Kara Healthmall is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and disclose your personal information when you use our platform.

1. Introduction

1.1. This Privacy Policy applies to all users of Kara Healthmall, including customers, vendors, and healthcare service providers. 1.2. By accessing or using our website or mobile application, you agree to the collection and use of your data as outlined in this policy.

2. Information We Collect

2.1. Personal Information

When you register, purchase a product, book a service, or interact with the platform, we may collect the following personal data:

• Full Name
• Email Address
• Phone Number
• Shipping and Billing Address
• Payment Details (processed securely, not stored by us)
• Medical Service Preferences (where applicable)

2.2. Non-Personal Information

We also collect non-identifiable data, including:

• Device and browser information
• IP address
• Browsing history on our platform
• Cookies and tracking data

3. How We Use Your Information

We use collected information to:

• Facilitate transactions between customers and vendors.
• Verify vendor and service provider credentials.
• Improve user experience through personalized recommendations.
• Process payments securely.
• Communicate order and service updates.
• Enhance platform security and fraud prevention.
• Comply with legal and regulatory obligations.

4. Data Sharing & Third-Party Access

4.1. Who We Share Data With

We may share user data with:

• Vendors and healthcare providers to fulfill orders and bookings.
• Payment processors for secure transactions.
• Logistics partners for delivery services.
• Government or regulatory bodies when legally required.
• Third-party service providers for analytics and platform enhancements.

4.2. What We Never Share

• We do not sell user data to third parties.
• We do not share sensitive medical information without user consent.

5. Data Storage & Security

5.1. We implement industry-standard security measures, including encryption, to protect user data. 5.2. Personal data is stored securely on our servers and is only accessible by authorized personnel. 5.3. In case of a data breach, we will notify affected users and take immediate remedial actions.

6. Cookies & Tracking Technologies

6.1. We use cookies to enhance your browsing experience and analyze platform performance. 6.2. Users can adjust cookie settings through their browser preferences. 6.3. Third-party tracking tools (e.g., Google Analytics) help us improve platform functionality.

7. User Rights & Data Control

7.1. Access & Correction

Users can:

• Request access to their personal data.
• Update or correct inaccurate information.

7.2. Data Deletion

• Users can request account deletion and data removal by contacting support.
• Some data may be retained for legal or regulatory purposes.

7.3. Opt-Out Options

• Users can opt out of marketing communications at any time.
• Cookie settings can be adjusted to limit tracking.

8. Compliance with Local Laws

8.1. We comply with data protection regulations in Sub-Saharan Africa. 8.2. Users’ medical information is handled in compliance with applicable healthcare privacy laws.

9. Changes to This Policy

9.1. Kara Healthmall may update this Privacy Policy periodically. 9.2. Users will be notified of significant changes through email or platform announcements.

10. Contact Us

For privacy-related inquiries, contact:

• Email: [email protected]
• Phone: +XXX-XXX-XXXX
• Address: [Company Address]

By using Kara Healthmall, you acknowledge that you have read, understood, and agree to this Privacy Policy.

 

 

Kara Healthmall Privacy Policy

Last Updated: [Date]

Kara Healthmall is committed to protecting your privacy and complying with data protection laws, including the General Data Protection Regulation (GDPR) and the Health Insurance Portability and Accountability Act (HIPAA) where applicable. This Privacy Policy explains how we collect, use, store, and disclose your personal and health-related information when you use our platform.

1. Introduction

1.1. This Privacy Policy applies to all users of Kara Healthmall, including customers, vendors, and healthcare service providers. 1.2. By accessing or using our website or mobile application, you agree to the collection and use of your data as outlined in this policy. 1.3. Kara Healthmall is committed to ensuring the confidentiality, integrity, and availability of personal health data in accordance with HIPAA (for applicable users) and GDPR (for EU-based users or entities handling EU citizens' data).

