1. Information We Collect
We may collect the following types of information:
Clinic Information
- Clinic name
- Clinic address
- Contact numbers
- Email addresses
- Subscription and billing information
- Authorized user information
User Information
- Names of account users
- Email addresses
- Login activity and account-related information
Patient Information
PIMSPlus stores patient information entered by authorized clinic personnel, which may include:
- Patient names
- Contact information
- Demographic information
- Medical records
- Treatment history
- Appointment details
- Billing and payment records
- Other healthcare-related information entered by the clinic
The clinic remains responsible for ensuring that patient information is collected and processed in accordance with applicable laws and regulations.
2. Legal Basis for Processing
PIMSPlus processes information as necessary:
- To provide contracted services
- To comply with legal obligations
- To protect platform security
- Based on user consent where applicable
- For legitimate business purposes related to operating the platform
3. How We Use Information
We use information to:
- Provide and maintain PIMSPlus services
- Create and manage user accounts
- Process subscriptions and billing
- Provide customer support
- Improve system functionality and performance
- Monitor system security and prevent unauthorized access
- Communicate service updates, maintenance notices, and important account information
- Comply with legal and regulatory obligations
We do not sell personal information to third parties.
4. Data Ownership
All patient records, clinic records, and information entered into PIMSPlus remain the property of the clinic that owns the account.
PIMSPlus does not claim ownership of any patient or clinic data stored within the platform.
Upon request and subject to verification procedures, clinics may request an export of their data.
5. Data Storage and Security
PIMSPlus implements reasonable administrative, technical, and organizational safeguards to protect information from unauthorized access, disclosure, alteration, or destruction.
These measures may include:
- Secure authentication procedures
- Role-based access controls
- Password protection mechanisms
- Encrypted communications where applicable
- Audit logging
- Restricted access to authorized personnel
- Regular system monitoring and maintenance
While we strive to protect all information, no method of electronic transmission or storage can be guaranteed to be completely secure.
6. Data Breach Response
PIMSPlus maintains procedures for identifying, investigating, and responding to security incidents.
Where required by applicable law, affected customers will be notified of reportable data breaches within the timeframes required by law.
7. Data Sharing and Disclosure
PIMSPlus does not sell, rent, or trade personal information.
We may disclose information only under the following circumstances:
- When required by law, regulation, court order, or government request
- To protect the rights, safety, or security of PIMSPlus, our users, or the public
- To trusted service providers who assist in operating our services and who are bound by confidentiality obligations
- With the clinic's authorization or instruction
8. International Data Transfers
Information may be stored or processed in jurisdictions outside the Philippines through trusted hosting and technology providers.
Appropriate safeguards are implemented to protect information regardless of processing location.
9. User Responsibilities
Clinics are responsible for:
- Maintaining the confidentiality of account credentials
- Restricting access to authorized personnel only
- Ensuring compliance with applicable healthcare and privacy laws
- Obtaining any required patient consents for the collection and processing of patient information
PIMSPlus is not responsible for unauthorized access resulting from weak passwords, credential sharing, or improper account management by users.
10. Data Retention
We retain information for as long as necessary to provide our services, fulfill contractual obligations, comply with legal requirements, resolve disputes, and enforce our agreements.
Following account termination, clinics may request a copy of their data subject to verification procedures and applicable retention policies.
Customer data may be retained for up to ninety (90) days to facilitate recovery requests, after which it may be securely deleted unless longer retention is required by law.
11. Cookies and Website Analytics
Our website may use cookies and similar technologies to improve user experience, analyze website performance, and enhance security.
Users may adjust browser settings to manage cookie preferences; however, certain website features may not function properly if cookies are disabled.
12. Your Rights
Subject to applicable laws, users may have the right to:
- Request access to their information
- Request correction of inaccurate information
- Request deletion of information where legally permitted
- Request a copy of available personal information
- Raise concerns regarding the handling of their information
Requests may be submitted through the contact information provided below.
13. Compliance with Philippine Data Privacy Laws
PIMSPlus is committed to supporting compliance with the Republic Act No. 10173, also known as the Data Privacy Act of 2012, and other applicable privacy regulations.
Clinics using PIMSPlus remain responsible for ensuring their own compliance with applicable healthcare, privacy, and patient confidentiality requirements.
14. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our services, technology, legal requirements, or business practices.
Updated versions will be posted on our website, and the revised effective date will be indicated at the top of this page.
15. Contact Us
If you have any questions, requests, or concerns regarding this Privacy Policy or the handling of your information, please contact us:
Email: hello@pimsplus.com