Trust Center

Privacy &
Data Protection

We adhere to the highest international standards to ensure your patient data remains confidential and secure.

ISO 27001

Information Security Management

GDPR

EU Data Protection Regulation

NIST 800-53

Security & Privacy Controls

DPDP Act 2023

India Data Protection

HIPAA Aligned

Healthcare Standards

AES-256

Bank-Grade Encryption

Our Commitment to Your Privacy

Data Ownership

At DuoVitals, we believe the hospital owns its data. Duo Infotech Pvt Ltd acts as a data processor, ensuring your records are encrypted and accessible only to authorized personnel. We never sell, share, or use your patient data for any purpose other than providing our services.

Compliance Standards

We are fully compliant with the Digital Personal Data Protection (DPDP) Act 2023 and follow HIPAA-aligned security protocols for clinical data handling. Our systems undergo regular third-party audits to ensure continuous compliance with evolving regulations.

Infrastructure Security

All data is hosted on secure servers with bank-grade AES-256 encryption. Our infrastructure partner, Hosters House, provides dedicated monitoring to prevent unauthorized access. We maintain 99.9% uptime with automated backups and disaster recovery protocols.

Access Control

We implement role-based access control (RBAC) to ensure that only authorized personnel can access specific patient records. All access is logged and monitored. Multi-factor authentication (MFA) is mandatory for all administrative accounts.

Your Data Rights

Under applicable privacy laws including GDPR and the DPDP Act 2023, you have the following rights regarding your personal data:

Right to Access

Request a complete copy of all personal data we hold about you, provided within 30 days free of charge.

Right to Erasure

Request deletion of your personal data when no longer necessary. We will permanently delete within 14 business days.

Data Portability

Receive your data in a structured, machine-readable format to transfer to another provider seamlessly.

Withdraw Consent

Revoke consent for data processing at any time through account settings or our privacy team.

To exercise any of these rights, contact our privacy team at privacy@duovitals.com

Questions About Our Privacy Policy?

Our team is here to help you understand how we protect your data.

Contact Privacy Team