2. Information We Collect

2.1. Personal Information

When you register, purchase a product, book a service, or interact with the platform, we may collect the following personal data:

• Full Name
• Email Address
• Phone Number
• Shipping and Billing Address
• Payment Details (processed securely, not stored by us)
• Medical Service Preferences (where applicable)

2.2. Protected Health Information (PHI) (HIPAA Compliance)

If you use Kara Healthmall for healthcare-related services, we may collect Protected Health Information (PHI), including but not limited to:

• Medical history and consultation records
• Diagnostic and treatment details
• Prescriptions and medical recommendations
• Communication with healthcare providers

2.3. Non-Personal Information

We also collect non-identifiable data, including:

• Device and browser information
• IP address
• Browsing history on our platform
• Cookies and tracking data

3. How We Use Your Information

We use collected information to:

• Facilitate transactions between customers and vendors.
• Verify vendor and service provider credentials.
• Improve user experience through personalized recommendations.
• Process payments securely.
• Communicate order and service updates.
• Enhance platform security and fraud prevention.
• Comply with legal and regulatory obligations under HIPAA and GDPR.

4. Data Sharing & Third-Party Access

4.1. Who We Share Data With

We may share user data with:

• Vendors and healthcare providers to fulfill orders and bookings.
• Payment processors for secure transactions.
• Logistics partners for delivery services.
• Government or regulatory bodies when legally required.
• Third-party service providers for analytics and platform enhancements.

4.2. HIPAA & GDPR Compliance in Data Sharing

• HIPAA: PHI is only shared with authorized healthcare providers and business associates under a Business Associate Agreement (BAA).
• GDPR: Data transfers outside the EU will be protected by Standard Contractual Clauses (SCCs) or other lawful safeguards.

4.3. What We Never Share

• We do not sell user data to third parties.
• We do not share sensitive medical information without user consent.

5. Data Storage & Security

5.1. We implement industry-standard security measures, including encryption, firewalls, and multi-factor authentication (MFA), to protect user data. 5.2. Personal data and PHI are stored securely on HIPAA-compliant servers and protected under GDPR standards. 5.3. In case of a data breach, we will notify affected users within 72 hours (GDPR) or within the HIPAA-mandated timeframe.

6. Cookies & Tracking Technologies

6.1. We use cookies to enhance your browsing experience and analyze platform performance. 6.2. Users can adjust cookie settings through their browser preferences. 6.3. Third-party tracking tools (e.g., Google Analytics) help us improve platform functionality.

7. User Rights & Data Control

7.1. GDPR Rights (for EU Users)

Users have the right to:

• Access their personal data.
• Correct inaccurate or incomplete information.
• Request data deletion (Right to Be Forgotten).
• Restrict processing of their data.
• Data portability (request their data in a structured, commonly used format).

7.2. HIPAA Rights (for Healthcare Data)

• Users can request access to their medical records.
• Users can request amendments to incorrect PHI.
• Users can obtain an accounting of disclosures of their PHI.

7.3. Data Deletion & Retention

• Users can request account deletion and data removal by contacting support.
• Some data may be retained for legal or regulatory purposes.

7.4. Opt-Out Options

• Users can opt out of marketing communications at any time.
• Cookie settings can be adjusted to limit tracking.

8. Compliance with Local Laws

8.1. We comply with data protection regulations in Sub-Saharan Africa, GDPR for EU users, and HIPAA for U.S.-based healthcare interactions. 8.2. Users’ medical information is handled in compliance with applicable healthcare privacy laws.

9. Data Protection Officer (DPO) & HIPAA Compliance Officer

9.1. Kara Healthmall has appointed a Data Protection Officer (DPO) to oversee GDPR compliance. 9.2. A HIPAA Compliance Officer ensures adherence to U.S. healthcare data protection laws. 9.3. Users can contact these officers for any privacy-related inquiries.

10. Changes to This Policy

10.1. Kara Healthmall may update this Privacy Policy periodically. 10.2. Users will be notified of significant changes through email or platform announcements.

11. Contact Us

For privacy-related inquiries, contact:

• Email: [email protected]
• Phone: +234 803 746 2283
• Address: 17 Ibikunle Street, Yaba, Lagos

• DPO Contact: dpo@ karahealthmall.com
• HIPAA Compliance Officer: [email protected]

 

By using Kara Healthmall, you acknowledge that you have read, understood, and agree to this HIPAA & GDPR-compliant Privacy Policy.