Privacy Policy

This Privacy Policy explains how Sohtak collects, uses, stores, and shares personal data of users in compliance with Lebanese Law No. 81/2018 on electronic transactions and personal data.

1. Data we collect

• Account data: name, email, phone, password (hashed), language preference.
• Booking data: chosen provider, service, date, mode (online / clinic / home), notes.
• Health-related notes: only what you voluntarily share with a provider.
• Provider data: profession, specialties, license documents, address.
• Technical data: IP address, browser, device, cookies.

2. How we use it

• To create and manage your account.
• To process bookings, payments, and communicate confirmations / reminders.
• To verify provider credentials and prevent fraud.
• To improve the platform and personalize search results.
• To comply with legal obligations.

3. Sharing

We share booking-related data with the chosen provider only. We do not sell your data. We may share data with payment processors, hosting and infrastructure providers, and authorities when required by law.

4. Storage & security

Data is stored on secure servers with access control, encryption in transit, and Row-Level Security at the database level. We retain data only as long as needed for the purposes described above or as required by law.

5. Your rights (Law 81/2018)

• Access the personal data we hold about you.
• Request correction of inaccurate data.
• Request deletion of your account and associated data.
• Object to certain processing or withdraw consent.

To exercise these rights, contact us via the Contact / Support page.

6. Cookies

See our Cookie Policy for details.

7. Children

The platform is not directed at children under 18 without parental consent.

8. Changes

We may update this policy. Material changes will be communicated through the platform.