Privacy Policy
Last updated: June 2024
Labcome ("We","us", or "our") is committed to protecting your privacy and ensuring the security of your personal and health information. This Privacy Policy explains how we collect, use, share, and safeguard your data when you use our app and related services.
Definitions
To help you better understand this Privacy Policy, here are definitions of key terms used throughout the document:
- Personal Information: Data that can identify you as an individual, such as your name, contact details, address, date of birth, and government-issued identifiers.
- Health Information: Medical data related to you, including laboratory test requests, medical history, symptoms, physician details, test results, prescriptions, allergies, and clinical notes.
- Usage Data: Information generated from your interaction with the app, such as device type, operating system, app version, IP address, time stamps, and usage statistics.
- Payment Information: Details related to transactions, including payment method, billing address, transaction IDs, and payment status (excluding credit card numbers).
- Location Data: Geographic information such as GPS coordinates, city, region, and time zone, used for scheduling and service delivery.
- Communication Data: Messages, support requests, feedback, appointment confirmations, and notification preferences exchanged via the app.
- Service Providers: Third-party companies or individuals who assist in operating the app, processing payments, or providing support services.
- Regulatory Authorities: Government agencies or bodies responsible for enforcing laws and regulations related to health, data protection, and privacy.
- Consent: Your explicit permission for Labcome to collect, use, or share your information for specified purposes.
- Data Portability: The ability to obtain and transfer your personal information in a structured, machine-readable format to another service provider.
These definitions clarify the meaning of terms as they apply to your use of Labcome’s services and your rights under this Privacy Policy.
Please read this policy carefully to understand your rights and our responsibilities regarding your information.
Information We Collect
We collect various types of information to provide and improve our services. This includes data you provide directly, data generated through your use of the app, and data obtained from third-party integrations. The information collected is necessary for identity verification, service delivery, communication, and compliance with applicable laws.
Below is a detailed breakdown of the categories of data we collect and the specific data types under each category:
| Category | Data Types Collected |
|---|---|
| Personal Information | Full name, phone number, email address, residential address, date of birth, gender, national ID or other government-issued identifiers |
| Health Information | Laboratory test requests, medical history, symptoms, physician details, test results, prescriptions, allergies, relevant clinical notes |
| Usage Data | Device type, operating system, app version, IP address, time stamps, interaction logs, feature usage statistics, crash reports |
| Payment Information | Transaction IDs, payment method, billing address, payment status (Note: No credit card numbers are stored) |
| Location Data | GPS coordinates (for sample collection scheduling), city, region, time zone |
| Communication Data | Messages sent via the app, support requests, feedback, appointment confirmations, notification preferences |
This comprehensive data collection enables us to deliver personalized, secure, and efficient laboratory services while ensuring compliance with privacy regulations.
How We Use Your Information
We use your information for the following purposes:
- Service Delivery: To process laboratory test requests, schedule sample collection, verify your identity, and deliver test results securely.
- Account Management: To create, maintain, and update your user account, including authentication and password recovery.
- Communication: To send notifications, appointment reminders, test results, support responses, and important updates related to your use of the app.
- Personalization: To tailor services, recommendations, and user experience based on your preferences, health history, and usage patterns.
- Analytics and Improvement: To analyze usage data, monitor app performance, identify trends, and enhance features, security, and reliability.
- Payment Processing: To facilitate billing, process payments, confirm transactions, and resolve payment-related issues.
- Legal and Regulatory Compliance: To comply with applicable laws, regulations, and reporting obligations, including health and data protection requirements.
- Fraud Prevention and Security: To detect, prevent, and investigate fraudulent activities, unauthorized access, and other security threats.
- Customer Support: To respond to your inquiries, feedback, and support requests efficiently.
- Research and Development: To conduct internal research, develop new features, and improve laboratory services, ensuring data is anonymized or aggregated where possible.
We only use your information for the purposes described above and do not use it for unrelated activities.
Sharing Your Information
We may share your information with:
- Accredited laboratories and healthcare professionals for test processing.
- Service providers assisting in app operations.
This section describes how Labcome may share your personal and health information with third parties to facilitate service delivery, comply with legal obligations, and maintain app operations. We only share data when necessary and ensure that recipients adhere to strict confidentiality and data protection standards.
