Nexus Healthtech Pvt. Ltd, including all legal entities under the Nexus group (hereafter referred as “Nexus” or “we”), respects your (customers) (hereafter referred as “you” or “user”)  privacy and values our relationship with our business partners, clients, third party who have contractual relationship with Nexus (hereafter referred as “third party” or “service provider”) and any party who purchase / intend to purchase / inquire about any product(s) and / or service(s) made available by Nexus  through any of Nexus’s  customer interface channels including website, mobile site, mobile app & offline channels including call centers and offices (collectively referred herein as "Sales Channels"). We are committed to protecting your personally identifiable information by which you can be identified (hereafter referred as “information” or “personal information” or “personal data” or “special category of personal data”) by handling it responsibly and safeguarding it using appropriate technical and organizational measures.

We would like to assure you that we follow appropriate standards when it comes to protecting your privacy on our Sales Channel. This policy outlines the types of personal information collected on our Website/ mobile app, how this data is used/processed and safeguarded as well as how users may exercise their rights with respect to personal information.

This Privacy Policy applies to Nexus/.com, Nexus-branded apps, Nexus/company pages, communications and services (“Services”), including off-site Services, such as our email services, customer care and support services and the “Contact us”; “Apply with Nexus/” and “Share on” plugins on our digital properties.
‍
By using or accessing the Website/ mobile App or other Sales Channels, the user hereby agrees with the terms of this Privacy Policy and the contents herein.This Privacy Policy does not apply to any website(s), mobile sites and mobile apps of third parties, even if their websites/products are linked to our Website. User should take note that information and privacy practices of Nexus/’s business partners, advertisers, sponsors or other sites to which we provides hyperlink(s), may be materially different from this Privacy Policy. Accordingly, it is recommended that you review the privacy statements and policies of any such third parties.

1.    What Personal Data shall we collect?

a. We collect the following personal and sensitive information from you while transacting through us:

• Name, gender, age, Blood group and date of birth
• Optionally, Contact information, such as address, email
• Mobile device id, your access times
• Mobile phone number
• Country of residence
• Mobile device Id and Access times
• Lifestyle and social circumstances (for example, your hobbies)
• Family and friends details/information(for example, your marital status and dependents)
• Postings or messages on any blogs, forums, platforms, wikis or social media applications of Nexus/ and Nexus/’s third parties
• Information in any complaints you make
• Details of how you use our products and services
• CCTV footage and other information we collect when you access our premises
• Recording of telephone calls to our representatives and call centers; and
• Details of how you like to interact with us, and other similar information relevant to our relationship.

b. The personal data we collect may also include ‘sensitive’ or ‘special categories’ of personal data, such as details about your:

• Blood group
• Dietary requirements
• Health (for example, so that we can make it easy for you to access our buildings, products and services, and/or for any special assistance required by you); and
• Sexual orientation (for example, if you provide us with details of your spouse or partner)
• Medications and vaccinations
• Medical reports not limited to Blood work, Radiology, genetics etc
• Lifestyle and social circumstances (for example, your hobbies)

If you choose not to provide, or object to us processing, the information we collect, we may not be able to process your instructions or continue to provide some or all of our services to you or our client.

c. Personal information of other customers/users

If you provide personal information to us regarding individuals other than yourself, you agree:

• To inform the individual about the content ofthis privacy policy
• To obtain any legally-required consent, for the collection, use, disclosure, and transfer (including cross-border transfer) of individual’s personal information, from the individual in accordance with the legal and regulatory requirements

d. Personal information of child

The Services are not intended for users under the age of 18 (Permissible Age), unless permitted under applicable local laws.We do not knowingly collect any personal information from you or market to or solicit information from anyone under the Permissible Age. If we become aware that a person submitting personal information is under the Permissible Age, we will delete the account and any related information as soon as possible. If you believe we might have any information from or about you under the PermissibleAge, please contact us at care@nexushtech.com.

