THB CRM Mobile Application
Last updated: June 15, 2026
This Privacy Policy describes how THB Sekhmet Technologies Pvt Ltd. ("THB", "we", "us", or "our"), registered in India, collects, uses, stores, and protects information through the THB CRM mobile application (the "App").
The App is an enterprise tool designed exclusively for use by authorized employees and representatives ("Users") of THB's contracted business customers, including hospital staff, field sales representatives, and patient service teams. The App is not intended for use by patients, doctors, or members of the general public, and is not available for open download or self-registration.
This Privacy Policy is framed with reference to applicable Indian data protection laws, including the Information Technology Act, 2000 (including the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011) and the Digital Personal Data Protection Act, 2023, as applicable.
User accounts are provisioned by the contracting organization on an invite-only, enterprise-login basis. Basic employee profile information (such as name, employee ID, email, mobile number, and role) is integrated from backend HR/enterprise systems for the purpose of account provisioning and access control.
Authorized Users may enter information relating to prospective customers or leads as part of their sales and CRM activities. This may include the lead's name, mobile number, email address, and location. Users are responsible for ensuring that any such information is collected and entered in compliance with applicable law and with appropriate consent.
For Users associated with hospital staff and patient service teams, the App displays limited patient information relating to patients who are registered with, and have transacted with, the relevant hospital. This may include the patient's name, contact details, and visit history. Such information is accessible only to authenticated business Users of the hospital organization to which the patient belongs, and is used strictly for legitimate CRM and patient-engagement functions on behalf of that organization.
Users are responsible for the accuracy of any information they enter into the App, including lead and patient-related information, and for promptly correcting or updating such information where required.
The App may request access to the following device features:
Users may control these permissions through their device settings. Disabling certain permissions may limit specific App functionality.
The App is not directed at, and does not knowingly collect personal data from, individuals under the age of 18.
All information collected through the App is used solely for CRM-related functions, including lead and account management, patient relationship and visit tracking, field-sales activity management, and related reporting for the contracted business entity using the App. Information is not used for any other purpose, including unrelated analytics or AI/ML model training.
All data is stored on India-based AWS cloud servers.
Data is retained for a period of five (5) years, after which it is securely deleted, unless a longer retention period is required by applicable law or by the contractual arrangement between THB and the relevant business customer.
THB does not share, sell, rent, or disclose personal data collected through the App to any third party, except as strictly necessary to provide the CRM service to the contracted business entity using the App (e.g., underlying India-based cloud infrastructure providers acting under contractual confidentiality obligations). Data is used only for the purposes of the business entity to which it relates and is not shared across unrelated organizations.
THB implements appropriate technical and organizational measures to protect data against unauthorized access, alteration, disclosure, or destruction. Access to the App currently requires application-level login with a password. Integration with enterprise Single Sign-On (Azure Active Directory) is on THB's product roadmap to further strengthen access controls.
THB Sekhmet Technologies Pvt Ltd. is ISO/IEC 27001 certified, reflecting our adherence to internationally recognized standards for information security management.
While THB takes all reasonable and appropriate steps to keep data secure and prevent unauthorized access, no system of data transmission or storage can be guaranteed to be 100% secure. Access to personal data within the App is also restricted on a role-based, need-to-know basis to authorized Users.
In the event of a data breach affecting personal data processed through the App, THB will notify affected parties and/or the relevant business customer by email to compliances@thb.co.in within a reasonable timeframe, and will take prompt steps to investigate, contain, and remediate the breach in accordance with applicable law.
Users may request deletion of their account and associated personal data by raising a request through the App. Such requests will be processed in coordination with the relevant business customer's administrator, subject to any record-retention obligations under applicable law or contract.
Users may opt out of push notifications at any time through their device's native settings.
Users may withdraw consent to the processing of their personal data by notifying THB at compliances@thb.co.in. Please note that withdrawal of consent may result in THB or the relevant business customer being unable to provide continued access to the App, and may lead to deactivation of the User's account.
THB has designated a Grievance Officer to address concerns or grievances regarding the processing of personal data under this Privacy Policy. Any such concerns may be addressed to the Grievance Officer at compliances@thb.co.in, and THB will endeavor to resolve such grievances in a timely manner.
Access to the App is managed centrally by the contracted business customer. Where the customer's Active Directory (AD) is integrated with the App, user access is automatically deprovisioned when an employee leaves the organization. Where AD integration is not in place, the organization's administrator has the ability to disable any user's access at any time.
The App is currently made available to Users located in India.
THB may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify Users of material changes through the App or other appropriate means. Continued use of the App after such changes constitutes acceptance of the revised policy.
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:
THB Sekhmet Technologies Pvt Ltd.
Email: compliances@thb.co.in