Effective Date: August 1, 2025
Last Updated: August 21, 2025
ZODA Health (“we,” “our,” or “us”), a telemedicine platform owned and operated by MyZODA Ltd., provides a secure and trusted telemedicine platform that enables users (“you”) to access licensed medical professionals for virtual care. This Privacy Policy explains how we collect, use, share, and protect your personal and health information in accordance with the Nigeria Data Protection Regulation (NDPR), the National Health Act, and industry best practices. By using ZODA Health’s services, you consent to the data practices described in this policy.
We collect personal data directly from you when you create an account, use our services, or communicate with us. This includes your full name, email, phone number, gender, and date of birth. When using ZODA Health, you may also submit sensitive medical data such as your symptoms, past treatments, diagnosis information, prescriptions, lab reports, and consultation records. For providers, we collect license numbers, specialization, professional qualifications, and availability data.
To ensure platform integrity, we gather technical information such as your device type, browser, IP address, location (with permission), and app usage behavior. Certain features, such as locating the nearest hospitals or mapping healthcare facilities, require the use of your device’s location services. Location data is only collected when you enable this setting and is used exclusively to provide accurate results for proximity-based features within ZODA Health. You can disable location sharing at any time through your device settings, though some features may then be unavailable. Additionally, payment transactions are securely processed through third-party providers, during which we store reference details—never full card information.
Your data enables us to deliver personalized, seamless healthcare services. We use it to schedule and facilitate virtual consultations, share clinical updates between you and your provider, send notifications or reminders, and process payments. It also support customer service engagement, fraud prevention, internal analytics, and improving the safety, reliability, and functionality of the platform.
We may send you relevant health updates, feature announcements, or survey invitations. You can opt out of promotional communications at any time.
ZODA Health processes your information under specific lawful bases: your consent (provided during sign-up or profile completion), the necessity of fulfilling a healthcare contract with you, our compliance with legal requirements (such as medical data retention rules), and in cases where vital interests—such as emergencies—necessitate data access.
We only share your information when it is necessary to provide services or comply with applicable law. This includes registered healthcare providers on the ZODA Health platform, licensed under the MDCN or NMCN, who treat you during consultations. We also work with third-party service providers—for payments, cloud storage, infrastructure security, analytics, or technical support—who are bound by confidentiality agreements. Regulatory authorities may receive access where required by law or investigation.
ZODA Health does not sell or lease your personal or health information to third parties under any circumstances.
We adopt strict data protection safeguards across all systems. Your information is stored in encrypted databases hosted on secure, access-restricted cloud infrastructure. We use SSL certificates, firewall monitoring, secure session protocols, and routine vulnerability scans. Only authorized personnel—under NDA—have access to sensitive data, and role-based permissions are strictly enforced.
We retain your information for as long as you maintain an account with ZODA Health or as required by medical or legal obligations. Clinical data may be stored for several years under Nigerian health record retention guidelines. Once data is no longer needed, it is securely deleted or anonymized.
You can access, correct, or delete your personal information through your account settings or by contacting us. You may withdraw consent at any time, subject to contractual or legal limits. If you believe your privacy rights have been violated, you have the right to file a complaint with Nigeria’s National Information Technology Development Agency (NITDA).
ZODA Health does not knowingly collect information from children under the age of 16 without verified parental or guardian consent. If such data is inadvertently collected, it will be deleted upon notification.
If your data is stored or processed outside Nigeria, we ensure that it is handled in line with internationally recognized data protection standards and under strict contractual safeguards.
We may periodically revise this policy to reflect service updates, legal requirements, or changes in data practices. Users will be notified of significant changes through email or app alerts.
If you have questions, requests, or concerns regarding this Privacy Policy or how your data is handled, reach out to us:
Email:
privacy@healr.ng
Address: 11 Kashim Ibrahim Road, Makurdi,
Benue, Nigeria.