Q
QClinic

Privacy Policy

Last updated: May 2026

This privacy policy describes how QClinic Technologies (“QClinic”, “we”, “us”) collects, uses, and protects information when you use our queue management service available at qclinic.app.

Who we serve

QClinic is a queue management tool used by healthcare clinics. Two kinds of people interact with QClinic:

  • Clinic staff (our customers) — doctors, receptionists, and admins who sign in to manage their queue.
  • Patients (the clinic's customers)— who receive WhatsApp or Telegram messages from us on the clinic's behalf.

What we collect

From clinic staff

  • Email address (for sign-in)
  • Clinic and doctor names
  • Working hours and availability
  • Billing details if you subscribe (handled by our payment processor)

From patients (via the clinic)

  • Name and phone number (added by clinic staff)
  • Optional: date of birth, gender, address, language preference
  • Visit history including prescriptions and uploaded scans/reports (added by the clinic)
  • Patient replies to our WhatsApp/Telegram messages

How we use your information

  • To deliver queue updates and appointment reminders to patients
  • To compute estimated wait times
  • To process subscription payments (clinic-side)
  • To process consultation fee payments when clinics use our payment-link feature
  • To improve the product and fix bugs

Who we share with

We share data only with the third-party services we use to operate QClinic, and only what they need to function:

  • Supabase — database and authentication
  • Meta WhatsApp Cloud API — to deliver WhatsApp messages
  • Telegram Bot API — to deliver Telegram messages
  • Razorpay — to process payments
  • Vercel — to host the application

We do not sell or rent personal data. We do not use patient data for advertising.

Data retention

Visit history, including prescriptions and uploaded files, is retained for as long as the clinic's account is active so doctors can access patient history. Clinics can delete individual records on request. Account closure leads to deletion within 90 days unless we are legally required to retain data longer.

Security

We use HTTPS for all traffic, encrypted database storage at rest, and row-level security so each clinic only sees its own data. Passwords are not used (we use email magic links). Patient files are stored in access-controlled buckets keyed by clinic.

Your rights

Under the Digital Personal Data Protection Act, 2023 (India), you have the right to access, correct, and delete your personal data. Email hello@qclinic.appwith your request and we'll respond within 30 days.

Children

QClinic is used by clinics that may serve patients of any age, including minors. Patient data for minors is added by clinic staff with the consent of a parent or guardian as governed by the clinic's own consent process.

Changes

We may update this policy from time to time. The “last updated” date at the top reflects the most recent revision.

Contact

Questions: hello@qclinic.app
QClinic Technologies, <your city, state, PIN>