PRIVACY POLICY

  1. Introduction

Indira Gandhi Memorial Hospital (IGMH) respects your privacy and is committed to protecting personal data in accordance with the Data Protection Act of the Republic of Maldives and other applicable laws.

This Privacy Policy explains how personal data is collected, used, stored, and protected when you visit or interact with the IGMH website.

IGMH acts as the Data Controller for personal data processed through this website.


  1. Scope

This Policy applies to:

  • Visitors to the website
  • Patients using online services
  • Individuals submitting inquiries or forms
  • Job applicants submitting applications online
  • Any other users interacting with website services


  1. Personal Data we collect

Depending on how you use the website, we may collect:


3.1 Information you provide directly

  • Full name
  • Email address
  • Contact number
  • National ID or reference number (if submitted through forms)
  • Messages or inquiries submitted throught contact forms


3.2 Automatically collected information

  • IP address
  • Browser type and version
  • Device information
  • Pages visited and time spent
  • Date and time of access


  1. Lawful Basis for Processing

IGMH processes personal data under one or more of the following lawful bases:

  • Performance of a public function
  • Provision of healthcare services
  • Compliance with legal obligations
  • Legitimate institutional interests
  • Consent (where required)

Sensitive personal data, including health data, is processed only where legally permitted and subject to enhanced safeguards.


  1. Purpose of Processing

Website may use cookies to:

  • Enable core website functionality
  • Improve user experience
  • Analyze website traffic

Users may control cookie preferences through browser settings. Essential cookies required for security and functionality cannot be disabled without affecting website performance.


  1. Data Sharing and Disclosure

Personal data may be shared:

  • With authorized hospital departments
  • With government authorities where required by law

IGMH does not sell personal data to third parties.


  1. Data Security

IGMH implements appropriate technical and organizational measures, including:

  • Secure servers and encrypted connections (HTTPS)
  • Access controls and authentication mechanisms
  • Monitoring and logging systems
  • Regular security reviews

Despite these measures, no internet transmission is entirely secure, and users should exercise caution when submitting sensitive information online.


  1. Data Retention

Personal data is retained only for as long as necessary to:

  • Fulfill the purposes for which it was collected
  • Comply with healthcare regulations
  • Meet legal and regulatory requirements

Retention periods are determined in accordance with instituional and saturoy guidelines.


  1. Third-Party Links

Website may contain links to external websites, IGMH is not responsible for the privacy practices of third-party sites.


  1. Amendments to this Policy

IGMH reserves the right to update this Privacy Policy to reflect changes in legal, regulatory, or operational requirements. Updates will be published on this page with a revised effective date.


  1. Contact Information

For privacy-related inquiries or data subject requests, please contact [email protected]