Babaji Nethralayya Logo

GDPR Statement

Last updated: 16-Aug-2025

1) Purpose of this statement

Although our services are primarily focused in India, visitors from the European Union (EU) and European Economic Area (EEA) may access our website or contact us. This page explains your rights under the General Data Protection Regulation (GDPR) and how you can exercise them.

2) Who we are

Babaji Nethralayya Private Limited (“we”, “us”, “our”) is the data controller for information collected through:

  • Our websites
  • Online forms and WhatsApp booking
  • Tele-consultations (when applicable)
  • CSR programs (e.g., Orphan/Chashma Mukth Bharat initiatives)

Data Protection Contact for EU/EEA visitors:

Email: care@babajieyehospitals.com
Postal: [Babaji Nethralayya Private Limited, KPHB Hyderabad]

3) How we collect your data

We may collect personal data when you:

  • Submit a contact form, appointment request, or WhatsApp chat
  • Sign up for health updates or newsletters
  • Access our site (cookies, analytics)
  • Share medical reports or feedback

4) Legal basis for processing

We process your data under one or more of these lawful bases:

  • Consent (you opt-in)
  • Contract (to deliver a requested service)
  • Legal obligation (medical record retention, public health laws)
  • Legitimate interests (service improvement, security, fraud prevention)

Data Retention: We retain your personal data only for as long as necessary to fulfill the purposes outlined in this statement, comply with legal obligations (such as medical record retention laws), resolve disputes, and enforce our agreements. For more details on specific retention periods, please see our main Privacy Policy.

5) Your GDPR rights

As an EU/EEA visitor, you have the right to:

  • Access the personal data we hold about you
  • Request corrections or updates
  • Request deletion (where legally possible)
  • Restrict or object to processing
  • Receive your data in a portable format
  • Withdraw consent at any time (this does not affect prior processing)
  • Lodge a complaint with your local data protection authority

6) Cross-border data transfers

If your data is processed outside the EU/EEA (e.g., in India), we will apply contractual and technical safeguards to protect it.

7) Cookies & tracking

Our site uses essential cookies and, with consent, analytics/advertising cookies. EU/EEA visitors will see a cookie banner on first visit, allowing them to accept or reject optional cookies.

8) How to exercise your rights

Email care@babajieyehospitals.com with your request. We may require proof of identity before fulfilling GDPR requests. We aim to respond within 30 days.

9) Updates to this statement

We may update this GDPR Statement when laws or our services change. The “Last updated” date shows the latest version.