← Back to Home

Privacy Policy

Last Updated: December 25, 2025

Introduction

VitalVue Technologies Private Limited ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our laboratory management system (the "Service").

Please read this Privacy Policy carefully. By using the Service, you agree to the collection and use of information in accordance with this policy.

Important: We Don't Store Your Patient Data

VitalVue is a desktop application that stores all patient information, test results, orders, and reports locally on your laboratory's computer system. We do not store, access, or transmit any of your patient data or laboratory information. This Privacy Policy covers only the limited information we collect for subscription and billing purposes.

Information We Collect

1. Account and Subscription Information

We collect only the information necessary to provide subscription services:

  • Account Information: Name, email address, phone number, laboratory/organization name
  • Payment Information: Billing details, GST information (if applicable), subscription plan details (processed securely through third-party payment gateways like Razorpay, Paytm, or similar)
  • Support Communications: Information you provide when contacting customer support

2. Technical Information

We may collect minimal technical information to provide support:

  • Device Information: Operating system type and version (for compatibility)
  • Application Version: VitalVue software version you're using
  • Error Logs: Technical error messages (only when you report issues)

3. What We DO NOT Collect

We explicitly DO NOT collect or store:

  • Patient information or personal health data
  • Test results or laboratory reports
  • Patient orders or requisitions
  • Any laboratory operational data
  • Doctor or staff information from your laboratory
  • Any data entered into the VitalVue application

All patient and laboratory data remains on your local computer system and never leaves your premises.

How We Use Your Information

We use the limited information we collect only for:

  • Managing your subscription account and access to the software
  • Processing subscription payments and issuing invoices/receipts
  • Sending software updates, renewal reminders, and important notices
  • Providing technical support when you contact us
  • Complying with Indian tax laws and legal obligations (GST, Income Tax, etc.)
  • Improving our software based on general usage trends (no patient data involved)

Data Security

We implement security measures to protect your account and billing information:

  • Encryption: All payment transactions are encrypted using TLS/SSL
  • Secure Payment Gateways: We use PCI-DSS compliant Indian payment gateways (Razorpay, Paytm, etc.)
  • Access Controls: Strict access controls for account and billing data
  • No Card Storage: We do not store your credit/debit card details on our servers

Patient Data Security: Since all patient data is stored locally on your laboratory's computer system, you are responsible for implementing appropriate security measures such as:

  • Regular backups of your local database
  • Physical security of your computer systems
  • Access controls for laboratory staff
  • Antivirus and firewall protection
  • Regular software updates

Data Sharing and Disclosure

We do not sell, rent, or trade your account information. We may share limited information only in these circumstances:

  • Payment Processors: With Indian payment gateways (Razorpay, Paytm, etc.) to process subscription payments
  • Tax Authorities: With Indian tax authorities as required by GST and Income Tax laws
  • Legal Requirements: When required by Indian law, court order, or government authority
  • Business Transfers: In case of merger, acquisition, or sale of our company
  • With Your Consent: With your explicit consent for any other purpose

Note: We never share any patient data because we don't have access to it in the first place.

Your Rights and Choices

You have the following rights regarding your information:

  • Access: Request access to your personal information
  • Correction: Request correction of inaccurate or incomplete information
  • Deletion: Request deletion of your personal information (subject to legal retention requirements)
  • Data Portability: Request a copy of your data in a machine-readable format
  • Opt-Out: Opt out of marketing communications (you will still receive transactional emails)
  • Restriction: Request restriction of processing in certain circumstances

To exercise these rights, please contact us at privacy@vitalvue.com

Data Retention

We retain your account and billing information only as long as:

  • Your subscription is active
  • Required by Indian tax laws (typically 7 years for financial records)
  • Necessary to resolve disputes or enforce agreements

After account deletion, we will securely delete or anonymize your data within 90 days, except for information we are required to retain by law.

Data Storage Location

Your account and billing information is stored on secure servers located in India, ensuring compliance with the Digital Personal Data Protection Act, 2023 (DPDPA) and other Indian data protection regulations. Your data does not leave India unless explicitly required by law.

Children's Privacy

The Service is not intended for use by children under the age of 13 (or the applicable age of consent in your jurisdiction). We do not knowingly collect personal information from children. If we become aware that we have collected information from a child without verification of parental consent, we will take steps to remove that information.

Cookies and Tracking Technologies

We use cookies and similar tracking technologies to track activity on our Service and store certain information. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Service.

Types of cookies we use include essential cookies (necessary for the Service to function), analytics cookies (to understand how you use the Service), and preference cookies (to remember your settings).

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. For material changes, we will provide additional notice (such as an email notification or prominent notice within the Service) at least 30 days before the changes take effect.

Indian Privacy Law Compliance

Digital Personal Data Protection Act, 2023 (DPDPA)

We comply with India's Digital Personal Data Protection Act, 2023. Under DPDPA, you have the right to:

  • Access your personal data
  • Correct inaccurate or incomplete data
  • Erase your data (right to be forgotten)
  • Data portability
  • Withdraw consent at any time
  • Nominate another person to exercise rights in case of death or incapacity

Information Technology Act, 2000

We implement reasonable security practices and procedures as required under the IT Act, 2000 and the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011.

GST and Tax Compliance

We collect and retain GST information and maintain financial records as required under the Goods and Services Tax Act, 2017 and the Income Tax Act, 1961.

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or want to exercise your data rights, please contact us:

Data Protection Officer
VitalVue Technologies Private Limited
Email: privacy@vitalvue.com
Phone: +91 9899199465

Grievance Redressal: As per DPDPA requirements, we will respond to your privacy concerns or requests within 7 days of receiving them.