Privacy Policy

Introduction

Oxford Hospital (“Oxford Hospital”, “Hospital”, “we”, “our”, or “us”) is committed to protecting the privacy, confidentiality, and security of the personal information entrusted to us by our patients, attendants, visitors, employees, healthcare professionals, and website users.

This Privacy Policy explains how we collect, use, process, store, share, and protect personal information when you access our website https://oxfordhospitals.in/, visit our hospital facilities, use our healthcare services, or otherwise interact with us.

This Privacy Policy is issued in accordance with applicable laws and regulations, including:

• The Digital Personal Data Protection Act, 2023 (DPDPA)
• The Information Technology Act, 2000
• The Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011
• Applicable healthcare, medical record, and regulatory requirements in India

By using our website or healthcare services, you acknowledge and consent to the practices described in this Privacy Policy.

Scope & Applicability

This Privacy Policy applies to:

• Patients receiving medical care and treatment
• Family members, attendants, and caregivers
• Website visitors and online users
• Individuals booking appointments or making enquiries
• Healthcare professionals associated with the hospital
• Vendors, consultants, and service providers interacting with the hospital

This policy applies to both online and offline collection of personal information.

Information We Collect

We collect information necessary to provide safe, efficient, and lawful healthcare services.

Personal Information

• Full name
• Date of birth
• Age
• Gender
• Residential address
• Contact number
• Email address
• Emergency contact information

Health & Medical Information

• Medical history
• Consultation records
• Clinical assessments
• Diagnostic reports
• Laboratory results
• Radiology and imaging records
• Prescriptions
• Surgical records
• Treatment plans
• Discharge summaries
• Follow-up care information

Financial Information

• Billing information
• Payment details
• Insurance information
• Health scheme details
• Reimbursement documentation

Technical Information

When you visit our website, we may automatically collect:

• IP address
• Browser information
• Device information
• Operating system details
• Website usage data
• Cookie information
• Session analytics

Sensitive Personal Data

Certain medical and health-related information collected by Oxford Hospital may be classified as sensitive personal data and is processed only for legitimate healthcare, legal, and operational purposes.

Legal Basis for Processing Personal Data

Oxford Hospital processes personal data for lawful purposes including:

Healthcare Delivery

• Patient registration
• Diagnosis and treatment
• Emergency medical care
• Clinical management
• Surgical procedures
• Follow-up treatment

Legal & Regulatory Compliance

• Compliance with healthcare regulations
• Medical record maintenance
• Government reporting requirements
• Insurance and audit obligations
• Public health responsibilities

Hospital Administration

• Appointment scheduling
• Billing and payment processing
• Quality assurance
• Operational management
• Patient communication

Research & Healthcare Improvement

Anonymized and aggregated information may be used for clinical research, quality improvement, training, statistical analysis, and healthcare planning, subject to applicable ethical and legal requirements.

Consent for Data Processing

By accessing our website, registering for treatment, scheduling appointments, or providing information to us, you consent to the collection and processing of your personal information for the purposes outlined in this Privacy Policy.

Where required by law, explicit consent will be obtained before collecting or processing sensitive personal data.

You may withdraw consent where legally permissible, subject to healthcare, regulatory, and record-retention obligations.

How We Use Your Information

Your information may be used for:

• Medical diagnosis and treatment
• Emergency care services
• Patient care coordination
• Appointment management
• Laboratory and diagnostic services
• Insurance verification and claims processing
• Billing and payment administration
• Internal audits and quality assurance
• Regulatory reporting and compliance
• Patient communication and service updates
• Website administration and security

Information Sharing & Disclosure

Oxford Hospital does not sell, rent, or commercially trade personal information.

Information may be shared only when necessary with:

Healthcare Providers

• Treating doctors
• Consultants and specialists
• Diagnostic centres
• Laboratories
• Referral hospitals

Service Providers

• Technology service providers
• Payment processors
• Insurance administrators
• Medical record management systems

Regulatory & Legal Authorities

Information may be disclosed where required by:

• Applicable laws
• Court orders
• Government authorities
• Healthcare regulatory bodies
• Public health requirements

All disclosures are made only to the extent necessary and legally permitted.

Data Security

Oxford Hospital implements reasonable technical, administrative, and organizational safeguards to protect personal information.

These measures include:

• Secure data storage systems
• Access control mechanisms
• Role-based authorization
• Data encryption where appropriate
• Network security controls
• Periodic security assessments
• Employee confidentiality obligations

While we strive to protect personal information, no electronic system can guarantee absolute security.

Data Retention

Personal information is retained only for as long as necessary to:

• Provide healthcare services
• Maintain medical records
• Meet legal and regulatory obligations
• Resolve disputes
• Enforce agreements

Upon expiry of applicable retention periods, information may be securely deleted, anonymized, or archived in accordance with legal requirements.

Cookies & Website Analytics

Our website may use cookies and similar technologies to:

• Improve website functionality
• Enhance user experience
• Analyse website traffic
• Monitor website performance
• Maintain website security

Users may modify browser settings to manage cookie preferences. Disabling cookies may affect certain website features.

Your Rights

Subject to applicable laws, you may have the right to:

Access

Request information regarding personal data held by the hospital.

Correction

Request correction of inaccurate or incomplete information.

Erasure

Request deletion of personal information where legally permissible.

Withdrawal of Consent

Withdraw consent for processing activities that rely on consent.

Grievance Redressal

Submit concerns regarding the handling of personal information.

Requests may be subject to identity verification and applicable legal restrictions.

Third-Party Websites

Our website may contain links to third-party websites, healthcare resources, insurance providers, or external service platforms.

Oxford Hospital is not responsible for the privacy practices, content, security, or policies of third-party websites. Users should review their privacy policies separately.

Changes to This Privacy Policy

Oxford Hospital reserves the right to revise, update, or amend this Privacy Policy from time to time to reflect legal, operational, or technological developments.

Updated versions will be published on this page with a revised effective date. Continued use of our services after such updates constitutes acceptance of the revised policy.

Contact & Grievance Redressal

For questions, concerns, data access requests, or privacy-related grievances, please contact:

Oxford Hospital

Website:
https://oxfordhospitals.in/

Email:
info@oxfordhospitals.in

We will make reasonable efforts to respond to privacy-related requests and grievances within the timelines prescribed under applicable law.