Privacy Policy

RehabNow (Pvt.) Ltd. (“RehabNow”, “we”, “us”) operates the website rehabnow.pk and associated mobile applications and services (collectively the “Platform”).

This Privacy Policy explains what personal and medical information we collect from you when you use our Platform, how we use it, how we protect it, and your rights regarding that data. By using RehabNow, you agree to the collection and use of information in accordance with this policy.

This policy is governed by the laws of the Islamic Republic of Pakistan, including applicable data protection and healthcare regulations.

Personal Information

• Full name and CNIC number (for identity verification where required)
• Phone number and WhatsApp number
• Home address and location (for visit coordination)
• Email address (optional)
• Country of residence (for overseas family bookings)

Medical Information (Special Category Data)

• Health conditions, symptoms, and medical history you disclose at booking
• Physiotherapy and nursing session notes recorded by your therapist
• Treatment progress, exercise records, and clinical observations
• Family medical history (where relevant to treatment)

Payment Information

• Card details — processed securely by Stripe. We do not store full card numbers on our servers.
• JazzCash wallet or mobile number (for local payments)
• Transaction history and payment status

Technical Information

• Pages visited, time on site, and booking history
• Device type, browser, and IP address
• GPS coordinates of therapist visits (timestamped, for verification)

We use your information to:

• Match you with appropriate, PPTA & AHPC verified healthcare professionals
• Schedule and coordinate home visits at your address
• Send booking confirmations, session reminders, and post-session reports
• Process payments and maintain billing records
• Send WhatsApp updates and session reports to you and designated family members
• Improve our service quality, therapist matching, and clinical outcomes
• Comply with legal and regulatory obligations

We will NEVER sell your personal or medical data to third parties. We will NEVER share your data with advertisers, insurance companies, or pharmaceutical companies.

Healthcare data is among the most sensitive personal information. We treat it accordingly:

• All medical records are encrypted in storage (AES-256) and in transit (TLS 1.3)
• Only your assigned therapist, supervising clinician, and our clinical quality team can access your health records
• Medical data is never used for marketing or analytics purposes
• Session reports sent to overseas family members are only sent to persons you designate at booking, with your explicit consent
• Therapists are contractually bound to maintain patient confidentiality

If you believe your medical data has been accessed without authorisation, please contact us immediately at privacy@rehabnow.pk.

By providing your WhatsApp number during booking or registration, you consent to receiving the following types of messages from RehabNow:

• Booking confirmation and reference number
• Therapist assignment notification with therapist name and credentials
• Session reminders (24 hours and 1 hour before your visit)
• Post-session reports including exercises completed and therapist observations
• Monthly progress summaries (for package subscribers)
• Service updates and important account notifications

Opting out: You can stop WhatsApp messages at any time by replying STOP to any message from our WhatsApp number, or by contacting us at privacy@rehabnow.pk. Opting out of service messages may affect your ability to receive session reports and booking updates.

We share your data only with the following categories of service providers, and only to the extent necessary to deliver care:

We do not share data with: insurance companies, pharmaceutical companies, government bodies (unless legally compelled), or any third-party marketers.

We retain your data for the following periods:

You have the following rights regarding your personal data:

• Access: Request a copy of all personal and medical data we hold about you
• Correction: Request correction of inaccurate or incomplete data
• Deletion: Request deletion of your account and associated personal data (subject to legal retention requirements above)
• Data portability: Request an export of your data in a machine-readable format
• Withdraw consent: Withdraw consent for WhatsApp communications at any time
• Restrict processing: Request that we limit how we use your data in certain circumstances

To exercise any of these rights, email privacy@rehabnow.pk with your full name, phone number, and the specific request. We will respond within 14 calendar days.

We use the following types of cookies on rehabnow.pk:

We do not use advertising, retargeting, or social media tracking cookies.

RehabNow services are intended for adults. We do not knowingly collect personal information from persons under the age of 18 without the explicit consent of a parent or legal guardian.

Where a booking is made for a child or minor patient, the booking must be made by a parent or legal guardian who accepts this Privacy Policy on the patient's behalf.

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. When we make material changes, we will:

• Update the 'Last Updated' date at the top of this page
• Notify active patients via WhatsApp message
• Notify registered users via email (if email was provided)

Your continued use of RehabNow after a policy update constitutes your acceptance of the updated policy. We encourage you to review this page periodically.

For all privacy-related enquiries, requests, or complaints:

We aim to respond to all privacy requests within 14 calendar days. If you are not satisfied with our response, you may escalate your complaint to the relevant data protection authority in Pakistan.