Privacy Policy පෞද්ගලිකත්ව ප්‍රතිපත්තිය

This Privacy Policy explains how Sineth Hospitals collects, uses, stores, and protects personal information when you use our main hospital website, appointment forms, patient portal, digital communication channels, and healthcare-related services.

This policy applies to sinethhospitals.com main hospital website. Other health education, news, or media websites operated under separate subdomains may have separate privacy policies.

We may collect the following types of information:

Information provided by you:

• name, age/date of birth, sex, phone number, WhatsApp number, email address, and address
• appointment details and service requests
• health-related information voluntarily submitted through appointment forms, contact forms, patient portal features, email, WhatsApp, or phone communication
• reports, prescriptions, photographs, location details, payment confirmations, and other documents you choose to share

Automatically collected website information:

• IP address, browser type, device information, pages visited, referral source, and general website usage data
• cookies required for language preference, login sessions, and website functionality

Sineth Hospitals is moving towards a more structured digital healthcare system. Certain medical documents such as prescriptions, diagnosis summaries, invoices, laboratory reports, consultation notes, and treatment-related records may be shared digitally through email, WhatsApp, or the patient health portal.

Patient portal access is provided after the patient profile is created by our staff. Patients are responsible for keeping their login details, devices, email accounts, and WhatsApp access secure.

We use information to:

• process appointment and service requests
• contact patients or relatives regarding bookings, reports, payments, or follow-up care
• provide OPD, home visit, laboratory, telemedicine, and related healthcare services
• create and manage patient portal access
• prepare and send invoices, prescriptions, diagnosis cards, reports, and medical documents
• improve our website, services, patient communication, and safety processes
• comply with legal, regulatory, professional, or clinical obligations

We may use cookies for:

• login sessions and patient portal functionality
• language preference
• website performance and security
• basic website analytics

We may use selected third-party services to support website functionality and communication, such as:

• Google Analytics for basic website usage analysis, if enabled
• Google Maps for location display and directions
• email, WhatsApp, SMS, or phone services for communication
• hosting, security, and technical service providers

These third-party providers may process limited technical or communication-related data according to their own privacy policies.

We do not sell, rent, or trade patient personal information.

We may share information only when necessary:

• with authorised healthcare staff involved in patient care
• with laboratories, pharmacies, or healthcare partners when needed for patient services
• with technical service providers supporting our systems
• when required by law, regulation, court order, or professional obligation
• with patient consent or instruction

While we take reasonable steps to protect information, internet-based communication methods such as email and WhatsApp may carry privacy and security risks beyond our direct control.

Patients should ensure that the phone numbers, email addresses, devices, and WhatsApp accounts used to receive medical information are under their control or shared only with trusted individuals.

We take reasonable technical and organisational measures to protect personal and health-related information from unauthorised access, misuse, loss, or disclosure. However, no digital system or internet transmission can be guaranteed to be completely secure.

Some services may be used for children through a parent, guardian, or responsible adult. Parents or guardians should provide information on behalf of children and ensure that contact details used for communication are appropriate and secure.

You may contact us to request access, correction, update, or deletion of personal information where legally and clinically appropriate. Certain medical, financial, or service records may need to be retained for legal, professional, clinical, accounting, or safety reasons.

We may update this Privacy Policy from time to time. The updated date will be shown on this page. Continued use of our website or services after changes means you accept the updated policy.

For privacy-related questions, contact Sineth Hospitals:

• Email: info@sinethhospitals.com
• Phone: 0 727 725 725
• Address: Rattanapitiya, Boralasgamuwa, Sri Lanka
• Contact form: contact.php