1. WHO WE ARE

MyClinicsOnline ("MCO," "we," "our") operates digital healthcare platforms (QurBook, QurPro, QurPlus) to connect patients with clinics in Ghana. This Notice applies to all physicians, nurses, and staff using our systems.

2. OUR COMMITMENT TO PRIVACY

We protect your Protected Health Information ("PHI") as required by:

• Ghana Data Protection Act (Act 843)

• GDPR (for EU citizens, where applicable)

• Best practices for digital health platforms

PHI includes medical records, prescriptions, and appointment details stored electronically.

3. HOW WE USE/DISCLOSE YOUR DATA

A. With Your Authorization

We require written/electronic consent for:

• Sharing PHI with non-treating third parties (e.g., employers)

• Marketing communications (opt-in required)

• Research participation

Revocation: Withdraw consent anytime via your QurPro dashboard or email privacy@myclinicsonline.com.

B. Without Authorization

We may use/share PHI for:

PurposeExamples

TreatmentDoctors accessing your records via QurPlus for care coordination

PaymentBilling insurers through QurPro’s integrated system

OperationsQuality audits, IT security checks

Legal ComplianceCourt orders, disease reporting to health authorities

Special Protections:

• HIV/STI Data: Only shared with treating providers unless legally mandated.

• Mental Health/Substance Abuse: Disclosed only per Ghana Health Service guidelines.

4. YOUR RIGHTS

1. Access & Copies

Request your records via QurBook app. Delivery within 48 hours (digital) or 5 days (physical).

2. Corrections

Submit amendment requests in-app. We’ll respond within 10 business days.

3. Restrictions

Limit disclosures (e.g., opt out of insurer sharing for self-paid services).

4. Data Portability

Export your records as PDF/HL7 FHIR files.

5. Complaints

Contact our Data Protection Officer:
Name: [DPO Name]
Email: dpo@myclinicsonline.com
Phone: [Official Contact]

5. SECURITY MEASURES

• Encryption: AES-256 for data at rest/transit

• Access Controls: Biometric + 2FA for clinicians

• Audit Logs: Track all PHI access in QurPro

6. CHANGES TO THIS NOTICE

Updates posted at [MyClinicsOnline.com/privacy]. Continued platform use constitutes acceptance.

KEY MODERNIZATIONS FROM RABITO’S VERSION:

1. Tech-Centric Language: References to apps/encryption replace paper records.

2. Patient Autonomy: Emphasis on digital consent management.

3. Global Standards: Aligns with GDPR + Ghana’s Act 843.

4. Transparency: Clear examples of data flows (e.g., QurPro → insurers).

5. Proactive Security: Highlights technical safeguards upfront.

Suggested Placement:

• In-App: Linked from QurBook/QurPro settings.

• Website: Footer + dedicated privacy page.

• Onboarding: Short summary with "I Agree" checkbox during signup.