Mwein Medical Services

1. Information We Collect

We collect information in the following ways:

• Personal Information: Name, phone number, email address, date of birth, address, ID number
• Medical Information: Medical history, symptoms, diagnoses, medications, allergies, lab results, ultrasound reports
• Insurance Information: SHA details, insurance provider, policy number
• Payment Information: M-Pesa transactions, cash payment records
• Website Information: IP address, browser type, pages visited, appointment booking data

2. How We Use Your Information

Your information is used only for legitimate healthcare purposes:

• Providing medical services and treatment
• Processing appointments and bookings
• Managing patient records and medical history
• Contacting you about appointments or test results
• Processing insurance claims and payments
• Improving our healthcare services
• Compliance with Kenyan health regulations

We do NOT sell or share your medical data with third parties for marketing purposes.

3. How We Protect Your Data

We implement multiple security measures to protect your information:

• Secure Storage: Medical records stored in locked cabinets and secure databases
• Access Control: Only authorized healthcare staff can access your records
• Encryption: Patient data transmitted using secure, encrypted connections
• Confidentiality: All staff sign confidentiality agreements
• Regular Audits: Periodic security reviews and compliance checks

4. Who We Share Your Information With

Your information may be shared only in these limited circumstances:

• Healthcare Providers: Other doctors/clinics you're referred to (with your consent)
• Insurance Companies: SHA and insurers for claim processing (as required)
• Laboratories: For test processing and analysis
• Legal Requirements: When required by Kenyan law or court orders

Important: We will always ask for your explicit consent before sharing your medical information with third parties, except when legally required.

5. Your Rights Regarding Your Information

You have the right to:

• Access: Request and view your complete medical records
• Correction: Ask us to correct any inaccurate information
• Deletion: Request deletion of your data (where legally permitted)
• Confidentiality: Expect your medical information to remain private
• Complaint: File a complaint if you believe your privacy was violated

To exercise these rights, contact us at mweinmedical@gmail.com

6. How Long We Keep Your Data

We retain patient medical records according to Kenyan healthcare regulations:

• Active Patients: Records maintained as long as you're a patient
• Inactive Patients: Records retained for 5+ years after last visit (required by law)
• Minors: Records kept until age 18, then 5 additional years
• Website Data: Temporary data (cookies, IP logs) deleted after 90 days

7. Cookies and Website Tracking

Our website uses cookies to:

• Remember your preferences
• Track website usage for improvements
• Provide a better browsing experience

You can disable cookies in your browser settings. This may affect website functionality.

8. Third-Party Services

Our website uses:

• Google Maps: For facility location (see Google Privacy Policy)
• Email Forms: For appointment inquiries (processed securely)

We do not control these third parties' privacy practices. Review their policies separately.

9. Security Limitations

While we take security seriously, no system is 100% secure. We cannot guarantee absolute security of transmitted data. For confidential matters, please call us directly: +254 707 711 888

10. Changes to This Privacy Policy

We may update this policy to reflect changes in our practices or legal requirements. We will notify you of significant changes via:

• Email notification to registered patients
• Updated notification on our website
• In-person notice at the clinic

11. Questions or Concerns?

If you have questions about this Privacy Policy or our data practices:

12. Legal Compliance

Mwein Medical Services complies with:

• Kenyan Data Protection Act - Personal data protection laws
• Health Act 2017 - Healthcare privacy regulations
• SafeCare Standards - Healthcare facility requirements
• GDPR Standards - Where applicable to international patients