Legal

Privacy policy

How we handle your information — in plain language, aligned with India's DPDP Act, 2023.

Last updated: 20 April 2026

This policy explains what data Zuzu Healthcare ("Zuzu", "we", "us") collects about you, why we need it, how we use it, and the rights you have over it. Zuzu operates ambulance booking, a blood donor network, and doctor appointment scheduling across India, and is designed in line with the Digital Personal Data Protection Act, 2023 ("DPDP Act").

1. Who we are

Zuzu Healthcare is a healthcare technology company with its registered office at Avani HIG 7, 1st Main, 1st Cross, KHB Colony, Lakamanahalli, Opp. KMF Dairy, PB Road, Dharwad, Karnataka — 580004, India. You can reach us at contact@zuzuhealthcare.com or +91 97310 66640.

2. What information we collect

a. Information you give us

  • Identity and contact details: name, phone number, email, Aadhaar reference (for donors), photograph.
  • Health-relevant information: blood group, blood test history for donor eligibility, pre-existing conditions you choose to share with a doctor.
  • Booking details: pickup location, destination, preferred ambulance type, doctor, or donor match criteria.
  • Payment details, handled through regulated payment gateways.

b. Information collected automatically

  • Device information, IP address, and app usage data.
  • Location data while a service is active (e.g. during a ride).
  • Diagnostic logs needed to keep the service reliable and secure.

3. Why we collect it

  • To deliver the service you requested (dispatch, matching, consultation).
  • To verify donors and doctors against Aadhaar and NMC records.
  • To communicate with you about a booking, change in status, or support issue.
  • To meet regulatory, audit, and safety requirements.
  • To improve the service — always on aggregated, minimised data.

4. Consent

We collect personal data on the basis of your explicit consent under the DPDP Act. You can withdraw consent at any time from within the app or by writing to us. Withdrawal does not affect processing done before withdrawal.

5. Who we share it with

  • The partner you book with (hospital, ambulance fleet, doctor, blood bank) — only what they need to deliver the service.
  • Payment processors, cloud infrastructure, and verification partners operating under contractual data-protection obligations.
  • Regulatory or law-enforcement bodies, where legally required.

We do not sell personal health information. Ever.

6. How long we keep it

We retain personal data only for as long as it's needed to deliver the service, meet legal obligations, or honour a consent you gave for a specific purpose. You can request deletion at any time (see "Your rights" below).

7. Security

Data is encrypted in transit (TLS 1.2+) and at rest. Access is scoped by role, logged, and reviewed. We run regular security reviews, patch management, and incident response procedures.

8. Your rights

Under the DPDP Act, you have the right to access a copy of your data, correct it, erase it, and withdraw your consent. You can exercise these rights from the app's "Data & privacy" settings or by writing to contact@zuzuhealthcare.com. We will respond within the statutory timelines. See also our DPDP data rights page.

9. Children

Zuzu is not designed for independent use by children under 18. Bookings on behalf of minors must be made by a parent or guardian.

10. Changes to this policy

If we make material changes, we will notify you in the app and by email before they take effect. The "Last updated" date above will always reflect the current version.

11. Contact

Questions about this policy or your data? Email contact@zuzuhealthcare.com or see the grievance officer page for escalations.

Emergency? Call 108