Privacy Policy

This Privacy Policy explains how LMN e-Health Services (LLP) (“LMN Services”, “we”, “us”) collects, uses, shares, and protects information when you use our nephrology consultation platform used by physicians and nephrologists to manage patient cases.

On this page

Last updated Who we are Information we collect How we use information Sharing & disclosures Data retention Security Your rights & choices Children’s privacy International transfers Changes to this policy Contact us
Last updated: 08 April 2026 Applies to: LMN Services mobile app, web app, and related services

1) Who we are

LMN Services is operated by LMN e-Health Services (LLP). Our platform supports physicians and nephrologists in securely collaborating on patient cases, sharing clinical information, and generating prescriptions/recommendations.

2) Information we collect

We collect information necessary to provide clinical collaboration features, account access, security, and support. Depending on how you use the platform, this may include:

2.1 Account and user information

  • Contact details: phone number and/or email address used for login and communication.
  • Profile details: name, gender, date of birth (if provided), role (physician/nephrologist/admin), professional and organization details (such as hospital/clinic), address details (if provided), and profile photo (if uploaded).
  • Authentication information: one-time passwords (OTP) sent to your phone number and associated verification metadata.

2.2 Patient information (health and medical data)

Our platform is designed for use by healthcare professionals and may store patient information entered or uploaded by authorized users, including:

  • Patient demographics: name, age, gender, phone number, height/weight, and other administrative case details.
  • Medical history and clinical data: symptoms, vitals, lab results, radiology reports, comorbidities, medications, physician clinical queries, and prescriptions/care plans.
  • Files and documents: uploads such as reports, images, PDFs, and other attachments linked to patient cases.

Important: Patient information may include sensitive personal data and health information. Access is intended only for authorized healthcare professionals based on roles and permissions.

2.3 Device and usage information

  • Device notification token: if you enable notifications, we may store a device registration token (e.g., FCM token) to deliver push notifications.
  • Log and security data: IP address, user agent (browser/device), timestamps, and system logs to help protect the service, prevent fraud, and troubleshoot issues.

2.4 Payment-related information

If you use paid features or payment flows, we may process payment-related records (such as transaction IDs, amounts, status) and connect to payment service providers for processing and payouts.

Category Examples
Account data Phone/email, name, role, hospital/clinic details
Patient health data Symptoms, vitals, labs, radiology, prescriptions, uploads
Device & logs FCM token, IP address, user agent, timestamps
Payments Order/payment IDs, amounts, payout references, status

3) How we use information

We use information to:

  • Provide the service: enable physicians and nephrologists to create/manage patient cases, share records, and generate prescriptions/recommendations.
  • Authenticate users: send OTPs, verify logins, and maintain secure sessions/tokens.
  • Send notifications: deliver service and workflow notifications (if enabled) to your device.
  • Process payments: manage orders, payments, and payouts where applicable.
  • Maintain safety and security: detect, prevent, and respond to misuse, fraud, and security incidents.
  • Provide support: respond to requests, questions, and troubleshooting.
  • Comply with law: meet legal, regulatory, and accounting obligations.

4) Sharing & disclosures

We do not sell personal information. We share information only as necessary to operate the service, comply with law, and provide support.

4.1 Service providers (processors)

We may share limited information with trusted service providers who process it on our behalf, such as:

  • SMS/OTP delivery: to send one-time passwords for login (e.g., MSG91).
  • Push notifications: to deliver app notifications (e.g., Firebase Cloud Messaging).
  • Payment processing and payouts: to process payments and transfers (e.g., Razorpay).
  • Hosting and storage: to host the application and store uploaded files and backups (our infrastructure providers; may include cloud storage where configured).

4.2 With other users in the platform

Patient case data may be visible to authorized users (physicians/nephrologists/admins) based on roles, permissions, and workflow requirements.

4.3 Legal and safety

We may disclose information if we believe it is reasonably necessary to comply with law, enforce our terms, protect the safety and security of the service, and protect the rights, property, or safety of users and the public.

5) Data retention

We retain information for as long as needed to provide the service, comply with legal and regulatory requirements, resolve disputes, and enforce agreements.

  • Account data: retained while your account is active and for a reasonable period thereafter for security, compliance, and support.
  • Patient records: retained based on the needs of clinical care, organizational policies, and applicable legal/medical record retention requirements.
  • Logs and security records: retained for a limited period to help maintain service integrity and investigate incidents.

You may request deletion or correction as described below, subject to legal and clinical retention obligations.

6) Security

We implement reasonable administrative, technical, and organizational safeguards designed to protect information against unauthorized access, alteration, disclosure, or destruction. These measures may include role-based access control, authentication controls, secure transmission, and monitoring.

No method of transmission or storage is 100% secure. If you believe your account has been compromised, contact us promptly.

7) Your rights & choices

Depending on applicable law and your relationship to the platform (user, organization, patient), you may have rights to:

  • Request access to, correction of, or deletion of personal information.
  • Withdraw consent for certain processing where consent is the legal basis (where applicable).
  • Opt out of non-essential communications.

To exercise rights or make a privacy request, contact us using the details below. We may need to verify your identity and/or your authorization to request changes to patient data.

8) Children’s privacy

Our services are intended for use by healthcare professionals and are not directed to children. We do not knowingly collect personal information directly from children through a consumer-facing experience.

9) International transfers

Your information may be processed and stored in India and, depending on service providers used (for example, push notification infrastructure), may be processed in other countries. We take steps designed to ensure appropriate safeguards are in place where required.

10) Changes to this policy

We may update this Privacy Policy from time to time. We will post the updated version on this page and update the “Last updated” date above.

11) Contact us

If you have questions, concerns, or requests regarding privacy, contact: