Legal & Privacy Framework
Comprehensive legal documentation ensuring complete transparency and protection
Privacy Policy
How we protect your personal information
Comprehensive overview of our data collection, usage, and protection practices in compliance with international privacy laws.
Key Points:
Information We Collect
- Personal Information: Name, email, phone number
- Health Information: Medical files (PDF, DICOM, JPG), treatment interests
How We Use Your Information
- To provide medical referral services and consultation support
- To contact you regarding your treatment or referral
Data Security
Enterprise grade protection for your medical data
Military grade encryption and security protocols ensure your sensitive medical information remains completely protected and confidential.
Key Points:
Encryption Standards
- AES-256 encryption for all data at rest
- TLS 1.3 for data in transit
Access Controls
- Multi factor authentication required
- Role based access permissions
Terms of Service
Clear terms for using NafariMed services
Detailed terms and conditions outlining the rights, responsibilities, and expectations for all NafariMed platform users.
Key Points:
User Obligations
- Provide accurate and complete medical information
- Comply with all applicable laws and regulations
Service Scope
- Medical referral and coordination services
- Information sharing with partner hospitals
GDPR Compliance
European data protection standards
Full compliance with General Data Protection Regulation ensuring European patients have complete control over their personal data.
Key Points:
Your Rights Under GDPR
- Right to access your personal data
- Right to rectify inaccurate information
Lawful Basis for Processing
- Legitimate interest in providing medical referral services
- Consent for marketing communications
Data Jurisdiction & Legal Framework
Understanding which laws govern your data based ongeographic location and service type
Multi-Jurisdiction Compliance
Your data protection varies by service location and your residence
Legal Jurisdiction Breakdown
Turkey
Hospital Operations
Turkish data privacy law governs hospital partnerships
Applicable Laws:
Nigeria
Company Operations
Nigerian data protection regulations for company operations
Applicable Laws:
European Union
EU Patient Rights
GDPR compliance for European patients
Applicable Laws:
Key Compliance Points
Hospital Data
Medical records shared with Turkish hospitals are governed by Turkish healthcare privacy laws (KVKK).
Company Operations
Business operations and customer service are governed by Nigerian data protection regulations (NDPR).
EU Citizens
European patients benefit from full GDPR protection regardless of where treatment occurs.
Highest Standards
We apply the most stringent privacy standard applicable to each data type and user.
Your Data Rights & Controls
You have complete control over your personal information with comprehensive data rights
Right to Access
View all personal data we have about you
Available Actions:
Right to Rectification
Correct inaccurate or incomplete information
Available Actions:
Right to Erasure
Request deletion of your personal data
Available Actions:
Right to Portability
Receive your data in a portable format
Available Actions:
How to Exercise Your Rights
Submit Request
Email us at privacy@nafarimed.com with your specific request and account details
Identity Verification
We'll verify your identity to protect your privacy and prevent unauthorized access
Response & Action
Receive our response within 30 days with the requested information or confirmation of action
Data Rights Contact
Response time: Within 30 days
Important Notes
- Some requests may take longer if they involve complex data retrieval from multiple systems
- We may need to verify your identity before processing certain requests for security purposes
- Legal or regulatory requirements may limit our ability to delete certain medical records
- Rights may vary based on your location and applicable data protection laws