Abha Surgy Healthcare Private Limited, operate clinics, art banks, pharmacies, and pathology laboratories providing in-vitro fertilization (IVF), medicine sales, and related services (the "Services") under the brand name Abha Surgy. ASHPL is committed to compliance with data protection laws. This Privacy Policy applies to the corporate business and is based on globally accepted data protection principles. Ensuring data protection is foundational to trustworthy business relationships and the reputation of ASHPL.
This Privacy Policy applies to personal data processed by Abha Surgy Healthcare Private Limited (hereinafter referred to as "ASHPL" or "We" or "Us" or "Company") in its capacity as a Data Fiduciary. ASHPL respects your privacy and provides this Privacy Policy (together with the Website Cookie Notice and any other documents referred to on it) to help you understand how ASHPL collects, uses, transfers, discloses, and stores your personal data. This Privacy Policy applies to all patients, donors, healthcare professionals, employees, prospective employees, vendors, visitors, and other individuals (hereinafter referred to as "Data Principals" or "you") who provide their personal data to ASHPL. This Privacy Policy also applies to data collected and processed by us at our clinics, corporate office, fertility centres, diagnostic centres and through our website. We respect your privacy and are committed to protecting and respecting your privacy and any personal data you may provide us through the website or email. ASHPL undertakes to adopt all measures to prevent any personal data breach. ASHPL processes your personal data only for lawful purposes. It is our practice to ensure consent is taken before collecting the data.
This section describes the personal data that you provide to us directly and the personal data we collect automatically when you use our website (if applicable). “Personal Data” means any data about an individual who is identifiable by or in relation to such data. It also refers to the individual to whom the personal data relates. Where such individual is a child, it includes the parents or lawful guardian of such child. Where such individual is a person with a disability, it includes their lawful guardian.
When you interact with us to avail yourself of our Services (via online forms, in-person visits, email, or phone), we may collect the following information:
If the personal data collected or processed by us is not mentioned in this Privacy Policy, we will provide individuals with a fresh privacy notice and obtain their consent before collecting or processing such personal data.
We may automatically collect information during your use and navigation of our website (if any), such as the URL of the site you came from, the browser software you use, your Internet Protocol (IP) address, IP ports, date/time of access, data transferred, pages visited, amount of time you spend on the Site, information about transactions conducted on the site, and other "clickstream" data. This data is generated and collected automatically as part of the standard operation of the site. We may obtain information about your usage of our site by using a cookie file, which is stored on your browser or the hard drive of your computer. A cookie is a small text file that may be stored on your computer or device used to access the site. Your website browser software can be set to reject all cookies; however, some cookies we use are essential for the site to operate.
We collect your Personal Information from various sources, including:
ASHPL recognizes the importance of protecting children’s privacy. We understand that children may accompany adults seeking our Services and that their information may be provided as part of the registration or consultation process. We collect and process children’s data only when accompanying their legal guardians or authorized representatives during the consultation process and/or for providing care related to our services, specifically within our centers during registration and through our call centers. We collect this information through registration and consent forms at our centers, or verbally during interactions with our call center representatives. We do not knowingly collect any personal information directly from children without verifiable parental consent.
ASHPL employs reasonable technical, administrative, and physical safeguards designed to protect your Information against loss, misuse, unauthorized access, disclosure, alteration, and destruction. We strive to protect the confidentiality and integrity of your Information. However, no method of transmission over the internet or method of electronic storage is completely secure. While we implement reasonable security measures, we cannot guarantee the absolute security of your Information. There is always a risk that unauthorized third parties could intercept transmissions or circumvent our security systems. We urge you to exercise caution when transmitting personal data over the internet, especially financial or medical data. By providing your Information to us, you acknowledge and accept these inherent risks. We will not be responsible for any breach of security or for any actions of any third parties or events that are beyond our reasonable control, including acts of Government, computer hacking, unauthorized access to computer data and storage device, computer crashes, breach of security and encryption, etc. In case of a data breach, ASHPL will notify you and the relevant authorities within the timeframe stipulated by applicable data protection laws.
ASHPL does not currently use any automated decision-making processes, including profiling, that would produce legal effects concerning you or similarly significantly affect you. We do not foresee implementing such processes in the near future. Should this change, we will update this Privacy Policy accordingly and ensure compliance with applicable data protection regulations.
