NMC eLogbook ("we", "our", "us", "Platform") is operated as part of https://nmcelogbook.com. This Privacy Policy explains how we collect, use, store, and protect information when you use our digital logbook services. By using NMC eLogbook, you agree to the practices described in this policy.

This policy is designed to be compliant with the Information Technology Act, 2000 and the Digital Personal Data Protection Act, 2023 (DPDPA) of India.

1. Information We Collect

1.1 Personal Information

Full name, email address, and mobile number (for registration)
College name, department, and enrollment/registration number
Designation (intern, PG resident, faculty, administrator)

1.2 Clinical Logbook Data

Clinical case entries, procedure logs, and competency records
Faculty feedback, sign-offs, and assessment scores
All patient data is recorded in an anonymised format. No personally identifiable patient information is stored.

1.3 Technical Data

IP address, browser type, device identifiers
Usage logs, session data, and access timestamps
Cookies and local storage preferences

2. How We Use Your Information

We use collected information to:

Provide and operate the NMC eLogbook platform
Enable faculty verification, sign-off, and feedback workflows
Generate NMC-compliant competency reports and analytics
Send transactional notifications (account, submissions, deadlines)
Improve platform features and user experience
Comply with regulatory requirements from NMC or affiliated bodies
Respond to support queries and resolve technical issues

3. Data Storage and Security

All data is stored on secure servers located within India, in compliance with the DPDPA 2023. We implement:

256-bit AES encryption for data at rest
TLS/HTTPS encryption for all data in transit
Role-based access controls (RBAC) limiting data access to authorised personnel only
Regular security audits and vulnerability assessments

No payment card information is stored on our servers. All payment processing is handled by PCI-DSS compliant third-party gateways.

4. Sharing of Information

We do not sell your personal data. We share information only in the following circumstances:

Your institution: Your logbook data is accessible to authorised faculty and administrators at your registered college
Service providers: Trusted vendors for email, hosting, and analytics who are bound by confidentiality agreements
Legal requirements: When required by law, court order, or regulatory authority in India
NMC / regulatory bodies: Aggregate, anonymised data may be shared if mandated by the National Medical Commission

5. Cookies

We use essential cookies for authentication and session management, and optional analytical cookies (with your consent) to understand usage patterns. You may disable non-essential cookies from your browser settings without affecting core platform functionality.

6. Your Rights (DPDPA 2023)

Under the Digital Personal Data Protection Act 2023, you have the right to:

Access the personal data we hold about you
Correct inaccurate or incomplete data
Request erasure of your data (subject to legal retention requirements)
Withdraw consent for non-essential processing
Raise a complaint with the Data Protection Board of India

To exercise any of these rights, email us at support@nmcelogbook.com with "Data Request" in the subject line.

7. Data Retention

Student logbook records are retained for a minimum of 5 years after graduation or programme completion to comply with NMC record-keeping requirements. Account data is retained for 1 year after account deletion unless regulatory obligations require longer retention.

8. Children and Minors

NMC eLogbook is intended for medical students who are 18 years or older. We do not knowingly collect data from individuals under 18 without institutional guardian consent.

9. Changes to This Policy

We may update this Privacy Policy periodically. Significant changes will be communicated via email or an in-platform notice at least 14 days before taking effect. Continued use of the platform after the effective date constitutes acceptance of the revised policy.

10. Contact for Privacy Concerns

For any privacy-related questions, data requests, or complaints, contact our Data Grievance Officer:

Email: support@nmcelogbook.com
Website: https://nmcelogbook.com
Response time: Within 72 hours on business days