Privacy Policy

At Rockbalm Health, we are committed to protecting the privacy and personal health information of our seniors and their families. This Privacy Policy explains how we collect, use, store, and protect your data in compliance with the Nigeria Data Protection Act (NDPA) and the Pharmacy Council of Nigeria (PCN) regulations.

1. Information We Collect

To provide comprehensive geriatric care and pharmaceutical services, we collect the following types of information:

  • Personal Identification: Name, age, gender, delivery address, and contact details of the senior and their primary caregiver (the account holder).
  • Health Information: Medical history, current prescriptions, allergies, and lab results required for telecare and medication dispensing.
  • Payment Information: Billing details processed through our secure third-party payment gateways (Paystack/ALAT). Note: We do not store full credit card numbers on our servers.
  • Technical Data: IP addresses and cookies to improve your experience on our website and web app.

2. How We Use Your Data

We use the collected information strictly for:

  • Clinical Care: Enabling our doctors, pharmacists, and dieticians to provide accurate home-visit and telecare services.
  • Regulatory Compliance: Verifying prescriptions as required by the PCN and reporting Adverse Drug Reactions (ADR) to NAFDAC.
  • Logistics: Facilitating the accurate delivery of medications and healthcare devices.
  • Communication: Sending health tips, appointment reminders, and order updates.

3. Data Sharing & Confidentiality

Your health data is treated as "Sensitive Personal Data" under Nigerian law. We do not sell or rent your information. We only share data with:

  • Internal Clinical Teams: Our licensed healthcare professionals involved in the senior's care plan.
  • Regulatory Bodies: When required by law to the PCN or NAFDAC for public safety and audit purposes.
  • Third-Party Partners: Secure logistics partners (delivery addresses only) and payment processors.

4. Security & Storage

We implement industry-standard security measures, including:

  • Encryption: Data transmitted between your device and our servers is encrypted using SSL/TLS technology.
  • Access Control: Only authorized clinical staff with a "need-to-know" basis can access patient medical records.
  • Data Residency: Your data is stored securely, and we take all reasonable steps to ensure it is protected against unauthorized access, loss, or theft.

5. Your Rights

Under the NDPA, you have the right to:

  • Access: Request a copy of the personal data we hold about you or the senior in your care.
  • Correction: Request that we update or correct any inaccurate information.
  • Deletion: Request the deletion of your account and data (subject to legal record-keeping requirements for pharmaceutical prescriptions).
  • Withdraw Consent: You may withdraw your consent for marketing communications at any time.

6. Cookies

Our website uses cookies to enhance navigation and analyze site traffic. You can choose to disable cookies in your browser settings, though some features of the platform may not function correctly.

7. Contact Our Data Protection Officer

If you have questions about this policy or how your data is handled, please contact our Data Protection Officer (DPO) at:

rockbalmhealth@gmail.com