We may receive, collect, use, process, disclose, transfer, or store your information for various purposes a range of different business purposes, based on your consent or certain legitimate uses. The following are the purposes for which your personal data is processed by us:
We will not use your personal data for purposes that are incompatible with the purposes for which you have been informed, unless required or authorized by law, or it falls under the legitimate uses prescribed under the Digital Personal Data Protection Act, 2023. If the purpose for which we process your personal data is not specified in the Privacy Notice, we will provide you with a separate privacy notice clearly specifying that purpose and obtain your consent for processing your personal data for such purpose.
We may disclose or transfer your information to various parties as reasonably necessary for the purposes set out in this Privacy Notice. When we disclose your information to third parties, including our agents, contractors, service providers or sub-processors, we ensure that they implement appropriate safeguards to protect the confidentiality, integrity, and availability of your personal data. These safeguards may include contractual obligations, data protection agreements, or other measures designed to ensure compliance with applicable data protection laws and regulations.
We may disclose your personal data:
As a Data Principal, you have certain statutory rights in relation to your Personal Data. Subject to any exemptions provided by law, you have the following rights:
You have the right to obtain:
You have the right to request that we erase your personal information we have collected from you or obtained about you. Upon receipt of a request for erasure, we will erase your personal data within a reasonable time unless retention of the same is necessary for the specified purpose or for compliance with any law for the time being in force.
You have the right to request that we correct the inaccurate or misleading personal data, complete the incomplete personal data and update it.
You have the right to get your grievances addressed by us. You can refer to section 9 to know about our grievance redressal procedure.
You have the right to nominate any other individual, who shall exercise rights available to you, in the event of your death or incapacity (Incapacity refers to your inability to exercise the abovementioned rights due to unsoundness of mind or infirmity of body).
You have the right to withdraw the consent already provided by you for any specified purpose.
Please note that the above-mentioned rights are not absolute and have certain exceptions. If your request falls within the exceptions, we will notify you during the receipt of request from your side. We will provide a written acknowledgement upon receipt of your request and might seek additional information regarding your request including the proof of identity. We are obliged to respond to any such request within one month from the receipt of a valid request, subject to exceptions prescribed under the applicable laws.
To raise a request under this section or for clarification regarding your rights as a data principal, please contact our Privacy officer. If we are acting as a data processor of your personal data, please contact the data fiduciary in the first instance to address your rights with respect to such personal data.
We will retain your information in the formats and for the duration prescribed under applicable law or our Privacy Policy. We will retain your personal data for the period necessary to fulfill the purposes outlined in this Privacy Notice or the consent form, unless a longer retention period is required or permitted by law.
We will not retain such information for longer than is required for the purposes for which the information may lawfully be used or is otherwise required under any other law for the time being in force. We will put in place measures to ensure that your information in our possession or under our control is destroyed and/or anonymized as soon as it is reasonable and practicable after: (a) the purposes for which that information was received are no longer being served by the retention of such information; and (b) retention is no longer necessary under any applicable law.
Your data may be anonymized, de-identified, and/or aggregated, and the resulting data may be held by us, our affiliates, associates, agents, representatives, and other authorized third parties, for as long as necessary for us to provide the services effectively or for other purposes. Rest assured, your personal data will be deleted, destroyed, or archived post the retention period as per the data destruction mechanism developed by us in accordance with applicable laws, industry best practices, sectoral guidelines, and contractual arrangements.
ASHPL takes data privacy and its security very seriously. ASHPL will always comply with any applicable data protection legislation and will ensure that collection and use of personal data is carried out in accordance with applicable data protection laws. To that end, authoritative personnel is designated as a Privacy Officer who shall be given authority and responsibility of handling information security and data privacy related aspects of ASHPL. The objective of such designation is to have a single point of contact for addressing security related concerns of ASHPL as well as to respond to your complaints or requests regarding processing of your personal data.
Please direct any questions, complaints or concerns regarding this Privacy Notice and our treatment of your Personal Information to any of the following:
Email: accounts@surgycentre.org
Phone: 9831095626
Postal Address: 149/4, Biren Roy Road (West), Behala 700061
ASHPL may transfer personal data outside India in limited circumstances, always ensuring compliance with applicable data privacy laws and maintaining strong security controls.
We do not transfer, share and/or store any patient, donor, employee, healthcare professionals, or vendor personal data at a destination outside India.
We reserve the right to change, modify, add, or update portions of this Privacy Policy at our sole discretion, subject to applicable laws. We may update this Privacy Policy from time to time as required by the latest regulations. If we make any changes, we will notify you by revising the "Effective Starting" date at the top of this Privacy Policy. We encourage you to review our Privacy Policy regularly for updates. Your personal data will be handled in accordance with the most recent version of the Privacy Policy
