Facebook Instagram X-twitter Linkedin Youtube
Book Appointment

Privacy Policy

Our Commitment to Your Privacy

At Modawa, protecting your personal health information is not just a legal requirement—it’s the foundation of trust that makes effective therapy possible. We adhere to the highest international standards for medical privacy and data protection.

Information We Collect

Registration Information:

  • Full name, date of birth, and contact details
  • Emergency contact information
  • Insurance information (if applicable)
  • Preferred language and communication methods

Health Information:

  • Mental health history and current symptoms
  • Previous treatment experiences and medications
  • Family mental health history (when relevant)
  • Assessment questionnaire responses
  • Session notes and treatment plans (with explicit consent)

Technical Information:

  • IP address and device information (for security purposes)
  • Platform usage data (to improve service quality)
  • Session recordings (only with explicit written consent)

How We Use Your Information

Direct Care Purposes:

  • Providing personalized mental health treatment
  • Coordinating care among your treatment team
  • Monitoring treatment progress and outcomes
  • Emergency contact in crisis situations

Quality Assurance:

  • Clinical supervision and professional development
  • Treatment outcome research (anonymized data only)
  • Platform improvement and service enhancement

Legal and Safety Requirements:

  • Compliance with healthcare regulations
  • Reporting requirements for imminent danger situations
  • Court orders or legal subpoenas (only when legally required)

Information Sharing and Disclosure

Within Your Care Team: We may share your information among your assigned healthcare providers (psychiatrist, psychologist, therapist) to ensure coordinated, effective treatment. This sharing is limited to information directly relevant to your care.

Third-Party Services:

  • Payment Processors: Secure financial transaction processing
  • Technology Providers: HIPAA-compliant platform hosting
  • Emergency Services: Only in immediate danger situations

We Never Share Information For:

  • Marketing or advertising purposes
  • Research without explicit consent
  • Commercial gain or business development
  • Social media or public platforms

Data Security Measures

Technical Safeguards:

  • End-to-end encryption for all communications
  • Multi-factor authentication for all accounts
  • Regular security audits and penetration testing
  • Secure cloud storage with automated backups

Administrative Safeguards:

  • Staff training on privacy and security protocols
  • Regular policy updates based on best practices
  • Incident response procedures for any security breaches
  • Business associate agreements with all vendors

Physical Safeguards:

  • Secure data centers with restricted access
  • Encrypted storage devices
  • Secure disposal of physical documents
  • Protected workstation environments

Your Privacy Rights

Access and Control:

  • Right to access your personal health information
  • Right to request corrections or amendments
  • Right to request restrictions on information use
  • Right to request alternative communication methods

Data Portability:

  • Right to receive your health records in electronic format
  • Right to direct transfer to another healthcare provider
  • Right to obtain copies of treatment summaries

Deletion Rights:

  • Right to request deletion of your account and data
  • Right to withdraw consent for specific data uses
  • Automatic data deletion options after treatment completion

International Compliance

We comply with multiple international privacy frameworks:

  • GDPR (General Data Protection Regulation) – European Union standards
  • HIPAA (Health Insurance Portability and Accountability Act) – United States standards
  • Saudi Data Protection Law – Local regulatory requirements
  • International Association for Healthcare Privacy – Global best practices

Breach Notification

In the unlikely event of a security breach:

  • You will be notified within 72 hours
  • We will explain what information was involved
  • We will describe steps being taken to address the breach
  • We will provide recommendations for protecting yourself

Changes to This Policy

We review and update this privacy policy annually or when:

  • Laws or regulations change
  • Our services or technology platforms change
  • Industry best practices evolve
  • Patient feedback suggests improvements

You will be notified of any material changes via email and platform notification at least 30 days before implementation.

Contact for Privacy Concerns

Privacy Officer: info@modawa.org Phone: +966-11-456-7891 Mailing Address: Modawa Privacy Office P.O. Box 87654 Riyadh 11461, Saudi Arabia

we listen, we care

Quick Links

Services

Contact US
Facebook Instagram X-twitter Linkedin Youtube

MODAWA © 2025 All Rights Reserved