Back to Home

Privacy Policy

Last Updated: June 1, 2026

1. Introduction

Welcome to **Appointee**, owned and operated by Appointee Healthcare Inc. ("we," "our," or "us"). We are committed to protecting the privacy, security, and confidentiality of all individuals who access our services—including Patients, Medical Practitioners (Doctors), Clinical Staff (Receptionists), and Medical Representatives (MRs).

This Privacy Policy explains how we collect, process, maintain, and secure your personal and professional information across our Android mobile app (package identifier: in.appointeeapp.api) and our official Web Client portals. By utilizing our applications, you consent to the operations described herein.

2. Information We Collect

To deliver our real-time queue management and appointment services, we collect various categories of information based on your active account role:

A. Patient Profile Information

  • Mobile Number: Required for secure registration and authentication.
  • Personal Identity: Your full name, age, biological gender, and municipal city to match with local medical providers.
  • Appointment Schedules: Timestamps of clinical sessions, assigned token numbers, and queue sequences.

B. Practitioner & Clinical Staff Information

  • Professional Identity: Doctor's name, field of medical specialization, professional license credentials, and primary clinic address coordinates.
  • Template Schemas: Configurations of daily and monthly active booking hours, blocked slot events, and receptionist system assignments.

C. Medical Representative (MR) Information

  • Professional Profiles: Full name, verified mobile number, associated corporate pharmaceutical representation identity, and scheduled practitioner meeting pipelines.

3. How We Use Your Information

All compiled personal, profile, and location records are processed exclusively for the following operational workflows:

  • Dynamic Queue Management: Generating precise queue token sequences and calculating estimated practitioner arrival and delay statistics.
  • Verification Pipelines: Processing immediate verification tokens using OTP messaging APIs to prevent automated bot signups.
  • Transit Optimization: Allowing Medical Representatives to retrieve mapped route guidelines directly to scheduling medical establishments.
  • Account Operations: Permitting users to delete their account records entirely, which clears all associated profile documents from our cloud databases.

4. Android Device Permissions

Our Android application requests specific device permission integrations. These permissions are critical to support core interactive workflows:

  • Location Access (ACCESS_FINE_LOCATION & ACCESS_COARSE_LOCATION): Used strictly to map neighboring clinical offices and provide routing metrics. This is active for clinical discovery and MR transits.
  • Camera Access (CAMERA): Enables users to photograph and upload prescription files, clinical files, and practitioner profiles.
  • Photo/Storage Access (READ_EXTERNAL_STORAGE & WRITE_EXTERNAL_STORAGE): Grants the capability to pick pre-saved document scans or profile graphics directly from your local phone library.

5. Data Protection & Security

We deploy premium security layers to ensure your healthcare and profile records remain private:

  • Secure Cloud Infrastructure: All profile databases are managed via secure, encrypted MongoDB Atlas clusters equipped with firewalls and transport layer security (TLS).
  • Network Traffic: All communications between the mobile apps, web clients, and backend APIs are secured with HTTPS encryption protocols (SSL).
  • No Hardcoded Logins: User authorization uses secure JSON Web Token (JWT) algorithms that expire automatically to mitigate hijack risks.

6. Third-Party Services

To perform authentication and store medical assets safely, we coordinate with the following secure industry-standard processors:

  • MessageCentral: Employed to generate and verify secure OTP authorization codes via SMS.
  • Cloudinary: A cloud asset platform used to host, optimize, and store user-uploaded profile pictures and prescription attachments.
  • Render: High-performance server infrastructure used to run our central Node.js database API.

7. Your Rights & Data Erasure

We believe in total transparency. You retain absolute authority over your profile data:

  • Update and Access: You can edit your profile information (name, city, etc.) directly in the dashboard at any time.
  • Permanent Erasure: You can permanently delete your account directly inside the Appointee app. Simply tap your **Profile Picture / Avatar** on the main dashboard to view your profile settings, and click the **"Delete Account"** button. This will immediately and permanently purge all your personal identity, active appointments, queue sequences, and medical logs from our databases.
  • Alternative Request Method: If you have already uninstalled the application or prefer a manual data deletion, you can visit our dedicated Data Deletion Instructions page or contact our support team at support@appointeeapp.in to process your manual request within 24-48 hours.

8. Privacy Contact Information

If you have any questions, compliance inquiries, or security reports regarding this Privacy Policy, please reach out to our legal and data protection division:

📧 Compliance Desk: info@appointeeapp.in
🛠️ Support Office: support@appointeeapp.in