e. The other information that we collect

• Infrastructure monitoring: Crashlytics - Geographic position, unique device identifiers for advertising (GoogleAdvertiser ID or IDFA, for example) and various types of Data as specified in the privacy policy of the service.
• Location-based interactions: Geographical locations
• Unique device identification: This Application may track Users by storing a unique identifier of their device, for analytics purposes or for storing Users' preferences

2.    How do we collect Personal Data?

a. Directly

We obtain personal data directly from individuals in a variety of ways, including but not limited to obtaining personal data from individuals who provides us their business card, complete our online form’s on our website/mobile app, provides records relating to previous requests or appointments made, subscribes to our newsletters and preference center, registers for webinars, attends meetings or events we host, visits our offices. We may also obtain personal data directly when, for example, we are establishing a business relationship, performing professional services through a contract, or through our hosted software applications.

b. Indirectly

We obtain personal data indirectly about individuals from a variety of sources, including but not limited to from the healthcare providers, doctors ,health websites, social media, authorized representative when such person is seeking health services information on others behalf and our clients. We may attach personal data to our customer relationship management records to better understand and serve you, satisfy a legal obligation

• Public sources - Personal data may be obtained from public sources such as news articles and Internet searches
• Social and professional networking sites - If you register or login to our websites using social media (e.g., LinkedIn,Google, or Twitter) to authenticate your identity and connect your social media login information with us, we will collect information or content needed for the registration or login that you permitted your social media provider to share with us. That information may include your name and email address and depending on your privacy settings, additional details about you, so please review the privacy controls on the applicable service to set how much information you want to be shared with us
• Business clients - Our business clients may engage us to provide products/services offered by us which involves sharing personal data they control as part of that engagement. Our services may also include processing personal data under our clients’ control on our hosted software applications. All such processing will be governed by Nexus/ ’s client’s privacy policy

3.     What lawful reasons do we have for processing Personal Data?

We may rely on the following lawful reasons when we process your personal data to operate our business and provide our products and services:

• Contract – We may process personal information in order to perform our contractual obligations to which data subject or data controller is party
• Consent - We may rely on your freely given, specific, informed and unambiguous consent at the time you provided your personal information to us for one or more specific purposes
• Legitimate interests – We may rely on legitimate interests based on our evaluation that the processing is fair, reasonable and balanced
• Legal obligations – We may process personal information where processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, in particular where the data subject is a child
• Vital interest
• Public interest

4.     How will we use/process your personal data?

a.   We do not sell or trade upon any of the above foregoing information without your consent. The foregoing information collected from you  is put to the following use:

• For the purpose of tracking the health of yourself and/or child(ren) and using various features of the website / app for you and for individuals whose information has been entered by you.
• Information like Credit Card Details and NetBanking Details are usually collected directly by the payment gateways and banks and not by Nexus /  , but if ever stored or retained by us, remain internal.
• These details may also be processed with the help of certain third parties only for the purpose of processing 'Cash Back& Discounts' and Charge Backs, if applicable. Information like Mobile no ,e-mail address and postal address may be used for promotional purposes, unless the customer/user "opts-out" of such use.
• To manage and respond to any request you submit through our website
• To meet legal and regulatory requirements
• Promoting our professional services, products and capabilities to existing and prospective business clients/ customers.
• Sending invitations and providing access to guests attending our events and webinars or our sponsored events.
• Personalising online landing pages and communications we think would be of interest based on interactions with us and group companies.

If you choose not to share this information, you can still visit our website, but you may be unable to avail certain options or our services.

b.     How we use Cookies?

In general, you can visit our website without telling us who you are or revealing any personal information about yourself. We track the Internet address of the domains from which people visit us and analyse this data for trends and statistics, but the individual user remains anonymous.

