Website Privacy Policy

1. Data Privacy and Protection Policy

1.1 Types of Data Collected

JIPMER’s Information Technology Wing manages multiple digital platforms that collect and process the following categories of data:

Patient Identification Data

  • Name, age, gender, address
  • Contact details (phone number, email ID)
  • Identification documents (Aadhaar/ABHA where opted)

Health Information

  • Registration and appointment details
  • Visit records and consultation notes
  • Diagnostic results (Laboratory and Radiology reports)
  • Discharge summaries and medical records
  • Prescription and medication details

Online Registration System (ORS) Data

  • Appointment scheduling information
  • Visit tokens and queue status
  • ABHA-linked health records (where patient consent is provided)

Teleconsultation Data

  • Virtual consultation session metadata
  • Uploaded medical documents and reports
  • Consultation history

System Usage Data

  • IP address and browser information
  • Access timestamps and device information
  • Application usage patterns for service improvement

Feedback & Grievance Data

  • Patient feedback and complaint submissions
  • Supporting documents and correspondence

1.2 Purpose and Scope of Data Use

  • Healthcare Delivery: Providing outpatient and inpatient services, managing appointments, generating medical reports
  • Patient Services: Facilitating teleconsultation, lab report access, and other online services
  • Identity Verification: Secure authentication and access control for patient portals
  • Public Health Reporting: Mandatory reporting to state and central government agencies as per legal requirements
  • Service Improvement: Analyzing system performance and enhancing patient experience
  • Compliance: Adhering to ABDM and NDHM guidelines for health data management
  • System Monitoring: Performance optimization, security audits, and technical troubleshooting

Important: No patient data is shared with third-party commercial entities. Data sharing is limited only to government-approved agencies and statutory reporting requirements.

1.3 Data Protection and Security Practices

Technical Security Controls

  • Encryption: All data encrypted at rest and in transit (HTTPS/SSL)
  • Access Control: Role-Based Access Control (RBAC)
  • Audit Trails: Complete logging of all system activities
  • Multi-Factor Authentication: Strengthened administrative access
  • Network Security: Firewalls, IDS/IPS, and network segmentation

Operational Security Measures

  • Daily automated backups of HIS, PACS, and ORS databases
  • Compliance with CERT-In and NCIIPC standards
  • Restricted physical access to servers and data centers
  • Regular security audits and vulnerability assessments

Confidentiality: Only authorized healthcare professionals and IT staff have access to patient data, under confidentiality agreements and ethics guidelines.

1.4 Consent Mechanism

  • Implicit Consent: Automatically granted when using JIPMER’s online services for healthcare delivery
  • Explicit Consent: Required before linking optional or ABHA/ABDM health data
  • Withdrawal of Consent: Patients may withdraw optional data consent by contacting the IT Wing Helpdesk
  • Statutory Obligations: Legally required data must be retained as per medical record laws

1.5 Data Retention and Disposal

  • Medical records retained as per Government of India and hospital policy
  • System logs and audit trails maintained for mandated durations
  • Secure data destruction performed after retention periods

1.6 Patient Rights

  • Access their own health records via official channels
  • Request correction of inaccurate data
  • Understand how their data is used
  • File complaints on privacy or data protection issues

1.7 Contact for Privacy Queries

Officer In-Charge, IT Wing
Jawaharlal Institute of Postgraduate Medical Education & Research (JIPMER)
Puducherry – 605006
itwing[at]jipmer[dot]edu[dot]in
0413-2296515
Support Hours: Monday–Friday, 08:30 AM–06:00 PM
Emergency IT Support: 24×7 for critical hospital applications

Last Updated: November 2025

2. Website Policies

2.1 Copyright Policy

Material featured on this website may be reproduced free of charge after taking proper permission by sending a mail to us. However, the material has to be reproduced accurately and not to be used in a derogatory manner or in a misleading context. Wherever the material is being published or issued to others, the source must be prominently acknowledged. The permission to reproduce this material shall not extend to any material which is identified as being copyright of a third party; authorization to reproduce such material must be obtained from the departments/copyright holders concerned.

These terms and conditions shall be governed by and construed in accordance with Indian laws. Any dispute arising under these terms and conditions shall be subject to the exclusive jurisdiction of the courts of India.

2.2 Hyperlinking Policy

Links to External Websites/Portals

At many places in this website, you will find links to other websites/portals. These links have been placed for your convenience. JIPMER is not responsible for the contents or reliability of the linked websites and does not necessarily endorse the views expressed in them. Mere presence of the link or its listing on this website should not be assumed as endorsement of any kind. We cannot guarantee that these links will work all the time, nor do we have control over availability of linked pages.

Links to Our Website by Other Websites

We do not object to you linking directly to the information that is hosted on this website, and no prior permission is required. However, we would appreciate being informed about any such links so that we can notify you of any changes or updates. We do not permit our pages to be loaded into frames on your site; our pages must open in a newly opened browser window of the user.

2.3 Privacy Policy

This website does not automatically capture any specific personal information from you (such as name, phone number, or email address) that allows us to identify you individually.

Wherever the website requests you to provide personal information, you will be informed of the particular purposes for which the information is gathered, and adequate security measures will be taken to protect your personal information.

We do not sell or share any personally identifiable information volunteered on the website to any third party (public or private). Any information provided will be protected from loss, misuse, unauthorized access or disclosure, alteration, or destruction. We gather certain information about users such as Internet Protocol (IP) addresses, domain name, browser type, operating system, date and time of visit, and pages visited. We make no attempt to link these addresses with the identity of individuals visiting our site unless an attempt to damage the site has been detected.