights

Depending on your location and applicable law, you may have the right to:

  • access your personal data;
  • correct inaccurate or incomplete data;
  • request deletion of your data;
  • restrict or object to certain processing;
  • withdraw consent at any time where processing is based on consent;
  • request portability of your data;
  • object to direct marketing;
  • lodge a complaint with a supervisory authority.

To exercise your rights, contact us at [email protected]. We may need to verify your identity before responding.

12. Children’s privacy

Our Website is not intended for children under the age of [13/16/18 — choose based on your model and jurisdiction] without the involvement of a parent, guardian, or authorized representative.

If we learn that we have collected personal data from a child in violation of applicable law, we will take reasonable steps to delete it.

13. Security

We use appropriate technical and organizational measures designed to protect personal data against unauthorized access, loss, misuse, alteration, or disclosure. These measures may include access controls, encryption in transit where appropriate, logging, monitoring, backups, and vendor security controls.

However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

14. Third-party links and services

The Website may contain links to third-party websites, platforms, providers, and services. We are not responsible for the privacy practices of those third parties. We encourage you to review their privacy notices before providing personal data.

15. Changes to this Privacy Policy

We may update this Privacy Policy from time to time. If we make material changes, we will post the updated version on this page and update the “Last updated” date. Where required by law, we will provide additional notice or obtain consent.

If you are located in the EEA/UK and believe your data protection rights have been violated, you may also contact your local supervisory authority.

frame710_One

DocPoint

About

FAQ

Healthcare Facilities

Privacy

Blog

Doctors

Join our newsletter 🔥

icons/Arrow Right 2/Line

Copyright © 2023 DocPoint LLC. All rights reserved