Privacy Policy

Last updated: February 09, 2026

This Privacy Policy describes Our policies and procedures on the collection, use and disclosure of Your information when You use the Service and tells You about Your privacy rights and how the law protects You.

We use Your Personal Data to provide and improve the Service. By using the Service, You agree to the collection and use of information in accordance with this Privacy Policy.

Interpretation and Definitions

Interpretation

The words whose initial letters are capitalized have meanings defined under the following conditions. The following definitions shall have the same meaning regardless of whether they appear in singular or in plural.

Definitions

For the purposes of this Privacy Policy:

Account

A unique account created for You to access our Service or parts of our Service.

Affiliate

An entity that controls, is controlled by, or is under common control with a party, where "control" means ownership of 50% or more of voting shares or equity interest.

Business (for CCPA/CPRA)

The legal entity that collects Consumers’ personal information and determines the purposes and means of processing, doing business in the State of California.

CCPA and/or CPRA

The California Consumer Privacy Act as amended by the California Privacy Rights Act of 2020.

Company

Siloam Clinic Ltd, 17 Ranier Circle. For GDPR purposes, the Company is the Data Controller.

Consumer

A natural person who is a California resident as defined under applicable law.

Cookies

Small files placed on Your device containing browsing data.

Country

Illinois, United States.

Data Controller

The entity that determines the purposes and means of processing Personal Data.

Device

Any device that can access the Service such as a computer, phone, or tablet.

Do Not Track (DNT)

A concept allowing users to control tracking of online activities.

GDPR

The EU General Data Protection Regulation.

Personal Data / Personal Information

Any information that relates to an identified or identifiable individual. Includes name, identification number, location data, online identifier, or factors specific to identity.

Service

The Website.

Service Provider

Any third party that processes data on behalf of the Company.

Usage Data

Data collected automatically from the Service.

Website

Siloam info – https://www.siloaminfo.com

You

The individual or entity accessing or using the Service.

Collecting and Using Your Personal Data

Types of Data Collected

Personal Data

While using Our Service, We may ask You to provide personally identifiable information including:

• Email address
• First name and last name

Usage Data

Usage Data is collected automatically and may include:

• IP address
• Browser type and version
• Pages visited
• Date and time of visit
• Time spent on pages
• Device identifiers and diagnostic data

When accessing via mobile device, we may collect device type, mobile ID, operating system, and browser information.

Tracking Technologies and Cookies

We use Cookies and similar tracking technologies including beacons, tags, and scripts to collect and analyze information.

• Cookies: You can instruct your browser to refuse cookies, though some Service features may not function properly.
• Web Beacons: Used to count users and measure engagement.

Cookies may be Session Cookies (deleted when browser closes) or Persistent Cookies (remain on device).

Types of Cookies We Use

Necessary Cookies

• Type: Session Cookies
• Purpose: Essential for authentication and security.

Notice Acceptance Cookies

• Type: Persistent Cookies
• Purpose: Identifies whether users accepted cookie notice.

Functionality Cookies

• Type: Persistent Cookies
• Purpose: Remembers user preferences.

Targeting and Advertising Cookies

• Type: Persistent Cookies
• Administered by: Third Parties
• Purpose: Deliver personalized advertisements.

Use of Your Personal Data

The Company may use Personal Data for the following purposes:

• To provide and maintain the Service
• To manage Your account
• To perform contractual obligations
• To contact You regarding updates or security notices
• To provide marketing communications (unless opted out)
• To manage requests
• To deliver targeted advertising
• For business transfers (mergers, acquisitions)
• For analytics and service improvement

Sharing of Personal Data

• With Service Providers
• For business transfers
• With Affiliates
• With business partners
• With other users in public areas
• With Your consent

Retention of Your Personal Data

The Company will retain Your Personal Data only for as long as is necessary for the purposes set out in this Privacy Policy. We will retain and use Your Personal Data to the extent necessary to comply with our legal obligations (for example, if We are required to retain Your data to comply with applicable laws), resolve disputes, and enforce our legal agreements and policies.

