Privacy Policy
Table of Contents
Our Compliance Commitments
Marketplace Platform
GDPR Compliant
UK DPA Compliant
APP Compliant
Sylk Health ("we," "our," or "us") is committed to protecting your privacy and ensuring the security of your personal and health information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform.
1. Information We Collect
Personal Information
- Name, email address, phone number
- Date of birth, gender, nationality
- Passport or identification details (for travel purposes)
- Emergency contact information
Service Information
- Service preferences and categories of interest
- Appointment scheduling preferences
- General inquiry topics (non-medical)
- Communication preferences
Important: We Do NOT Collect Medical Information
Sylk Health operates as a marketplace platform. We do not collect, store, or process medical history, diagnoses, medications, test results, or any other health information. All medical data is handled directly by healthcare providers.
Financial Information
- Payment card details (processed by secure third-party providers)
- Billing address
- Transaction history
Technical Information
- IP address and device information
- Browser type and version
- Time zone and location data
- Platform usage data and preferences
2. How We Use Your Information
We use your information to:
- Facilitate connections with healthcare providers
- Process bookings and appointments
- Communicate about your consultations and treatments
- Process payments and prevent fraud
- Provide customer support
- Improve our services and user experience
- Comply with legal obligations
- Send relevant updates and notifications (with consent)
4. Data Security
We implement industry-standard security measures including:
- AES-256 encryption for data at rest and in transit
- Multi-factor authentication for account access
- Regular security audits and penetration testing
- Strict access controls and employee training
- Secure data centers with 24/7 monitoring
- Incident response and breach notification procedures
5. Data Retention
We retain your information for as long as necessary to provide services and comply with legal obligations:
- Active account data: Retained while account is active
- Health records: 7 years after last interaction (or as required by law)
- Financial records: 7 years for tax and accounting purposes
- Marketing data: Until consent is withdrawn
6. Your Rights
Depending on your location, you have the right to:
GDPR Rights (EU/UK Users)
- Access your personal data
- Rectify inaccurate data
- Erase your data ("right to be forgotten")
- Restrict processing
- Data portability
- Object to processing
- Withdraw consent
Your Rights (US Users)
- Access your account information
- Request corrections to your personal data
- Delete your account and data
- Opt-out of marketing communications
- Choose how we communicate with you
To exercise any of these rights, contact us at support@sylkhealth.com
8. International Data Transfers
Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place through:
- Standard Contractual Clauses approved by the European Commission
- Adequacy decisions for certain countries
- Your explicit consent for specific transfers
9. Children's Privacy
Our platform is not intended for children under 18. We do not knowingly collect information from children. If you believe we have collected information from a child, please contact us immediately.
10. Changes to This Policy
We may update this Privacy Policy periodically. We will notify you of material changes via email or platform notification. Continued use after changes constitutes acceptance of the updated policy.
11. Contact Us
For privacy-related questions or concerns:
Privacy Inquiries
Email: support@sylkhealth.com
Supervisory Authorities:
- EU Users: Your local Data Protection Authority
- UK Users: Information Commissioner's Office (ICO)
- US Users: Department of Health and Human Services