Privacy Policy

Privacy Policy (Updated for LegitScript Compliance)

Introduction

BaliDoc is committed to protecting the privacy and security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our online doctor consultation services. Our services are not intended for medical emergencies. If you experience a medical emergency, please call your local emergency number immediately.

Personal Information Collection

We may collect the following personal information through forms or video consultation (video consultations are not recorded):

  • Name

  • Date of Birth

  • Gender

  • Nationality

  • Current Location in Bali (Hotel/Resort)

  • Symptoms

  • Medical History

  • Allergies

  • Current Medications

  • Date of Arrival in Bali

  • Recent Travel

  • Insurance Information

  • Emergency Contact Information

Use of Personal Information

We use your personal information only to provide healthcare services, including consultations, prescriptions, and follow-up care. With your explicit consent, and only in relation to your health concerns, we may share your information with licensed healthcare providers, partner pharmacies, or laboratories.

Data Retention

We retain your personal information only as long as necessary to provide services and as required by applicable legal, regulatory, and medical record-keeping obligations. You may request deletion of your data at any time, subject to these requirements.

Data Security

We implement strict technical and organizational measures to safeguard your personal information, including but not limited to:

  • Strong Passwords and Multi-Factor Authentication (MFA)

  • Encryption of data in transit and at rest

  • Regular Backups

  • Security Software and Firewalls

  • Access Controls and Monitoring

  • Regular Audits and Updates

  • Staff Training and Awareness Programs

  • Professional Security Assistance

  • Secure Physical Access Controls

  • Incident Response and Recovery Procedures

Incident Response

Our Incident Response Plan includes identification, containment, investigation, eradication, notification, recovery, and post-incident analysis. Where required, we will notify affected users and regulatory authorities in a timely manner.

Third-Party Services

Our third-party service providers (including pharmacies, laboratories, and IT vendors) are contractually required to maintain strict data protection standards and comply with applicable healthcare and data protection laws.

User Rights

You have the right to request access to the personal information we hold about you, and to request corrections or deletion of your data, subject to legal and medical record-keeping requirements. To exercise these rights, please contact us at info@balidoc.com.

Cookies and Tracking Technologies

We may use essential cookies and similar technologies necessary for website functionality and security. We do not use cookies for advertising or tracking without your prior consent.

International Data Transfers

Where your personal information is transferred across borders, we take steps to ensure appropriate safeguards are in place to protect your data in line with applicable regulations.

Legal Compliance

We comply with all applicable Indonesian regulations, and where possible, we align our practices with internationally recognized standards such as the Health Insurance Portability and Accountability Act (HIPAA) and the General Data Protection Regulation (GDPR).

Updates to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. Any material changes will be communicated to you directly, for example by email or through our website.

Consent

By creating an account, booking a consultation, or otherwise using our services, you explicitly consent to the collection, use, and disclosure of your personal information as described in this Privacy Policy. You may withdraw your consent at any time by contacting us at info@balidoc.com.

Age Restrictions

Our services are intended for users 18 years and older. If you are under 18, you may only use our services under the supervision and consent of a parent or legal guardian.