Where possible, We apply shorter retention periods and/or reduce identifiability by deleting, aggregating, or anonymizing data. Unless otherwise stated, the retention periods below are maximum periods ("up to") and We may delete or anonymize data sooner when it is no longer needed for the relevant purpose.

We apply different retention periods to different categories of Personal Data based on the purpose of processing and legal obligations:

Account Information

• User Accounts: retained for the duration of your account relationship plus up to 24 months after account closure to handle any post-termination issues or resolve disputes.

Customer Support Data

• Support tickets and correspondence: up to 24 months from the date of ticket closure to resolve follow-up inquiries, track service quality, and defend against potential legal claims
• Chat transcripts: up to 24 months for quality assurance and staff training purposes.

Usage Data

• Website analytics data (cookies, IP addresses, device identifiers): up to 24 months from the date of collection, which allows us to analyze trends while respecting privacy principles.
• Server logs (IP addresses, access times): up to 24 months for security monitoring and troubleshooting purposes.

Marketing Data

• Advertising identifiers and profiles: up to 24 months from last interaction or until you opt-out, whichever comes first.

Financial and Transaction Data

• Payment information: credit/debit card details are not stored on Our servers; they are processed by our Payment Service Providers.
• Transaction records (invoice details, purchase history, amounts): up to 10 years from the date of transaction to comply with tax laws and financial regulations.
• Billing and invoice records: up to 10 years to meet accounting and tax compliance requirements.

Usage Data is retained in accordance with the retention periods described above, and may be retained longer only where necessary for security, fraud prevention, or legal compliance.

We may retain Personal Data beyond the periods stated above for different reasons:

• Legal obligation: We are required by law to retain specific data (e.g., financial records for tax authorities).
• Legal claims: Data is necessary to establish, exercise, or defend legal claims.
• Your explicit request: You ask Us to retain specific information.
• Technical limitations: Data exists in backup systems that are scheduled for routine deletion.

You may request information about how long We will retain Your Personal Data by contacting Us.

When retention periods expire, We securely delete or anonymize Personal Data according to the following procedures:

• Deletion: Personal Data is removed from Our systems and no longer actively processed.
• Backup retention: Residual copies may remain in encrypted backups for a limited period consistent with our backup retention schedule and are not restored except where necessary for security, disaster recovery, or legal compliance.
• Anonymization: In some cases, We convert Personal Data into anonymous statistical data that cannot be linked back to You. This anonymized data may be retained indefinitely for research and analytics.

Transfer of Your Personal Data

Your information, including Personal Data, is processed at the Company's operating offices and in any other places where the parties involved in the processing are located. It means that this information may be transferred to — and maintained on — computers located outside of Your state, province, country or other governmental jurisdiction where the data protection laws may differ from those from Your jurisdiction.

Where required by applicable law, We will ensure that international transfers of Your Personal Data are subject to appropriate safeguards and supplementary measures where appropriate.

The Company will take all steps reasonably necessary to ensure that Your data is treated securely and in accordance with this Privacy Policy and no transfer of Your Personal Data will take place to an organization or a country unless there are adequate controls in place including the security of Your data and other personal information.

Delete Your Personal Data

You have the right to delete or request that We assist in deleting the Personal Data that We have collected about You.

Our Service may give You the ability to delete certain information about You from within the Service.

You may update, amend, or delete Your information at any time by signing in to Your Account, if you have one, and visiting the account settings section that allows you to manage Your personal information.

You may also contact Us to request access to, correct, or delete any Personal Data that You have provided to Us.

Please note, however, that We may need to retain certain information when we have a legal obligation or lawful basis to do so.

Disclosure of Your Personal Data

Business Transactions

If the Company is involved in a merger, acquisition or asset sale, Your Personal Data may be transferred. We will provide notice before Your Personal Data is transferred and becomes subject to a different Privacy Policy.

Law enforcement

Under certain circumstances, the Company may be required to disclose Your Personal Data if required to do so by law or in response to valid requests by public authorities (e.g. a court or a government agency).

