Privacy Policy

Last updated: April 27, 2026

1. Who we are

docOPD is operated by docOPD Healthcare Pvt. Ltd., registered in India, with its principal office at Ground Floor, A-28, G-5, Block D, Sector 4, Noida, Uttar Pradesh 201301. We operate an authenticated hyperlocal diagnostic laboratory network and a digital healthcare platform.

2. Data we collect

We collect: (a) Identity data — name, mobile number, age, gender; (b) Health data — diagnostic test results, reports, prescriptions you upload; (c) Location data — your area/society to enable hyperlocal services; (d) Device data — app/browser version, crash logs. We do not collect your Aadhaar number unless required for ABHA registration, in which case it is processed directly by the ABDM gateway and never stored on our servers.

3. How we use your data

Your data is used to: deliver diagnostic services and reports; personalise health recommendations and reminders; enable family health profile management; improve app features via anonymised analytics. We do NOT sell your data to third parties. We do NOT share your data with ecosystem partners (doctors, chemists) without your explicit in-app consent for each connection.

4. Data retention

Health reports and records are retained for as long as you maintain an active account, or as required by applicable Indian health regulations. You may request deletion of your account and all associated data at any time by emailing [email protected]. Deletion is processed within 30 days.

5. Data security

All data is encrypted at rest and in transit. Access to health data is restricted to authorised pathologists and platform engineers under strict data access controls. We conduct periodic security audits.

6. ABHA integration

If you link or create an Ayushman Bharat Health Account (ABHA) via docOPD, data exchange with the ABDM Health Locker is governed by the ABDM Health Data Management Policy. docOPD acts as a Health Information Provider (HIP) and obtains your explicit consent before any data sharing with the ABDM network.

7. Cookies and analytics

Our website uses minimal cookies for session management and anonymous usage analytics. We do not use third-party advertising cookies. You may disable cookies in your browser; this will not affect your ability to use the website.

8. Your rights

You have the right to: access the data we hold about you; request correction of inaccurate data; request deletion of your data; withdraw consent for data processing at any time. To exercise these rights, contact us at [email protected].

9. Changes to this policy

We may update this Privacy Policy as our services evolve. Material changes will be notified via the app and/or email. Continued use of docOPD after notification constitutes acceptance of the updated policy.

10. Google Play — Data Safety Declaration

In compliance with Google Play Store policy, the following summarises what data the docOPD Android app collects, why, and how it is handled.

10a. Data collected and its purpose

(i) Personal information — Name, mobile number, age, gender: collected to create and manage your account and deliver health services. Required to use the app. (ii) Precise & approximate location: collected to match you with nearby diagnostic labs and enable hyperlocal services. Required for core functionality; you may revoke location permission at any time in device settings. (iii) Health & fitness data — steps, heart rate, oxygen saturation, blood pressure, blood glucose, body weight: read from Google Health Connect with your explicit permission. Used solely to display your health dashboard inside the app. Optional — the app functions without Health Connect access. (iv) Physical activity (step counter sensor): used to track daily steps inside the health dashboard. Optional. (v) Photos / camera: used when you photograph a prescription or medical report for upload. Photos are stored encrypted in your account and never processed for advertising. Optional. (vi) Voice / audio: microphone access is used only for optional in-app voice commands (e.g., "book a test"). Audio is processed on-device; no audio is transmitted to our servers. Optional. (vii) Payment information: processed through Razorpay (PCI-DSS compliant). docOPD does not store card or UPI credentials on its servers. Required only when making a booking payment. (viii) App interactions / diagnostics: anonymised crash logs and feature usage events to improve the app. No personally identifiable information is included.

10b. Data sharing

(i) Diagnostic labs — your booking details and test results are shared only with the lab fulfilling your specific order. (ii) Razorpay — payment details are shared with Razorpay solely to process transactions. (iii) ABDM / NHA — health data is shared with the Ayushman Bharat Digital Mission network only when you explicitly initiate ABHA linking and provide consent for each data-sharing event. (iv) No data is shared with advertisers, data brokers, or marketing platforms. (v) Data may be disclosed to law-enforcement authorities if required by a valid legal order under applicable Indian law.

10c. Security practices

All data is encrypted in transit (TLS 1.2+) and at rest (AES-256). Access to health data is restricted by role-based access controls. We conduct periodic security audits. The app does not collect data from children under 13.

10d. User controls & data deletion

You can revoke any device permission (location, camera, microphone, Health Connect) at any time from Android Settings → Apps → docOPD → Permissions. To permanently delete your account and all associated data, email [email protected]. Deletion is completed within 30 days. You may also request a copy of the data we hold about you.

11. Changes to this policy

We may update this Privacy Policy as our services evolve. Material changes will be notified via the app and/or email. Continued use of docOPD after notification constitutes acceptance of the updated policy.

12. Contact

For any privacy-related queries, write to: [email protected] or [email protected]. Phone: +91 99905 19519.