Last Updated: February 16, 2026
Pre-Launch Notice: Docplan is currently in beta. We are launching in Kenya first, with expansion to Tanzania, Oman, UAE, and USA planned for 2026. Select your country above to view the relevant privacy policy.
Features in Development:
While this Privacy Policy describes our complete data protection framework, some features are currently in active development and will be available soon:
In the meantime, you can exercise all your data rights by contacting our Privacy Officer at legal@docplan.app. We are committed to responding within the legally required timeframes.
Docplan ("we," "us," or "our") is committed to protecting your privacy and the confidentiality of your health information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our healthcare appointment scheduling platform.
This policy complies with the Kenya Data Protection Act, 2019 and other applicable privacy laws.
This policy complies with the Tanzania Personal Data Protection Act, 2022 and other applicable privacy laws.
This policy complies with the Oman Data Protection Law and other applicable privacy laws.
This policy complies with the UAE Federal Data Protection Law and other applicable privacy laws.
This policy complies with the Health Insurance Portability and Accountability Act (HIPAA) and other applicable federal and state privacy laws.
This notice describes how your personal and health information may be used and disclosed in accordance with the Kenya Data Protection Act, 2019.
Healthcare providers using Docplan are required by law to protect your personal data. Docplan is registered as a Data Controller with the Office of the Data Protection Commissioner and processes your information in accordance with Kenya's data protection regulations.
This notice describes how your personal and health information may be used and disclosed in accordance with the Tanzania Personal Data Protection Act, 2022.
Healthcare providers using Docplan are required by law to protect your personal data. Docplan complies with Tanzania's data protection regulations and the guidelines of the Tanzania Data Protection Authority.
This notice describes how your personal and health information may be used and disclosed in accordance with the Oman Data Protection Law.
Healthcare providers using Docplan are required by law to protect your personal data. Docplan processes your information in accordance with Oman's data protection regulations and respects your rights as a data subject.
This notice describes how your personal and health information may be used and disclosed in accordance with the UAE Federal Data Protection Law.
Healthcare providers using Docplan are required by law to protect your personal data. Docplan complies with the UAE's data protection regulations and may store data within UAE servers to comply with data residency requirements.
This notice describes how medical information about you may be used and disclosed and how you can get access to this information. Please review it carefully.
Healthcare providers using Docplan are required by law to maintain the privacy of your Protected Health Information (PHI) and to provide you with this notice of their legal duties and privacy practices. Docplan acts as a Business Associate to these healthcare providers under HIPAA.
When you use Docplan, we may collect and process the following types of information:
We automatically collect certain technical information:
To comply with healthcare regulations and maintain legal proof of your consent, we automatically record the following when you create an account or accept our Terms of Service or Privacy Policy:
Purpose: These records serve as legal documentation that you have reviewed and agreed to our policies, and they help us comply with healthcare regulations including HIPAA (USA), Kenya Data Protection Act, and other applicable laws.
Retention: Consent records are retained for 7 years after your account is closed to meet legal obligations, regulatory requirements, and statute of limitations for potential claims.
Your Rights: You can request to view your complete consent history at any time by contacting legal@docplan.app. Please note that due to legal and regulatory requirements, consent records may not be deleted even if you delete your account, though they will be isolated from other personal data.
We use your information for:
Email Security Notice: Email communications may not be fully encrypted in transit or storage. We minimize the amount of health information included in emails. For maximum security, we recommend accessing your appointment information through your secure Docplan account.
We share your information with the healthcare organizations and providers you book appointments with to facilitate your care.
We may share information with trusted third-party service providers who assist us in operating our platform, including:
All service providers are required to maintain data protection compliance and protect your information.
We may disclose your information when required by law, such as:
We will never sell, rent, or share your health information for marketing purposes without your explicit written authorization.
You have the following rights regarding your personal and health information:
You have the right to view and obtain a copy of your personal information maintained by Docplan.
You may request corrections to your personal information if you believe it is incorrect or incomplete.
You may request deletion of your personal information, subject to legal retention requirements.
You may request limitations on how we use or disclose your personal information.
You may request a copy of your data in a structured, commonly used format.
You may object to certain types of data processing, including direct marketing.
You can disable email notifications at any time in your account settings while still maintaining access to your appointment information through your secure account.
To exercise any of these rights, please contact our Privacy Officer at legal@docplan.app or through your account settings.
We implement industry-standard security measures to protect your personal and health information, including:
While we take extensive measures to protect your information, no system is completely secure. We encourage you to use strong passwords and protect your account credentials.
