Privacy Policy

1. What Data We Collect

We may collect and process the following types of personal data:

• Personal Information: Full Name, Email Address, Phone Number, Date of Birth.


• Health Information (Special Category Data): Reason for appointment, Uploaded medical reports, history, or notes.


• Technical Information: IP address, Browser type, device, and interaction data.

2. Lawful Basis for Processing

We process your personal data under the following lawful bases:

• Consent: For optional data or marketing communication.


• Contractual Necessity: To manage and fulfill your appointments.


• Legal Obligation: To comply with medical or regulatory requirements.


• Vital Interests: In case of emergency or health risks.


• Legitimate Interests: To improve our services and protect system integrity.

At Dr Amjad Nabi, we prioritize the security of your financial information in full compliance with GDPR.

1. Secure Processing

Payments are processed via secure third-party platforms such as PayPal using PCI-DSS compliant encryption protocols. We do not store your credit card or bank details.

This Confidentiality Agreement ensures your sensitive medical and personal data shared with Dr Amjad Nabi is handled with strict confidentiality and in line with GDPR.

1. Scope

Covers all data shared through:

• Online appointment forms


• Uploaded reports and documents


• Communication with our clinic