1. Introduction
Moonjar Technologies Private Limited values your privacy and is committed to protecting your personal data.
Personal data refers to any information which can be used to identify you, such as your name, email addresses, phone number, health information, or billing information (Personal Data). This Privacy Policy explains what Personal Data we process, why we process it, how we use it, with whom we share your Personal Data, and your rights regarding your Personal Data, when you access, register on, browse and use our Platform and Services.
This Privacy Policy must be read along with the Terms (available at: [•]). Capitalised terms not defined here shall have the same meaning as under the Terms.
What data do we process and why?
When you use our Platform, we may process your Personal Data to provide you our Services, including to help you create an account, manage yours and your families’ health data, schedule reminders, generate summaries of information; comply with legal obligations; resolve disputes; manage risks. In particular, we collect:
Contact details and profile data, such as full name, phone number, email address.
Providing you our Services
Verifying your identity and administering your account
Communicating with you, including, for marketing of our Platform or informing you about updates to the Platform, this Privacy Policy or the Terms
Medical Records, such as prescriptions, test results, diagnostic reports, or clinical notes discharge summaries, vaccination records, medication lists.
Other profile data, such as, any notes that you upload, AI-generated summaries based on the medical records uploaded and automated reminders set by you.
Providing you our Services, including assisting you in managing yours and your family members’ health records, generating AI summaries
Records of payment timelines
Improving our services
Ensuring platform security, monitoring for fraud, etc.
Personalizing your experience and recommendations
Providing technical support and troubleshooting
Where we collect your Personal Data from?
We collect your Personal Data:
(a)
Directly from you: This includes any Personal Data that you share or upload on the Platform, including Medical Records, profile details, notes, responses to our queries.
(b)
Automatically: When you use our Platform, we use automated means such as cookies and similar technologies to automatically collect certain technical and behavioural data about you, including your Personal Data, that helps us in improving your experience.
(c )
From a Family Owner: If you are a Family Member (defined in the Terms), we may receive your Personal Data from the Family Owner who manages the profile on your behalf. If you have queries/ wish to exercise your rights in relation to your Personal Data, please refer to section 6 of this Policy.
(d)
Third parties: We may also receive data, including Personal Data, about you from external sources, such as third-party platforms. This includes third-party analytics service providers, marketing and advertisement service providers, and social media channels, as well as other public sources/platforms (such as public database).
Who do we share your Personal Data with?
We share your Personal Data with third parties in accordance with this Privacy Policy and as required by law.
1
Service providers
We may disclose your data with third parties (such as governmental authorities, law enforcement agencies, etc.) if:
(a) necessary to comply with applicable laws and regulations or directions of governmental authorities or law enforcement agencies, court judgments, decree or orders under any law in force;
(b) required to respond to a valid warrant or court orders;
(c ) necessary to prevent, detect and prosecute any kind of fraudulent/illegal behaviour;
(d) to enforce our Terms or other policies;
(e) needed to investigate and defend ourselves against claims or allegations;
(f) necessary to protect the rights and safety of Moonjar, our customers, personnel or others;
(g) required by our auditors and legal advisors to assess our disclosure obligations and rights under this Privacy Policy;
(h) permitted or required by law.
2
Legal and regulatory purposes
We engage third-party service providers to provide services, such as cloud hosting, data storage, APIs for optical character recognition (OCR) extraction, large language models (LLMs) for document synthesis, and communication services for sending notifications via WhatsApp, SMS and email and for providing support. These providers process your Personal Data only on our behalf and are contractually restricted from using it for any other purposes except as instructed by us or required by Applicable Law.
3
Corporate Transactions / Change in Control
If we are involved in a merger, acquisition, restructuring, or sale of assets, your Personal Data may be transferred as part of that transaction.
4
With your consent
If you give explicit consent or make a specific request, we may share your data with other parties for purposes not covered in this Privacy Policy.
5. How long do we retain your Personal Data?
We retain any Personal Data we collect from you for as long as needed to make available our Services and Platform. We may further retain and use such Personal Data only as necessary to comply with legal obligations, maintain accurate accounting, financial and operational records, resolve disputes, and enforce agreements. When Personal Data is no longer required for these purposes or other applicable obligations, we will securely delete or anonymize it. Anonymized and aggregated information may be retained for analytics, research, or other legitimate business uses.
