Privacy Policy

1. Introduction

Bedside ("we," "our," or "us") is committed to protecting your privacy and personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our e-hospital management services, including through WhatsApp and other communication channels.

As a healthcare technology platform, we adhere to the highest standards of data protection and privacy, including compliance with Singapore's Personal Data Protection Act (PDPA), healthcare regulations, and international privacy laws where applicable.

2. Information We Collect

2.1 Personal Information

• Name and contact information (phone number, email address)
• Professional credentials and hospital affiliations
• WhatsApp phone number and profile information
• User authentication and account information

2.2 Healthcare Data

• Patient coordination information (non-identifying where possible)
• Hospital workflow and operational data
• Communication logs related to patient care coordination
• Medical appointment and scheduling information

2.3 Technical Information

• Device information and IP addresses
• Usage patterns and interaction data
• Performance metrics and error logs
• WhatsApp Business API interaction data

3. How We Use Your Information

We use the collected information for the following purposes:

• Providing and improving our e-hospital management services
• Facilitating communication between healthcare professionals
• Coordinating patient care and hospital operations
• Ensuring platform security and preventing unauthorized access
• Complying with healthcare regulations and legal requirements
• Analyzing usage patterns to improve service quality
• Providing customer support and technical assistance

4. WhatsApp Integration Privacy

When you interact with Bedside through WhatsApp:

• Messages are protected by WhatsApp's end-to-end encryption
• We process messages only to provide our healthcare coordinationservices
• We do not store message content longer than necessary for service delivery
• You can opt out by sending "STOP" to our WhatsApp number
• WhatsApp's own privacy policy also applies to your interactions
• We comply with WhatsApp Business API policies and guidelines

5. Data Sharing and Disclosure

5.1 Healthcare Professionals

We may share information with other healthcare professionals within your hospital or healthcare network solely for patient care coordination purposes.

5.2 Service Providers

We work with trusted third-party service providers who assist us in operating our platform. These providers are bound by strict confidentiality agreements and data protection requirements.

5.3 Legal Requirements

We may disclose information when required by law, court order, or regulatory authorities, or to protect the rights, property, or safety of Bedside, our users, or others.

5.4 What We Don't Do

• We never sell your personal or healthcare data
• We don't share data for marketing purposes without consent
• We don't use patient data to train AI models without explicit consent
• We don't provide data to insurance companies or employers

6. Data Security

We implement comprehensive security measures to protect your information:

• End-to-end encryption for all data transmission
• Advanced encryption for data storage (AES-256)
• Multi-factor authentication for healthcare professional accounts
• Regular security audits and penetration testing
• SOC 2 Type II compliance and security certifications
• Secure cloud infrastructure with backup and disaster recovery
• Employee background checks and security training

7. Data Retention

We retain your information only as long as necessary for:

• Providing our services and maintaining service quality
• Complying with healthcare record-keeping requirements
• Meeting legal and regulatory obligations
• Resolving disputes and enforcing our agreements

Healthcare data is typically retained for 7 years in compliance with Singapore healthcare regulations, unless a longer retention period is required by law or you request earlier deletion where permissible.

8. Your Rights

Under Singapore's PDPA and other applicable laws, you have the right to:

• Access: Request a copy of your personal data we hold
• Correction: Request correction of inaccurate or incomplete data
• Deletion: Request deletion of your data (subject to legal requirements)
• Portability: Request transfer of your data to another service
• Withdrawal: Withdraw consent for data processing where applicable
• Objection: Object to certain types of data processing

To exercise these rights, please contact us at oliverchanyw@gmail.com. We will respond within 30 days of receiving your request. For data deletion requests, you can also use our dedicated Data Deletion Request page.

9. International Data Transfers

If we transfer your data outside of Singapore, we ensure appropriate safeguards are in place, including:

• Standard contractual clauses approved by relevant authorities
• Adequacy decisions for countries with equivalent data protection
• Additional security measures for healthcare data
• Compliance with both Singapore and destination country requirements

10. Cookies and Tracking

We use cookies and similar technologies to:

• Maintain your login session and preferences
• Improve platform performance and user experience
• Analyze usage patterns (anonymized data only)
• Provide security features and fraud prevention

You can control cookie settings through your browser preferences. Some features may not function properly if you disable cookies.

11. Children's Privacy

Bedside is designed for healthcare professionals and is not intended for use by individuals under 18 years of age. We do not knowingly collect personal information from children under 18.

12. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, technology, or legal requirements. We will notify you of significant changes through our platform or via email. Your continued use of our services after such changes constitutes acceptance of the updated policy.