Privacy Policy
This policy explains how Civora Care Clinic collects, uses, protects, stores, and shares personal information through its website and patient portal.
1. Overview
Civora Care Clinic respects your privacy and is committed to protecting personal information handled through this website, patient portal, donation support system, verification workflow, and clinic service listings.
This policy is intended to align with internationally recognised privacy principles, including transparency, lawful processing, purpose limitation, data minimisation, accuracy, storage limitation, confidentiality, and accountability.
2. Information We Collect
- Account information such as name, email address, password, and profile details.
- Portal activity such as donation requests, selected support items, reward records, and verification status.
- Verification information such as amount paid, payment reference, proof files, notes, and administrative decisions.
- Clinic service interaction information, including service views, requests, and related communication.
- Technical information such as device, browser, session, IP, security logs, and access records.
- Communication records such as system emails, support messages, and notification logs.
3. Health and Sensitive Information
Where clinic services, patient communications, verification activities, or portal records involve health-related, identity-related, payment-related, or other sensitive information, we treat such information with additional care and restrict access to authorised personnel only.
4. How We Use Information
- To create, authenticate, and manage user accounts.
- To provide clinic service information and patient portal functionality.
- To process donation requests, verification submissions, and admin review decisions.
- To maintain reward records, payment verification history, and approval status.
- To send account, verification, security, service, and administrative notifications.
- To prevent fraud, abuse, unauthorised access, and platform misuse.
- To comply with legal, regulatory, accounting, audit, and clinical governance obligations.
5. Lawful Basis for Processing
Depending on the context, we may process personal information because it is necessary to provide requested services, manage the patient portal, comply with legal obligations, protect vital interests, support legitimate clinic operations, maintain security, or because you have given consent where consent is required.
Where special category or sensitive information is processed, additional safeguards and appropriate legal conditions may apply.
6. Sharing of Information
We do not sell personal information. Information may be shared only where necessary with authorised clinic staff, administrators, healthcare professionals, technical service providers, payment verification personnel, legal or regulatory authorities, or partners supporting clinic operations under appropriate confidentiality and security expectations.
7. International Data Transfers
If personal information is transferred or accessed outside the country where the clinic operates, appropriate safeguards should be applied where required by applicable data protection laws.
8. Data Security
We use reasonable administrative, technical, and organisational safeguards to protect information against unauthorised access, alteration, disclosure, loss, or misuse. However, no digital platform can guarantee absolute security.
9. Data Retention
We retain personal information only for as long as necessary for clinic operations, verification records, legal compliance, accounting, audit, dispute resolution, security, and legitimate administrative purposes.
10. User Rights
Subject to applicable law, users may request access to their personal information, correction of inaccurate information, deletion where legally permitted, restriction of processing, objection to certain processing, data portability where applicable, or withdrawal of consent where consent is the basis of processing.
11. Cookies and Technical Data
The platform may use cookies, session data, and similar technologies for login sessions, security, user experience, analytics, and platform performance. Disabling cookies may affect portal functionality.
12. Children and Minors
This platform is not intended for unsupervised use by minors. Where information relates to a minor, a parent, guardian, or authorised representative should manage access and consent where required.
13. Updates to This Policy
We may update this Privacy Policy to reflect legal, operational, clinical, or platform changes. The effective date will be updated when changes are made.
14. Contact
For privacy questions, data requests, or concerns, contact Civora Care Clinic through the official contact information published on the website.