Privacy Policy

Last updated: January 2025

Kosmagic Skin & Hair Clinic (“we”, “us”, “our”) operates the website https://kosmagic.in and provides dermatology and hair care consultation and treatment services at our clinic in Vanasthalipuram, Hyderabad, Telangana, India. This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you visit our website, book an appointment, or use our services.

Information We Collect

We collect information that you provide directly to us, such as when you: book an appointment, submit a contact form, call or WhatsApp us, subscribe to updates, leave a review, or visit our clinic. This may include:

  • Contact information (name, email address, phone number).
  • Demographic and basic medical details you voluntarily share (age, gender, skin/hair concerns, medical history, photos you share for consultation).
  • Appointment and billing details (date and time of visit, services availed, payment status, and we do not store full card details).
  • Communication records (emails, SMS, WhatsApp messages, phone call details, and feedback or reviews you provide).
  • Website usage data (IP address, device information, browser type, pages visited, and cookies or similar technologies used to improve our site experience).

How We Use Your Information

We use your information to provide safe, effective, and personalized dermatology and hair care services. Uses include:

  • Scheduling, confirming, and managing appointments (online and in‑clinic), including reminders and rescheduling.
  • Assessing your skin and hair concerns, maintaining medical records, and planning or modifying your treatment.
  • Processing payments via trusted payment gateways and sending related invoices or payment confirmations.
  • Responding to your enquiries, feedback, or complaints across channels (phone, email, SMS, WhatsApp, website forms).
  • Sending service-related communications, such as follow‑up instructions, important updates about your treatment, and booking confirmations.
  • With your consent, sending occasional health tips, clinic updates, offers, and promotions (you can opt out at any time).
  • Improving our website, services, and patient experience by analyzing trends, usage patterns, and feedback.
  • Complying with legal, regulatory, and ethical obligations applicable to medical practice in India and to protect our legal rights.

Lawful Basis and Consent

Where required under Indian law (including the Digital Personal Data Protection Act, 2023 once fully in force), we rely on your consent for processing personal data for non-essential purposes such as marketing communications. For core medical and operational purposes (treatment, billing, fraud prevention, legal obligations), we may process your data without fresh consent where allowed by applicable law. You may withdraw your consent for optional uses at any time, but this will not affect processing already carried out.

Information Sharing

We do not sell or rent your personal information to third parties. We may share your information only in the following situations:

  • With your explicit or implied consent, for example when referring you to another healthcare provider or diagnostic center at your request.
  • With trusted service providers who assist us in operating our clinic and website (such as payment gateways, appointment booking platforms, SMS/email/WhatsApp communication services, IT support, and analytics tools), under confidentiality and data protection obligations.
  • To comply with applicable laws, regulations, court orders, or requests from government authorities, including health authorities when required.
  • To protect the rights, property, or safety of our patients, staff, or clinic, including detecting, investigating, and preventing fraud, abuse, or security incidents.
  • In connection with a business reorganization such as a merger, acquisition, or transfer of clinic operations, where personal data may be transferred as part of the clinic’s assets subject to continued protection.

Where possible and appropriate, information shared externally is de‑identified or limited to what is necessary for the stated purpose.

Data Security

We implement reasonable and appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures may include access controls, secure storage, encryption where appropriate, staff confidentiality obligations, and regular review of our security practices. However, no method of transmission over the internet or electronic storage is completely secure, and we cannot guarantee absolute security.

Data Retention

We retain your personal and medical information for as long as necessary to: provide you with our services, comply with medical record-keeping and legal requirements, resolve disputes, and enforce our agreements. After this period, information may be securely deleted, anonymized, or archived as per applicable laws and professional guidelines for healthcare providers in India.

Your Rights

Subject to applicable law, you may have the following rights in relation to your personal information:

  • Right to access: You can request a summary of the personal data we hold about you.
  • Right to correction: You can ask us to correct or update inaccurate or incomplete information (for example, contact details).
  • Right to deletion: You can request deletion of your personal data, subject to our legal and medical record‑keeping obligations.
  • Right to withdraw consent: You can withdraw your consent for optional processing (such as marketing messages) at any time.
  • Right to object or restrict: You may object to or request restriction of certain processing where permitted by law.
  • Data portability (where applicable): You may request a copy of certain data in a commonly used format, to the extent technically feasible and legally permitted.

To exercise any of these rights, please contact us using the details in the “Contact Us” section below. We may need to verify your identity before responding to your request.

Children’s Privacy

Our services are primarily intended for adults, but we also treat children and adolescents accompanied by a parent or legal guardian. Where we process data of minors, consent should be provided by the parent or legal guardian in accordance with applicable law.

Third‑Party Links

Our website may contain links to third‑party websites, social media pages, and external services (such as Facebook, Instagram, Google Maps, booking and payment platforms). We are not responsible for the privacy practices or content of these third‑party sites and encourage you to review their privacy policies separately.

Updates to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or services. When we do, we will revise the “Last updated” date at the top of this page, and in some cases we may notify you by additional means (such as a notice on our website).

Contact Us

If you have any questions, requests, or concerns about this Privacy Policy or our data practices, you can contact us at:

Kosmagic Skin & Hair Clinic
B997, I Floor, Opp Gajendra Jewellers, NGO’s Colony, Vanasthalipuram, Hyderabad, Telangana 500070, India
Phone/WhatsApp: +91 79015 56566
Email: kishore@kosmagic.in

If you are not comfortable emailing medical details, you may request an in‑person discussion at the clinic instead.

Review My Order

0

Subtotal

Taxes & shipping calculated at checkout

Checkout