Diagnox | Advanced Hospital, Diagnostics, Pharmacy Services

Diagnox is committed to ensuring the confidentiality, integrity, and availability of all data processed through the platform. This Data Protection Policy outlines the measures and practices adopted to safeguard sensitive and personal information, including patient health records, laboratory reports, prescriptions, and billing data. 1. Scope of Data Protection This policy applies to all data processed by Diagnox, including information related to hospitals, laboratories, pharmacies, doctors, staff, and patients. 2. Types of Data Protected The platform protects, but is not limited to, the following data: - Patient personal and medical information - Diagnostic test results and laboratory reports - Prescriptions and treatment records - Appointment and booking details - Billing, payment, and transaction data - User account credentials and access logs 3. Data Security Measures Diagnox implements strict security controls, including: - Data encryption at rest and in transit - Role-based access control and user authentication - Secure servers and protected cloud infrastructure - Regular security updates and vulnerability management - Audit logs and activity monitoring 4. Access Control Access to sensitive data is granted strictly on a need-to-know basis. Users are assigned roles and permissions to ensure that data is accessible only to authorized healthcare professionals and system administrators. 5. Data Storage and Backup All data is securely stored and regularly backed up to prevent data loss. Backup systems are protected with the same level of security as primary data and are used solely for recovery and continuity purposes. 6. Data Breach Management In the event of a data breach or security incident, Diagnox will: - Promptly investigate and contain the incident - Take corrective and preventive measures - Notify affected users and authorities where legally required 7. User Responsibilities Users of the Diagnox platform are responsible for: - Protecting their login credentials - Ensuring secure access to their devices - Reporting any suspected unauthorized access or data misuse immediately 8. Compliance and Legal Obligations Diagnox follows applicable data protection laws and healthcare regulations and ensures that data handling practices align with legal and regulatory requirements. 9. Data Retention and Disposal Data is retained only for the duration required for operational, legal, and regulatory purposes. When data is no longer needed, it is securely deleted or anonymized. 10. Policy Review and Updates This Data Protection Policy is reviewed periodically and may be updated to reflect changes in legal requirements, technology, or business practices. Continued use of the platform constitutes acceptance of the updated policy. 11. Contact and Reporting Any concerns, incidents, or questions related to data protection should be reported to Diagnox support through the platform.