You may choose to delete your account/ profile and Personal Data by exercising the features on the Platform or by writing to us at [•]. Once you delete your account/ profile, we delete your Medical Records and other profile information. While we work to fulfil such deletion requests, we may need to retain certain Personal Data for a while longer for the following reasons:
• to perform our contractual obligations to which you are subject or to respond to your questions or provide necessary service or support;
• to prevent fraud, resolve complaints, address inquiries, or exercise/defend legal claims, including providing evidence in legal proceedings;
to comply with legal obligations, exercise our rights, resolve disputes, or for security and safety reasons, as permitted under the law (such as adhering to applicable statutes of limitations or regulatory investigations).
Do note that deletion may not be immediate and may require a reasonable period to propagate across systems, backups, and archives.
6. Your rights
You have certain rights regarding your Personal Data:
(a)
Right to access information about your Personal Data: You can ask us for a summary of your Personal Data, the processing activity, and the recipients with whom we have shared your Personal Data, along with a description of the Personal Data shared.
(b)
Right to seek correction and erasure of Personal Data: If you believe that the Personal Data we hold is inaccurate, incomplete or outdated, you can write to us. You may also request deletion of your data; however, in certain cases, we may need to retain it for legal or regulatory reasons (See section 5 [How long do we retain your Personal Data?] above).
(c )
Right to grievance redressal: If you wish to file a grievance, you may contact our Data Protection Officer / Grievance Redressal Officer in accordance with this Privacy Policy. If your grievance remains unresolved, please be informed that you have the right to escalate it to the competent supervisory authority.
(d)
Right to nominate: You can designate another individual to exercise your rights under this Privacy Policy on your behalf in the event of your death or incapacity.
To exercise any of these rights or seek further information, you can write to us at [•]. We reserve the right to verify your identity before processing your request, and not to respond to complaints that we believe are manifestly false, unfounded, or frivolous. Additionally, these rights may be limited in certain cases where we are legally required to process or retain your Personal Data.
How do we protect your Personal Data?
We are committed to ensuring the security of the Personal Data we process, protecting it from unauthorized access, alteration, disclosure, or destruction.
Our employees, agents, contractors, and third parties, who have access to your Personal Data for performance of business functions, are required to process your Personal Data in accordance with this Privacy Policy.
While we make every effort to protect your Personal Data, we understand that no system can guarantee complete security. If you have any concerns, require assistance, or suspect that your interaction with us is no longer secure, please contact us immediately using details in the “Contact us” section below.
8. Third-party links
Our Platform may contain external links, and accordingly you are advised to verify the privacy practices of such other websites. We are not responsible for the manner of use or misuse of information made available by you at such other websites. We encourage you not to provide personal information, without assuring yourselves of the privacy policies of third-party links. Accessing or using these third-party options is done at your own discretion, and we highly recommend reviewing their privacy policies to understand how they treat your data.
9. Cookies and tracking technologies
When you visit our Platform, we may place a number of cookies on your browser. For example, we use cookies to understand visitor and user preferences, improve their experience, and track and analyse usage and other statistical information. Additionally, cookies allow us to bring customized features to you. You can control the use of cookies at the individual browser level. If you elect not to activate the cookie or to later disable cookies, you may still utilise our Platform, but your ability to use some features or areas thereof may be limited. We may use any of the following categories of cookies:
• Essential Cookies: Essential cookies are sometimes called “strictly necessary” as without them we cannot provide the Services or basic functionality. For example, essential cookies help remember your preferences as you navigate the Platform. Essential cookies also keep you logged in into a website. Without them the login functionality would not work.
• Analytics Cookies: These cookies track information about visits to the Platform so that we can make improvements and report our performance. For example: analyse visitor and user behaviour so as to provide more relevant content or suggest certain activities. They collect information about how visitors use the website, the number of each user’s visits and how long a user stays on the website. We might also use analytics cookies to test new ads, pages, or features to see how users react to them.
10. Contact us
Grievance officer:
Name: Shilpa Bhardwaj Endow
Email: shilpa@moonjar.tech
Address: Moonjar Technologies Private Limited, B24, 2nd floor, Mayfair Garden, New Delhi 110016.
We aim to resolve privacy concerns promptly and effectively. If you are not satisfied with our response, and do not think we are handling your Personal Data adequately, you may lodge a complaint with the relevant regulatory authority.
11. Updates to this Privacy Policy
We reserve the right to modify, add, or remove portions of this Privacy Policy, at our sole discretion. We will make reasonable efforts to notify you of any material changes via notifications, SMS or email. Once the revised Privacy Policy is published on our Platform, the changes will take effect immediately unless stated otherwise. Your continued use of our Platform after such updates constitutes consent to the updated policy, to the extent permitted by law. Please take the time to periodically review this Privacy Policy for the latest information on our privacy practices.