Some of our web pages use "cookies" so that we can better serve you with customised information when you return to our site. Cookies are identifiers which web sites send to the browser on your computer to facilitate your next visit to our site. You can set your browser to notify you when you are sent a cookie, giving you the option to decide whether or not to accept it. The information we collect and analyse is used to improve our service to you. Android/ IOS App Permissions required to use various features in our app:

In order to have a better experience and to use all features in the app, we need below permissions to be used in our android app:

• Camera - We will not access your photos or camera without first getting your permission and we will never scan or import your photo library or camera roll. If you give us permission to access photos or your camera, we will only use images that you specifically choose to share with us.
• Contacts - We will not scan or import your contacts stored on your phone without first getting your explicit permission. We will only use the contact information to help you find friends or contacts who use Nexus /   App, if you choose to do so, and we will not use contact information for any other purpose without first getting your separate explicit permission.
• Calendar - This permission enables us to put your plan on your calendar.
• Location - We will not gather or use the specific location of your mobile device (by using, for example, GPS orBluetooth) without first getting your explicit permission. And if you choose to share location information but later change your mind, you will always have the ability to stop sharing. Please note that this does not include IP address. The permissions will benefit the user location specific deals and provide you a personalised experience with timezone.
• SMS - This application reads, uploads and syntactic analyses text messages from   providers within the app for any flight and train PNR booking messages. We use this information to provide updates on PNR status, flight and train delays. This information is stored in a secured environment and always transmitted using SSL.
• GET ACCOUNTS - This permission enables us to know about details of your account(s) on your mobile device.This will help you to get register on the Platform by logging into online accounts you may have with Third Party social networking sites(e.g. Facebook, Twitter, Google Login); each such account.
• ACCESS WIFI STATE - By using Wi-Fi connection details, we provide you a seamless experience depending upon your network such as image loading process. We try to use this information to optimize the app's performance on slow networks.
• Third Party - The User allow us to provide services to third party services' accounts for Displaying content from external platforms,SPAM protection, Hosting and backend infrastructure, Infrastructure monitoring,Content commenting, Interaction with external social networks and platforms,Location-based interactions, Social features, Contacting the User, User database management, Targeted Advertising and Re-marketing and behavioural targeting.

5.     With whom do we share your Personal Data?

In connection with any of the purposes outlined in the “How will we use/process the personal data” section above, we may disclose details about you to :

• Chosen healthcare provider
• Other members of the Nexus/group companies or third parties that provide services
• Competent authorities (including courts and authorities regulating us for internal compliance and audit(s))
• Other organisation to whom we may transfer our rights and/or obligations under the Terms agreed between Nexus /   and respective organisation
• Any other person or organisation after are structure, sale or acquisition of any member of the Nexus/group, as long as they use your personal information for the same purposes we did
• Credit reference agencies or other organisations that help us make credit decisions and reduce the incidence of fraud; and
• Other third parties that reasonably require access to personal data relating to you. With specific reference to third party, We use third-party service providers to serve ads on our behalf across the Internet and sometimes on this site. They may collect anonymous information about your visits to our website, and your interaction with our products and services. They may also use information about your visits to this and other websites to target advertisements for goods and services. This anonymous information is collected through the use of a 'pixel tag', which is industry standard technology used by most major websites. No personally identifiable information is collected or used in this process. Such third parties do not know your name, phone number, address, email address, or any personal information which can identify you

If you would like more information about this practice and to know your choices about not having this anonymous information used by our third party service provider, please email at care@nexushtech.com.

Our website/mobile app hosts various blogs, forums, wikis and other social media applications or services that allow you to share content with other users(collectively “Social Media Applications”).

Any personal data that you contribute to these Social Media Applications can be read, collected and used by other users of the application. We have little or no control over these other users, so any information you contribute to these Social Media Applications might not be handled in line with this privacy policy.

6.     Where do we transfer (cross border transfer) your Personal Data?

Information we hold about you may be transferred to countries:

a.    Where we do business;
b.    Which are linked to your engagement with us;
c.     From which you regularly receive or transmit information; or
d.    Where our third parties conduct their activities.

We may share non-personal, anonymised and aggregated information with third parties for several purposes, including data analytics, research, submissions, thought leadership and promotional activity.

