${[['🔐','AES-256 Encryption','All PHI encrypted at rest and in transit using industry-standard AES-256 and TLS 1.3'],['🔑','SHA-256 Auth','Passwords hashed using SHA-256 with per-user salting. No plaintext passwords stored ever.'],['📋','Full Audit Trail','Every access to patient records is logged with timestamp, user identity and action taken'],['👁️','Role-Based Access','Patients see only their data. Doctors see only their patients. Admins have controlled access.'],['✅','Patient Consent','Explicit informed consent collected before any data sharing. You control your own records.'],['🗑️','Data Deletion','Patients can request deletion of non-medical data. PHI retained per medical record laws.']].map(([i,h,d])=>`
`).join('')}
✅ HIPAA Compliance Statement: Doc Next Services Private Limited maintains comprehensive administrative, physical, and technical safeguards to protect Protected Health Information in accordance with HIPAA requirements and Indian health data protection regulations.
Your HIPAA Rights as a Patient
${[['Right to Access','You can request and receive a copy of your complete health records at any time from your patient portal.'],['Right to Correct','You can request corrections to inaccurate information in your health records.'],['Right to Restrict','You can request restrictions on how your information is used or shared.'],['Right to Complain','You can file a complaint if you believe your privacy rights have been violated, without retaliation.']].map(([h,t])=>`
`).join('')}
Privacy questions? privacy@doctornext.in | HIPAA Officer: hipaa@doctornext.in