Privacy Policy

  1. Introduction

    2. Bloom Healthcare & Hospitality Management Private Limited values the privacy, confidentiality, and security of user and client information. This Privacy Policy explains how information is collected, used, processed, stored, and protected.

    By accessing our website or using our services, you consent to the practices described in this Privacy Policy.

  2. Information We Collect
    3. Personal Information

    We may collect:

    • Name
    • Contact details
    • Email address
    • Billing and shipping address
    • GST and business information

    Healthcare & Operational Information

    • Hospital/facility details
    • Infrastructure and operational requirements
    • Dietary preferences and catering specifications
    • Service usage details

    Technical Information

    • IP address
    • Browser and device information
    • Cookies and session data
    • Usage analytics and website interaction data

  3. Purpose of Data Collection

    4. Collected information may be used for:

    • Service delivery and execution
    • Order processing and invoicing
    • Customer support and communication
    • Compliance and audit requirements
    • Analytics and platform improvement
    • Personalization of user experience
    • Security and fraud prevention

  4. Cookies & Analytics

    5. The website may use cookies and related technologies for:

    • User authentication and session management
    • Performance monitoring and analytics
    • Improving user experience
    • Personalization of online ordering and portal functionality
    Users may disable cookies through browser settings; however, certain features of the website may not function properly.

  5. Data Sharing & Disclosure

    6. Information may be shared only with:

    • Payment processors and banking partners
    • Logistics and delivery service providers
    • Technology and cloud service providers
    • Regulatory or statutory authorities
    • Auditors, legal advisors, and consultants
    The Company does not sell or rent personal information to third parties.

  6. Data Security

    7. The Company implements reasonable technical and organizational safeguards including:

    • SSL encryption
    • Restricted access controls
    • Secure servers and storage systems
    • Role-based authorization
    • Periodic security assessments
    The Company endeavors to comply with:
    • Information Technology Act, 2000
    • Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011
    • Applicable healthcare data protection practices

  7. Data Retention

    8. Information shall be retained only for:

    • Contractual and operational purposes
    • Compliance with legal and regulatory obligations
    • Audit and dispute resolution purposes
    • Business continuity and record management

  8. User Rights

    9. Users may request:

    • Access to their personal information
    • Correction or updating of inaccurate data
    • Deletion of data, subject to legal retention obligations
    • Withdrawal of consent where applicable
    Such requests may be submitted through the contact details published on the official website.

  9. Third-Party Links

    10. The website may contain links to external third-party platforms or websites. The Company is not responsible for the privacy practices, content, or security standards of such external platforms.

  10. Grievance Officer

    11. In accordance with applicable Indian laws, the Company shall publish the details of its designated Grievance Officer on the website for handling complaints, concerns, and privacy-related requests.