Privacy Policy & Data Confidentiality

Last updated: May 2025 · Applies to SehatCheck (sehatcheck.pk)

1. Who We Are

SehatCheck is Pakistan's healthcare review platform. We help patients find and evaluate doctors across major cities. We are the data controller for all information collected through this platform.

2. What Information We Collect

When you submit a review, we collect:

  • Review content — ratings, written review, visit details (displayed publicly after moderation)
  • Display name — shown as 'Sara A.' only, never your full name
  • Age group — shown publicly (e.g. '31–45')
  • Phone number — for verification only, stored encrypted, never shown publicly
  • Photos — optional, shown publicly only after moderation approval
  • IP address — logged automatically, used for fraud prevention, deleted after 90 days

3. How We Use Your Information

  • To verify you are a genuine patient before publishing your review
  • To moderate and display approved reviews on doctor profiles
  • To prevent spam and fraudulent submissions
  • We do NOT use your data for advertising or marketing
  • We do NOT sell your data to any third party, ever

4. Phone Number Storage & Security

Your phone number is:

  • Collected only when you voluntarily provide it and consent
  • Stored encrypted using AES-256 encryption
  • Used only to verify your review is from a real patient
  • Never displayed publicly on any doctor profile or review
  • Never shared with doctors, clinics, or any third party
  • Deleted upon your written request within 7 days

5. Your Rights

You have the right to:

  • Access — request a copy of all data we hold about you
  • Delete — request deletion of your review and all personal data
  • Correct — request correction of inaccurate information
  • Withdraw consent — withdraw consent for phone number storage at any time

To exercise these rights, email: privacy@sehatcheck.pk

6. Data Storage & Security

  • Data is stored on Supabase (PostgreSQL) hosted on AWS
  • All data is encrypted at rest and in transit (TLS 1.3)
  • Phone numbers are additionally encrypted at the application layer (AES-256)
  • IP addresses are automatically deleted after 90 days

7. Doctor Reviews & Legal

  • Reviews represent the genuine personal experiences of patients
  • We moderate all reviews before publication
  • We remove reviews that are defamatory, false, or not from genuine patients
  • We comply with Pakistan's PECA (Prevention of Electronic Crimes Act) 2016

8. Cookies

SehatCheck uses only essential cookies required for the website to function. We do not use tracking or advertising cookies.

9. Contact

For privacy questions or data requests:

Email: privacy@sehatcheck.pk
Response time: within 5 working days

🔒 Your data is protected. SehatCheck was built to serve patients. We will never misuse your information.