Civora Care Clinic
Civora Care Clinic
Privacy Policy
Home
Data Protection

Privacy Policy

This policy explains how Civora Care Clinic collects, uses, protects, stores, and shares personal information through its website and patient portal.

Effective Date: July 11, 2026

1. Overview

Civora Care Clinic respects your privacy and is committed to protecting personal information handled through this website, patient portal, donation support system, verification workflow, and clinic service listings.

This policy is intended to align with internationally recognised privacy principles, including transparency, lawful processing, purpose limitation, data minimisation, accuracy, storage limitation, confidentiality, and accountability.

2. Information We Collect

  • Account information such as name, email address, password, and profile details.
  • Portal activity such as donation requests, selected support items, reward records, and verification status.
  • Verification information such as amount paid, payment reference, proof files, notes, and administrative decisions.
  • Clinic service interaction information, including service views, requests, and related communication.
  • Technical information such as device, browser, session, IP, security logs, and access records.
  • Communication records such as system emails, support messages, and notification logs.

3. Health and Sensitive Information

Where clinic services, patient communications, verification activities, or portal records involve health-related, identity-related, payment-related, or other sensitive information, we treat such information with additional care and restrict access to authorised personnel only.

4. How We Use Information

  • To create, authenticate, and manage user accounts.
  • To provide clinic service information and patient portal functionality.
  • To process donation requests, verification submissions, and admin review decisions.
  • To maintain reward records, payment verification history, and approval status.
  • To send account, verification, security, service, and administrative notifications.
  • To prevent fraud, abuse, unauthorised access, and platform misuse.
  • To comply with legal, regulatory, accounting, audit, and clinical governance obligations.

5. Lawful Basis for Processing

Depending on the context, we may process personal information because it is necessary to provide requested services, manage the patient portal, comply with legal obligations, protect vital interests, support legitimate clinic operations, maintain security, or because you have given consent where consent is required.

Where special category or sensitive information is processed, additional safeguards and appropriate legal conditions may apply.

6. Sharing of Information

We do not sell personal information. Information may be shared only where necessary with authorised clinic staff, administrators, healthcare professionals, technical service providers, payment verification personnel, legal or regulatory authorities, or partners supporting clinic operations under appropriate confidentiality and security expectations.

7. International Data Transfers

If personal information is transferred or accessed outside the country where the clinic operates, appropriate safeguards should be applied where required by applicable data protection laws.

8. Data Security

We use reasonable administrative, technical, and organisational safeguards to protect information against unauthorised access, alteration, disclosure, loss, or misuse. However, no digital platform can guarantee absolute security.

9. Data Retention

We retain personal information only for as long as necessary for clinic operations, verification records, legal compliance, accounting, audit, dispute resolution, security, and legitimate administrative purposes.

10. User Rights

Subject to applicable law, users may request access to their personal information, correction of inaccurate information, deletion where legally permitted, restriction of processing, objection to certain processing, data portability where applicable, or withdrawal of consent where consent is the basis of processing.

11. Cookies and Technical Data

The platform may use cookies, session data, and similar technologies for login sessions, security, user experience, analytics, and platform performance. Disabling cookies may affect portal functionality.

12. Children and Minors

This platform is not intended for unsupervised use by minors. Where information relates to a minor, a parent, guardian, or authorised representative should manage access and consent where required.

13. Updates to This Policy

We may update this Privacy Policy to reflect legal, operational, clinical, or platform changes. The effective date will be updated when changes are made.

14. Contact

For privacy questions, data requests, or concerns, contact Civora Care Clinic through the official contact information published on the website.