We retain your personal and health information for as long as necessary to provide our services and comply with legal requirements. Healthcare records are typically retained for a minimum of 6 years from the date of last service, as commonly required by healthcare regulations.
If you wish to delete your account, you may do so in your account settings. Please note that we may retain certain information as required by law or for legitimate business purposes.
Docplan operates primarily in Kenya. If we transfer your data internationally, we ensure appropriate safeguards are in place as required by the Kenya Data Protection Act, 2019, including data transfer agreements and ensuring the recipient country has adequate data protection standards.
Docplan operates primarily in Tanzania. If we transfer your data internationally, we ensure appropriate safeguards are in place as required by the Tanzania Personal Data Protection Act, 2022, including data transfer agreements and ensuring the recipient country has adequate data protection standards.
Docplan operates in Oman and may transfer data to other countries for processing. We ensure appropriate safeguards are in place as required by Oman's data protection laws, including data transfer agreements and ensuring adequate data protection standards.
Docplan operates in the UAE and may store data on UAE-based servers to comply with data residency requirements. If we transfer your data internationally, we ensure appropriate safeguards are in place as required by the UAE Federal Data Protection Law.
Docplan operates in the United States. Your Protected Health Information (PHI) is stored on secure servers located within the United States in compliance with HIPAA requirements. If we transfer data to service providers or business associates, we ensure HIPAA-compliant Business Associate Agreements are in place.
Docplan is not intended for use by children under 13 years of age without parental consent. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us.
For minors aged 13-17, we require parental or guardian consent for account creation and use of our services.
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of material changes by:
We encourage you to review this Privacy Policy periodically. Your continued use of Docplan after changes are posted constitutes your acceptance of the updated policy.
In the unlikely event of a data breach that affects your personal information, we will notify you and any relevant authorities as required by applicable data protection laws. Notification will be provided without unreasonable delay.
This Privacy Policy shall be governed by and construed in accordance with the laws of the Republic of Kenya. Any disputes arising from this policy shall be subject to the exclusive jurisdiction of the Kenyan courts.
This Privacy Policy shall be governed by and construed in accordance with the laws of the United Republic of Tanzania. Any disputes arising from this policy shall be subject to the exclusive jurisdiction of the Tanzanian courts.
This Privacy Policy shall be governed by and construed in accordance with the laws of the Sultanate of Oman. Any disputes arising from this policy shall be subject to the exclusive jurisdiction of the Omani courts.
This Privacy Policy shall be governed by and construed in accordance with the laws of the United Arab Emirates. Any disputes arising from this policy shall be subject to the exclusive jurisdiction of the UAE courts.
This Privacy Policy shall be governed by and construed in accordance with the laws of the United States and applicable state laws. Any disputes arising from this policy shall be subject to the jurisdiction of the federal and state courts of the United States.
If you have questions about this Privacy Policy, want to exercise your privacy rights, or have concerns about how your information is handled, please contact us:
Privacy Officer - Kenya
Email: legal@docplan.app
Support: support@docplan.app
Website: https://docplan.app
You also have the right to file a complaint with the Office of the Data Protection Commissioner of Kenya if you believe your privacy rights have been violated.
If you have questions about this Privacy Policy, want to exercise your privacy rights, or have concerns about how your information is handled, please contact us:
Privacy Officer - Tanzania
Email: legal@docplan.app
Support: support@docplan.app
Website: https://docplan.app
You also have the right to file a complaint with the Tanzania Data Protection Authority if you believe your privacy rights have been violated.
If you have questions about this Privacy Policy, want to exercise your privacy rights, or have concerns about how your information is handled, please contact us:
Privacy Officer - Oman
Email: legal@docplan.app
Support: support@docplan.app
Website: https://docplan.app
You have the right to file a complaint with the relevant data protection authority in Oman if you believe your privacy rights have been violated.
If you have questions about this Privacy Policy, want to exercise your privacy rights, or have concerns about how your information is handled, please contact us:
Privacy Officer - UAE
Email: legal@docplan.app
Support: support@docplan.app
Website: https://docplan.app
You have the right to file a complaint with the UAE Data Protection Authority if you believe your privacy rights have been violated.
If you have questions about this Privacy Policy, want to exercise your privacy rights, or have concerns about how your information is handled, please contact us:
Privacy Officer - USA
Email: legal@docplan.app
Support: support@docplan.app
Website: https://docplan.app
You also have the right to file a complaint with the U.S. Department of Health and Human Services Office for Civil Rights if you believe your privacy rights under HIPAA have been violated. We will not retaliate against you for filing a complaint.
By using Docplan, you acknowledge that you have read and understood this Privacy Policy and agree to its terms. If you do not agree with this policy, please do not use our services.