Privacy Policy

1. Information We Collect

We collect information that you provide directly to us:

• Personal Information: Name, email address, phone number, passport number, date of birth
• Medical Information: Medical condition, treatment history, current medications, diagnostic reports (only what you choose to share)
• Payment Information: Credit card details, billing address (processed securely through third-party payment processors)
• Communication Data: Emails, messages, and other communications you send to us

2. How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve our medical concierge services
• Process your payments and send you related information
• Respond to your comments, questions, and requests
• Communicate with you about products, services, and events
• Coordinate with hospitals and healthcare providers on your behalf
• Comply with legal and regulatory requirements

3. Legal Basis for Processing (GDPR)

For users in the European Economic Area (EEA), our legal basis for processing your personal information includes:

• Contract Performance: Processing necessary to fulfill our service agreement with you
• Legitimate Interests: Processing for our legitimate business interests (e.g., improving services, fraud prevention)
• Legal Obligation: Processing required by applicable laws and regulations
• Consent: Processing based on your explicit consent (which you may withdraw at any time)

4. Information Sharing and Disclosure

We do NOT sell, trade, or rent your personal information to third parties. We may share your information only in the following situations:

• With Healthcare Providers: To coordinate your medical care (hospitals, doctors, clinics in Beijing)
• With Service Providers: Third-party vendors who perform services on our behalf (payment processing, email delivery, hosting)
• With Your Consent: When you explicitly agree to share information
• Legal Requirements: When required by law or to protect our rights

5. Data Security

We implement industry-standard technical and organizational measures to protect your personal information:

• Encryption of data in transit (SSL/TLS)
• Secure servers with restricted access
• Regular security assessments and updates
• Staff training on data protection and medical confidentiality

Important: While we use industry-standard security measures, no method of transmission over the Internet is 100% secure.

6. Your Rights

You have the following rights regarding your personal information:

• Access: Request a copy of your personal information
• Correction: Request correction of inaccurate or incomplete information
• Deletion: Request deletion of your personal information (subject to legal retention requirements)
• Opt-Out: Unsubscribe from marketing communications at any time
• Data Portability: Request transfer of your data to another service provider

Right to File a Complaint

You have the right to file a complaint with your local data protection authority if you believe we have violated your privacy rights. We encourage you to contact us first so we can address your concern directly.

7. Medical Information Special Protection

Medical information receives enhanced protection:

• Access limited to authorized medical coordination staff only
• Stored separately from general personal information
• Never shared for marketing or commercial purposes
• Destroyed securely when no longer needed

Data Retention Period

• Medical Records: Retained for 15 years per Chinese medical regulations (from last service date)
• Personal Data: Deleted within 30 days after service completion, unless legal retention requirements apply
• Communication Records: Retained for 3 years for quality assurance and dispute resolution
• Payment Records: Retained for 7 years per tax and accounting regulations

8. International Data Transfers

As an international patient, your data may be transferred across borders:

• Data may be processed in China (where our services are delivered)
• We use standard contractual clauses and encryption to protect cross-border data transfers
• We comply with China's Personal Information Protection Law (PIPL) and applicable international data transfer regulations
• By using our services, you consent to data transfer to China

9. Cookies and Tracking

We use cookies and similar tracking technologies to:

• Remember your preferences
• Understand how you use our website
• Improve user experience
• Analyze website traffic (Google Analytics)

Cookie Types We Use

Control: You can control cookie settings through your browser preferences. Disabling cookies may affect website functionality.

10. Children's Privacy

Our services are not directed to children under 18 (or 16 in EU jurisdictions). We do not knowingly collect personal information from children.

For patients under 18, all services must be arranged by a parent or legal guardian. By booking our services, you warrant that you are 18 or older, or that you are the parent/guardian of the patient.

If you are a parent and believe your child has provided us with personal information without your consent, please contact us immediately.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by:

• Posting the new Privacy Policy on this page
• Updating the "Last Updated" date
• Emailing you for significant changes (if you have an account)

12. Automated Decision-Making

We do NOT use automated decision-making or profiling for medical recommendations or service eligibility.

All decisions regarding your care coordination are made by human staff based on your individual needs and preferences. We may use automated systems for:

• Website analytics (Google Analytics)
• Email delivery tracking
• Payment processing fraud detection (by third-party processors)

13. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

• Email: hello@13801380.site
• WeChat: louisleo99
• Response Time: Within 2 hours during business hours