Skip to main content
Trust

Privacy policy.

Back to Home

Your health data is sensitive. Here's exactly how we handle it.

Ranovexa exists to bring hospital-grade care into the home. That care depends on a small amount of personal and clinical information — but only the minimum required to book, dispatch and safely deliver a visit. This policy explains what we collect, why we collect it, who can see it, and the choices you have.

What we collect

Contact details (name, phone, address, emergency contact); care requirements (the service booked, timing, dependencies); and clinical notes strictly necessary to deliver care safely (allergies, prescriptions relevant to the visit, vitals recorded on-site, physician instructions). We do not collect financial or identity documents beyond what regulation requires.

How we use it

To dispatch caregivers, coordinate equipment, share visit reports with the treating physician, run our command centre in real time, and improve the quality and safety of our service. We do not use health data for advertising, profiling or to train third-party AI models.

Who can access it

Only the care staff assigned to your case, their clinical supervisors, and — where you have asked us to — your treating physician. Every access is logged with a user, timestamp and reason. Support staff can see contact information but not clinical notes.

Storage & security

Records are stored on encrypted, access-controlled infrastructure hosted in India. Backups are encrypted at rest. Access uses role-based permissions with mandatory two-factor authentication for clinical and operational staff.

Retention

Active care records are retained for the duration of the engagement and for a further period required by applicable clinical record-keeping regulations. You can request earlier deletion for information that is not legally required to be retained.

Sharing

We share information only with (a) the caregivers and clinicians delivering your care, (b) partner labs and equipment vendors strictly for fulfilment, (c) your nominated physician on your request, and (d) authorities where compelled by law. We never sell personal or health data.

Your rights

You can request access, correction, export or deletion of your data by writing to privacy@ranovexa.com. We respond within 30 days. If you are unsatisfied with our response, you may escalate to our grievance officer via the Grievance Redressal page.

Children

Services for minors are booked and consented to by a parent or legal guardian. We do not knowingly collect data directly from children.

Changes

We review this policy at least annually. Material changes are notified to registered users by email and posted here with a revised effective date.

Minimum necessary

We only collect the personal and clinical detail actually required to deliver the booked care safely.

Logged access

Every view of a record is stamped with a user, time and reason. Nothing is silent.

Encrypted at rest

Records and backups are encrypted. Role-based permissions and mandatory 2FA for staff.

No advertising

Health data is never used for advertising, profiling or to train third-party AI models.

Your controls

Request access, correction, export or deletion at any time via privacy@ranovexa.com.

India-hosted

Records and backups are stored on infrastructure located in India, under Indian law.