Other legal requirements

The Company may disclose Your Personal Data in the good faith belief that such action is necessary to:

• Comply with a legal obligation
• Protect and defend the rights or property of the Company
• Prevent or investigate possible wrongdoing in connection with the Service
• Protect the personal safety of Users of the Service or the public
• Protect against legal liability

Security of Your Personal Data

The security of Your Personal Data is important to Us, but remember that no method of transmission over the Internet, or method of electronic storage is 100% secure. While We strive to use commercially reasonable means to protect Your Personal Data, We cannot guarantee its absolute security.

Detailed Information on the Processing of Your Personal Data

The Service Providers We use may have access to Your Personal Data. These third-party vendors collect, store, use, process and transfer information about Your activity on Our Service in accordance with their Privacy Policies.

Advertising

We may use Service Providers to show advertisements to You to help support and maintain Our Service.

FaceBook

Their Privacy Policy can be viewed at https://www.facebook.com/privacy/policy/

Payments

We may provide paid products and/or services within the Service. In that case, we may use third-party services for payment processing (e.g. payment processors). We will not store or collect Your payment card details. That information is provided directly to Our third-party payment processors whose use of Your personal information is governed by their Privacy Policy.

These payment processors adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, Mastercard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of payment information.

Stripe

Their Privacy Policy can be viewed at https://stripe.com/us/privacy

Behavioral Remarketing

The Company uses remarketing services to advertise to You after You accessed or visited our Service. We and Our third-party vendors use cookies and non-cookie technologies to help Us recognize Your Device and understand how You use our Service so that We can improve our Service to reflect Your interests and serve You advertisements that are likely to be of more interest to You.

These third-party vendors collect, store, use, process and transfer information about Your activity on Our Service in accordance with their Privacy Policies and to enable Us to:

• Measure and analyze traffic and browsing activity on Our Service
• Show advertisements for our products and/or services to You on third-party websites or apps
• Measure and analyze the performance of Our advertising campaigns

Some of these third-party vendors may use non-cookie technologies that may not be impacted by browser settings that block cookies. Your browser may not permit You to block such technologies.

You can use the following third-party tools to decline the collection and use of information for the purpose of serving You interest-based advertising:

• The NAI's opt-out platform: http://www.networkadvertising.org/choices/
• The EDAA's opt-out platform: http://www.youronlinechoices.com/
• The DAA's opt-out platform: http://optout.aboutads.info/?c=2&lang=EN

You may opt-out of all personalized advertising by enabling privacy features on Your mobile device such as Limit Ad Tracking (iOS) and Opt Out of Ads Personalization (Android). See Your mobile device Help system for more information.

We may share information, such as hashed email addresses (if available) or other online identifiers collected on Our Service with these third-party vendors. This allows Our third-party vendors to recognize and deliver You ads across devices and browsers.

To read more about the technologies used by these third-party vendors and their cross-device capabilities please refer to the Privacy Policy of each vendor listed below.

Facebook

Facebook remarketing service is provided by Facebook Inc.

You can learn more about interest-based advertising from Facebook by visiting this page:

https://www.facebook.com/help/516147308587266

To opt-out from Facebook's interest-based ads, follow these instructions from Facebook:

https://www.facebook.com/help/568137493302217

Facebook adheres to the Self-Regulatory Principles for Online Behavioural Advertising established by the Digital Advertising Alliance. You can also opt-out from Facebook and other participating companies through:

• Digital Advertising Alliance (USA): http://www.aboutads.info/choices/
• Digital Advertising Alliance of Canada: http://youradchoices.ca/
• European Interactive Digital Advertising Alliance: http://www.youronlinechoices.eu/

For more information on the privacy practices of Facebook, please visit Facebook's Data Policy:

https://www.facebook.com/privacy/explanation

GDPR Privacy

Legal Basis for Processing Personal Data under GDPR

We may process Personal Data under the following conditions:

• Consent: You have given Your consent for processing Personal Data for one or more specific purposes.
• Performance of a contract: Provision of Personal Data is necessary for the performance of an agreement with You and/or for any pre-contractual obligations thereof.
• Legal obligations: Processing Personal Data is necessary for compliance with a legal obligation to which the Company is subject.
• Vital interests: Processing Personal Data is necessary in order to protect Your vital interests or of another natural person.
• Public interests: Processing Personal Data is related to a task that is carried out in the public interest or in the exercise of official authority vested in the Company.
• Legitimate interests: Processing Personal Data is necessary for the purposes of the legitimate interests pursued by the Company.

