Privacy Policy
Last updated: March 2025. This Privacy Policy describes how ChikitsaPro ("we", "us", "our") collects, uses, and protects your and your patients' information when you use our clinic management software and related services.
1. Who we are
ChikitsaPro is operated by Code Artisan Lab. We provide a software-as-a-service (SaaS) platform for clinic management. We act as a data fiduciary (or equivalent under applicable law) in respect of personal data we process to provide the Service. For support, contact chikitsapro@codeartisanlab.com or +91 7837041726.
2. Data we collect
We collect: (a) Account data — email, name, password (hashed), clinic names and addresses, and billing-related information when you sign up or use the dashboard; (b) Patient and clinical data — information you enter about patients (names, contact details, medical history, prescriptions, appointments) in order to provide the Service; (c) Usage data — how you use the product (e.g. features used, device/browser) to improve the Service and for security; (d) Payment data — payment is processed by Razorpay; we may receive transaction identifiers and plan information, but card details are handled by the payment provider. We may also collect cookies and similar technologies as described in our cookie notice (e.g. for session and preferences).
3. How we use your data
We use the data to: provide, maintain, and improve the Service; process payments and manage subscriptions; send transactional emails (e.g. verification, password reset) and, where you have agreed, product updates or marketing; prevent fraud and ensure security; comply with legal obligations; and as otherwise described in this policy or with your consent. We do not sell your or your patients' personal data to third parties for their marketing.
4. Legal basis and your role
We process data where necessary for the performance of our contract with you, for our legitimate interests (e.g. security, product improvement), to comply with law, or with your consent where required. When you store patient data in ChikitsaPro, you are responsible for having an appropriate legal basis and consent (where required) under applicable law, including the Digital Personal Data Protection Act 2023 (DPDP Act) and medical confidentiality rules. We process such data on your instructions as part of providing the Service.
5. Sharing and disclosure
We may share data with: (a) service providers (hosting, email, payment processing, analytics) who process data on our behalf under strict agreements; (b) authorities when required by law or to protect rights and safety; (c) affiliates or in connection with a merger or sale, subject to notice and applicable law. We do not share your or your patients' data with third parties for their own marketing. Data may be stored or processed in India or in jurisdictions where our providers operate; we take steps to ensure appropriate safeguards.
6. Retention and security
We retain your data for as long as your account is active and as needed to provide the Service, comply with law, or resolve disputes. After account closure, we may retain data for a limited period as per our retention policy and legal requirements. We implement technical and organisational measures to protect your data against unauthorised access, loss, or misuse; however, no system is completely secure, and you use the Service at your own risk.
7. Your rights
Depending on your jurisdiction, you may have rights to access, correct, delete, or port your data, or to object to or restrict certain processing. You can update much of your account data from the dashboard. To exercise other rights or for requests related to patient data you have stored, contact us at chikitsapro@codeartisanlab.com. Under the DPDP Act (India), data principals have rights as set out in the Act; we will respond to valid requests in accordance with applicable law. You may also have the right to lodge a complaint with a supervisory authority.
8. Children and sensitive data
The Service is not directed at children. You may store data about minors in your capacity as a healthcare provider in accordance with applicable law. Health and other sensitive data you enter are processed to provide the Service; you are responsible for ensuring that you have the necessary consents and legal basis to provide such data to us.
9. Changes and contact
We may update this Privacy Policy from time to time. We will post the updated policy on this page and update the "Last updated" date. Material changes may be communicated by email or in-app notice. For questions or to exercise your rights, contact us at chikitsapro@codeartisanlab.com or +91 7837041726. See also Contact and Help & Support.