The table below outlines the parties with whom we may share your data and specifies the types of information shared:
| Recipient | Purpose of Sharing | Data Shared |
|---|---|---|
| Accredited Laboratories | Test processing and analysis | Personal Information, Health Information, Test Requests, Physician Details, Test Results |
| Healthcare Professionals | Medical consultation and follow-up | Personal Information, Health Information, Test Results, Prescriptions |
| Service Providers (e.g., IT, Payment) | App functionality, payment processing, support | Personal Information, Payment Information, Usage Data, Communication Data |
| Regulatory Authorities | Legal and regulatory compliance | Personal Information, Health Information, Test Results, as required by law |
| Emergency Services | Urgent medical situations | Personal Information, Health Information, Location Data |
We do not sell your personal information. Data shared is limited to what is necessary for the stated purpose, and all third parties are required to comply with applicable privacy and security regulations.
We do not sell your personal information.
Data Security
We implement a combination of administrative, technical, and physical safeguards to protect your information from unauthorized access, disclosure, alteration, or destruction. These measures include:
- Encryption: All sensitive data, including personal and health information, is encrypted both in transit (using SSL/TLS) and at rest.
- Access Controls: Access to your information is restricted to authorized personnel only, based on role and necessity. Multi-factor authentication and regular access reviews are enforced.
- Data Minimization: We collect and retain only the information necessary for service delivery and compliance, and securely delete data when no longer required.
- Regular Security Audits: Our systems undergo periodic security assessments, vulnerability scans, and penetration testing to identify and address potential risks.
- Secure Infrastructure: Data is stored on secure servers with firewalls, intrusion detection systems, and continuous monitoring for suspicious activity.
- Incident Response: We maintain an incident response plan to promptly address and mitigate any data breaches or security incidents, including user notification where required by law.
- Employee Training: Staff receive ongoing training on data privacy, security protocols, and best practices to ensure proper handling of your information.
While we strive to use commercially acceptable means to protect your data, no method of transmission or storage is completely secure. We encourage users to protect their account credentials and notify us immediately of any suspected unauthorized activity.
Your Rights
You have the following rights regarding your personal information:
Accessing Your Information
You have the right to request access to the personal information we hold about you. Upon receiving your request, we will provide a copy of your data in a commonly used electronic format, unless otherwise required by law. This allows you to review the information we have collected and verify its accuracy.
Updating or Correcting Your Information
If any of your personal information is inaccurate or incomplete, you may request that we update or correct it. We will promptly make the necessary changes to ensure your data is accurate and up to date. Keeping your information current helps us deliver services efficiently and maintain compliance with regulatory requirements.
Deleting Your Information
You may request the deletion of your personal information from our systems. Upon receiving such a request, we will securely erase your data, except where retention is required by law (for example, for medical, legal, or regulatory reasons). We will inform you if any data cannot be deleted due to these obligations.
Withdrawing Consent
Where our processing of your information is based on your consent, you have the right to withdraw that consent at any time. Withdrawing consent may affect your ability to use certain features of the app, but we will explain any consequences before processing your request.
Data Portability
You may request a copy of your personal information in a structured, machine-readable format for transfer to another service provider, where technically feasible. This empowers you to manage your data across different platforms.
Restricting or Objecting to Processing
You have the right to restrict or object to certain types of data processing, such as direct marketing or profiling. If you exercise this right, we will limit or cease the specified processing activities, unless we have compelling legitimate grounds or legal obligations to continue.
Lodging a Complaint
If you believe your privacy rights have been violated, you may contact us directly to resolve your concerns. You also have the right to lodge a complaint with the relevant data protection authority in your jurisdiction.
How to Exercise Your Rights
To exercise any of these rights, please contact us using the details provided in the "Contact Us" section. We will respond to your request within the timeframes required by applicable laws and provide guidance throughout the process.
Changes to This Policy
We may revise this Privacy Policy periodically to reflect changes in our practices, legal requirements, or app features. When updates are made, we will notify you by posting the revised policy within the app and updating the "Last updated" date at the top of this document. Significant changes may also be communicated through email or in-app notifications.
We encourage you to review this Privacy Policy regularly to stay informed about how your information is protected and used. Continued use of the app after changes are posted constitutes your acceptance of the updated policy. If you do not agree to the revised terms, you must stop using the app and its services. Your continued use of the app signifies your acceptance of the revised Privacy Policy.
Contact Us
If you have questions or concerns about this Privacy Policy, please contact us at:
Email: support@labcome.com