Privacy Policy
Last updated: May 2026 ยท Applies to all Homeo Companion users
Summary: We collect only what is necessary to run the platform. We do not sell your data or your patients' data. Patient records are only accessible by the doctor who created them. You can request deletion of your data at any time.
1. Who We Are
Homeo Companion is an AI-powered clinical software platform for registered homeopathic doctors in India, operated at homeocompanion.in. For privacy questions, contact us at ssokhey997@gmail.com.
2. Information We Collect
2.1 Doctor Account Information
- Full name, email address, and password (via Firebase Authentication)
- Clinic name, address, and contact number
- State council registration number and state council name
- BHMS college name and graduation year
- WhatsApp contact number
- Clinic logo and digital signature (uploaded to Cloudinary)
- State Council Registration Certificate (uploaded to Cloudinary for verification)
2.2 Patient Records (Created by Doctors)
- Patient name, age, gender, contact number
- Chief complaint, vitals (height, weight, BMI, blood pressure, pulse)
- Consultation history and AI-assisted case notes
- Prescription records and follow-up notes
- Uploaded images (MRI, X-rays, reports) via Cloudinary
2.3 Usage Data
- Monthly consultation count (for plan limit enforcement)
- Account creation date and last activity
- Subscription plan and payment status
3. How We Use Your Information
| Purpose | Legal Basis |
|---|
| Account creation and authentication | Contract (provision of service) |
| Doctor identity verification (cross-checking with NCH/state councils) | Legal obligation / legitimate interest |
| Enabling AI-assisted consultation features | Contract |
| Generating prescriptions and diet charts | Contract |
| Subscription billing via Razorpay | Contract |
| Sending account verification and registration emails (via EmailJS) | Contract |
| Admin review of registration documents | Legitimate interest (fraud prevention) |
| Improving the platform and AI models | Legitimate interest (aggregated, never individual) |
4. Data Storage & Security
- Firebase Firestore (Google Cloud) โ Doctor profiles and patient records are stored with encryption in transit (HTTPS/TLS) and at rest
- Firebase Authentication (Google) โ Passwords are never stored in plain text; Firebase handles all authentication security
- Cloudinary โ Images, logos, signatures, and registration certificates are stored on Cloudinary's secure servers with HTTPS delivery
- Razorpay โ Payment information is processed by Razorpay; we do not store card numbers or UPI details
- Access to Firestore data is restricted by Firebase Security Rules โ doctors can only access their own records
- Only platform administrators can access doctor verification documents
5. Patient Data โ Doctor's Responsibility
Patient records entered by a doctor are:
- Stored under that doctor's account only โ no other doctor can access them
- Not accessible to Homeo Companion staff except in cases of court order or legal requirement
- The doctor's responsibility to collect informed patient consent before recording
- The doctor's responsibility to comply with applicable Indian laws regarding health data
We are a data processor for patient records; the registered doctor is the data controller. By using the platform you accept responsibility for lawful processing of your patients' data.
6. AI Processing
Consultation text is sent to:
- Google Gemini 2.5 Flash โ for AI-assisted case taking and remedy suggestions
- Groq (Llama 70B) โ as a fallback if Gemini is unavailable
Consultation content sent to these services is subject to Google's privacy policy and Groq's privacy policy. We recommend not including patient names or identifying information in the AI consultation text.
We do not use patient consultation data to train our own AI models.
7. Sharing of Data
We do not sell, rent, or share your personal data or patient records with third parties for commercial purposes. Data is shared only in these circumstances:
- Service providers โ Firebase (Google), Cloudinary, Razorpay, EmailJS, Gemini API, Groq API โ strictly for platform functionality
- Legal obligation โ if required by a court order, law enforcement, or regulatory authority
- Verification โ registration details may be cross-checked with NCH and state council databases to verify authenticity
8. Data Retention
- Active doctor accounts and patient records are retained as long as the account is active
- Inactive trial/free accounts may be deleted after 12 months of inactivity with 30 days notice
- On account deletion, your personal data is removed within 30 days; patient records within 60 days
- Backup copies may be retained for up to 90 days after deletion for recovery purposes
9. Your Rights
As a user you have the right to:
- Access โ request a copy of all data we hold about you
- Correction โ update your profile information at any time from the settings screen
- Deletion โ request deletion of your account and all associated data
- Portability โ request your patient data in a structured, exportable format
- Objection โ object to processing for legitimate interest purposes
To exercise these rights, contact us at ssokhey997@gmail.com or WhatsApp +91 62393 72665. We will respond within 14 business days.
10. Cookies & Analytics
Homeo Companion does not currently use cookies for tracking or analytics. Firebase Authentication uses browser local storage to maintain your login session. No third-party analytics services (Google Analytics, etc.) are used.
11. Children's Privacy
This platform is not intended for users under 18. Patient records for minor patients must be entered by the treating doctor in compliance with applicable laws.
12. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of significant changes via email or in-app notice. Continued use after changes constitutes acceptance.