International Transfer of Personal Data

We may transfer, store, and process Personal Data in countries other than the country in which You are located, including countries outside the European Economic Area ("EEA") and the United Kingdom ("UK"), where data protection laws may differ.

Where we transfer Personal Data outside the EEA/UK to a country that has not been recognized as providing an adequate level of protection, We rely on appropriate safeguards, including:

• European Commission Standard Contractual Clauses ("SCCs")
• UK International Data Transfer Agreement ("IDTA") or UK Addendum to the SCCs
• Supplementary measures such as encryption, access controls, data minimization, and vendor security reviews

You may contact Us to request further information about the safeguards We use for international transfers.

Your Rights under the GDPR

You have the right to:

• Request access to Your Personal Data
• Request correction of inaccurate or incomplete Personal Data
• Request restriction of processing
• Object to processing, including for direct marketing purposes
• Request erasure of Your Personal Data
• Request data portability in a structured, commonly used, machine-readable format
• Withdraw Your consent at any time

Exercising Your GDPR Data Protection Rights

You may exercise Your rights by contacting Us. We may ask You to verify Your identity before responding. We generally respond within one month, and may extend by two additional months where permitted by law.

You have the right to lodge a complaint with a Data Protection Authority if You are located in the EEA or UK.

CCPA/CPRA Privacy Notice (California Privacy Rights)

This section applies solely to visitors, users, and others who reside in the State of California and supplements the information contained in this Privacy Policy.

Categories of Personal Information Collected

We collect information that identifies, relates to, describes, references, is capable of being associated with, or could reasonably be linked with a particular Consumer or Device.

• Category A – Identifiers: Collected: Yes
• Category B – California Customer Records: Collected: Yes
• Category C – Protected classifications: Collected: No
• Category D – Commercial information: Collected: Yes
• Category E – Biometric information: Collected: No
• Category F – Internet activity: Collected: Yes
• Category G – Geolocation data: Collected: No
• Category H – Sensory data: Collected: No
• Category I – Professional information: Collected: No
• Category J – Education information: Collected: No
• Category K – Inferences: Collected: No
• Category L – Sensitive personal information: Collected: No

Sources of Personal Information

• Directly from You
• Indirectly from You
• Automatically through cookies and tracking technologies
• From Service Providers

Use of Personal Information

• To operate and maintain the Service
• To provide customer support
• To fulfill transactions
• To respond to legal requests
• For internal auditing and security purposes

Disclosure of Personal Information

We may have disclosed the following categories of Personal Information for business or commercial purposes:

• Identifiers
• Customer records information
• Commercial information
• Internet activity

Sharing of Personal Information

• Service Providers
• Payment processors
• Affiliates
• Business partners

Sale or Sharing of Personal Information

We do not sell Personal Information for monetary compensation. Certain advertising practices may be considered a "sale" or "sharing" under CCPA/CPRA.

Retention of Personal Information

We retain Personal Information as long as reasonably necessary to fulfill the purposes described in this Policy, subject to legal requirements.

Rights of California Residents

• Right to know and access
• Right to delete
• Right to correct
• Right to opt out of sale or sharing
• Right to limit use of sensitive personal information
• Right to non-discrimination

Exercising CCPA/CPRA Rights

To exercise Your rights, contact Us at: [email protected]

We will respond within 45 days of receiving a verifiable request. This period may be extended once where reasonably necessary.

Children’s Privacy

Our Service does not address anyone under the age of 16. We do not knowingly collect Personal Data from children under 16.

Links to Other Websites

Our Service may contain links to third-party websites. We have no control over and assume no responsibility for their content or privacy practices.

Changes to This Privacy Policy

We may update Our Privacy Policy from time to time. Changes are effective when posted on this page.

Contact Us

If you have any questions about this Privacy Policy, You can contact us at:

[email protected]