Please contact us on Care@nexushtech.com to obtain names and addresses of the specific entities that shall have access to your personal information in a given transaction.

7.     How we protect your Personal Data?

We have implemented appropriate technical and organisational measures to safeguard and help prevent un-authorised access to your information and to maintain data security. These safeguards take into account the sensitivity of the information that we collect, process and store and the current state of technology. We follow generally accepted industry standards to protect the personal information submitted to us, both during transmission and once we receive it.The third party with respect to payment gateway and payment processing are all validated as compliant with the payment card industry standard (generally referred to as PCI compliant service providers).

We assume no liability or responsibility for disclosure of your information due to errors in transmission, unauthorised third-party access, or other causes beyond our control. You play an important role in keeping your personal information secure. You should not share your user name, password, or other security information for your Nexus /   account with anyone. If we receive instructions using your user name and password, we will consider that you have authorised the instructions.

8.     What are my data Protection Rights?

Your data protection rights are highlighted here.

• Right to Access – You can ask us to verify whether we are processing personal data about you, and if so, to provide more specific information.
• Right to Correction – You can ask us to correct our records if you believe they contain incorrect or incomplete information about you.
• Right to Erasure – You can ask us to erase (delete) your personal data after you withdraw your consent to processing or when we no longer need it for the purpose it was originally collected.
• Right to Processing restrictions – You can ask us to temporarily restrict our processing of your personal data if you contest the accuracy of your personal data, prefer to restrict its use rather than having us erase it, or need us to preserve it for you to establish, exercise, or defend a legal claim. A temporary restriction may apply while verifying whether we have overriding legitimate grounds to process it. You can ask us to inform you before we lift that temporary processing restriction.
• Right to Data portability – In some circumstances, where you have provided personal data to us, you can ask us to transmit that personal data (in a structured, commonly used, and machine-readable format) directly to another company if it is technically feasible.
• Right to Automated Individual Decision-making – You can ask us to review any decisions made about you which we made solely based on automated processing, including profiling, that produced legal effects concerning you or similarly significantly affected you.
• Right to Object to Direct Marketing including Profiling – You can object to our use of your personal data for direct marketing purposes, including profiling. We may need to keep some minimal information to comply with your request to cease marketing to you.
• Right to Withdraw Consent – You can withdraw your consent that you have previously given to one or more specified purposes to process your personal data. This will not affect the lawfulness of any processing carried out before you withdraw your consent. However, this may lead to Nexus /   not able to provide certain products or services to you.

Check your User Profile Information available and stored with us under the section "My Profile". To get user profile deleted please send an email to – care@nexushtech.com

We may need to request specific information from you to help us confirm your identity and ensure your right to access the information or to exercise any of your other rights. This helps us to ensure that personal data is not disclosed to any person who has no right to receive it. No fee is required to make a request unless your request is clearly unfounded or excessive. Depending on the circumstances, we may be unable to comply with your request based on other lawful grounds, in such cases we will ensure that you are notified about the same without undue delay.

9.     How long shall we retain/dispose your Personal Data?

We seek to ensure that we only keep your personal data for the longest of :

a.     The period necessary for the relevant activity or services;
b.     Any retention period that is required by law; or
c.     The period in which litigation or investigations might arise in respect of the services.

Please note: Even after your account is terminated, we retain your data for as long as we have a legitimate purpose to do so (and in accordance with applicable law),including to assist with legal obligations, resolve disputes, and enforce our agreements. We may retain and disclose such data pursuant to this PrivacyPolicy after your account has been terminated

10.     Changes to this privacy statement

From time to time we may update this statement. When we do, we will publish the changes on this Website. If you do not agree with these changes, you should discontinue your use of our Website/ Apps.

11.     How to contact us, request access to your personal data or contact us with questions or feedback?

If you have a question, comment, or complaint or wish to access a copy of your personal data or to correct it if you believe it is inaccurate, you may contact us at below mentioned details : Care@nexushtech.com.