Privacy Policy

Classic Diagnostics ("we", "us", "our") operates classicdiagnostics.in and provides diagnostic services across Delhi & Noida. This Privacy Policy explains what information we collect, how we use it, who we share it with, and the rights you have over your data. By using our website or services, you agree to this Policy.

We are committed to safeguarding the privacy of every patient and visitor in compliance with the Digital Personal Data Protection Act, 2023 (DPDP Act), the Indian Medical Council (Professional Conduct) Regulations, and all applicable patient-confidentiality laws.

1. Information we collect

1.1 Information you provide directly

• Identity & contact details — name, age, gender, phone, email, postal address.
• Health information — referring doctor, prescriptions, medical history relevant to the test ordered, sample-collection address, test results.
• Payment details — billed at the time of test; we use third-party payment gateways and do not store full card / bank credentials.
• Communication — messages you send via contact forms, WhatsApp, email or phone.

1.2 Information collected automatically

• Usage data — pages visited, time on page, referrer, device type, browser — collected via Google Analytics with IP-anonymisation enabled.
• Cookies & similar technologies — used for site functionality, location preferences and analytics. You can disable cookies through your browser settings.

2. How we use your information

• To schedule, perform and deliver the diagnostic tests you book.
• To share reports with you and (with your consent) with your treating doctor.
• To process payments and issue invoices.
• To contact you about appointments, sample collection, reports, and follow-ups.
• To comply with legal, regulatory and accreditation requirements (NABL, ICMR, statutory reporting of notifiable diseases).
• To improve our services, website and patient experience.

3. Who we share your information with

We do not sell your personal or health data to anyone. Sharing happens only in the following limited situations:

• Your treating doctor — when you provide their details at the time of booking.
• Empanelled health schemes (CGHS, ECHS, ONGC, BHEL etc.) and your insurance provider — only the information required for claim processing.
• Service providers — payment gateways, SMS/email delivery, cloud hosting, all under strict confidentiality agreements.
• Statutory authorities — when required by law (e.g. notifiable infectious diseases, court orders).

4. How we protect your data

• All reports are stored on encrypted servers with access restricted to authorised personnel only.
• HTTPS / TLS encryption on every page of our website.
• Strict role-based access control inside the lab management system.
• Regular security reviews and staff training on patient-data confidentiality.
• Physical samples are processed in our NABL-accredited lab under barcoded chain-of-custody.

5. Cookies & tracking

We use cookies for:

• Essential cookies — site functionality, your selected location (Delhi / Noida), session management.
• Analytics cookies — Google Analytics with IP anonymisation to understand site usage in aggregate.

You can refuse or delete cookies via your browser. Some site features may not work correctly without them.

6. Your rights under the DPDP Act

You have the right to:

• Access the personal data we hold about you.
• Correct inaccurate or outdated information.
• Withdraw consent for non-essential processing (e.g. promotional communications).
• Request deletion of personal data, subject to legal retention requirements applicable to medical records (typically 3 years for diagnostic reports).
• File a grievance with our Grievance Officer (details below) or with the Data Protection Board of India.

7. Data retention

Diagnostic reports are retained for at least 3 years in line with NABL norms and the Clinical Establishments (Registration and Regulation) Act. Contact and account information is retained for as long as you remain a patient and as needed for legal/regulatory purposes.

8. Children's data

Tests for children under 18 are booked and consented to by a parent or legal guardian. We do not knowingly collect data directly from minors.

9. Changes to this Policy

We may update this Policy from time to time. Significant changes will be notified on this page and, where appropriate, by email to registered patients. The "Last updated" date at the top of this page always reflects the most recent revision.

10. Contact & grievance redressal