General Data Protection Regulation (GDPR) Policy

Effective Date: March 20, 2026

Welcome to Med Sohojuttar (med.sohojuttar.com), an elite informational platform providing architectural guides for international medical tourism. Med Sohojuttar, founded and legally operated by Mizanur Rahman Hridoy, is fundamentally committed to protecting the privacy, security, and personal data of all our global visitors. Although our primary focus is guiding international patients from India to advanced healthcare facilities in the United States and the United Arab Emirates, we adhere strictly to the highest global data protection standards, including the European Union’s General Data Protection Regulation (GDPR).

This comprehensive GDPR Policy explains in detailed legal terms how we collect, use, process, store, and protect your personal data when you use our website to research high-value medical procedures such as robotic bypass surgery, complex oncology treatments, kidney care, and premium aesthetic surgeries. By continuing to use our platform, you acknowledge that you have read and understood this strict data protection policy.

1. Introduction to Our Data Processing Principles

Under the GDPR, Med Sohojuttar acts as the “Data Controller” for the personal information you provide to us directly or the data we collect automatically through your use of our digital infrastructure. We process your data based on the core principles of the GDPR:

  • Lawfulness, Fairness, and Transparency: We process your data legally, fairly, and in a completely transparent manner.
  • Purpose Limitation: We collect your data only for specified, explicit, and legitimate purposes (such as improving our medical tourism guides or serving relevant AdEx advertisements).
  • Data Minimization: We strictly limit the collection of personal data to what is directly relevant and absolutely necessary to accomplish our stated purposes.
  • Accuracy: We take reasonable steps to ensure that the personal data we hold is accurate and kept up to date.
  • Storage Limitation: We keep your personal data only for as long as is necessary for the purposes for which it was collected.
  • Integrity and Confidentiality: We process your data in a manner that ensures appropriate security, protecting it against unauthorized or unlawful processing, accidental loss, destruction, or damage.

2. Data Controller Identity and Contact Details

The entity responsible for the processing of your personal data on this platform is Mizanur Rahman Hridoy. If you have any concerns regarding how your data is handled while researching international hospitals on our site, you may contact our central operations directly at our corporate headquarters:

Data Controller:
Mizanur Rahman Hridoy
Founder & DPO, Med Sohojuttar
Level 7, The Capital, Bandra Kurla Complex (BKC)
Mumbai, Maharashtra 400051
India

3. Types of Personal Data We Collect

To provide a seamless, highly informative, and personalized experience while you navigate our extensive hospital reviews and visa logistics guides, we may collect the following categories of data:

3.1 Voluntarily Provided Data

When you reach out to us via our contact forms or official email addresses (such as info@med.sohojuttar.com) to inquire about website navigation or corporate partnerships, you may voluntarily provide your name, email address, phone number, and the specific context of your inquiry. We use this data strictly to communicate with you and address your specific requests.

3.2 Automatically Collected Data (Cookies and Analytics)

When you visit med.sohojuttar.com, our servers and third-party partners (such as Google Ad Manager and Google Analytics) automatically collect certain technical data. This includes your IP address, browser type, device information, operating system, the specific medical tourism articles you view, the time and date of your visit, and referring website URLs. This non-personally identifiable information is vital for maintaining the structural integrity of our site and optimizing the delivery of our content.

3.3 Strict Exclusion of Special Category Data (Medical Records)

Med Sohojuttar operates entirely within the “Your Money or Your Life” (YMYL) informational tier. We must explicitly clarify that we do not process, collect, or request “Special Categories of Personal Data” as defined by Article 9 of the GDPR. This means we never collect your personal medical records, diagnostic reports, genetic data, or biometric data. You are strongly advised never to submit highly sensitive health information through our standard contact channels, as we are an informational directory, not a medical clinic.

4. The Legal Basis for Processing Your Data

We process your personal data only when we have a valid legal basis to do so under Article 6 of the GDPR. These legal bases include:

4.1 Explicit Consent

By using our website and explicitly agreeing to our cookie consent banner, you give us permission to use tracking technologies, including those required for serving premium advertisements via the Google Ad Exchange (AdEx) network. You have the right to withdraw this consent at any time by modifying your browser settings or contacting our support team.

4.2 Legitimate Interests

We process technical and analytical data based on our legitimate interests to secure our website infrastructure, prevent fraudulent activities, analyze international traffic patterns, and continuously improve the quality of our medical tourism guides. We ensure that our legitimate interests never override your fundamental rights and freedoms.

5. How We Use Your Personal Data

The information we collect is utilized strictly for the following operational and structural purposes:

  • To operate, maintain, and securely host the Med Sohojuttar platform.
  • To analyze user behavior and understand which hospital destinations (e.g., California, New York, UAE) are most frequently searched, allowing us to publish better content.
  • To display relevant, high-quality advertisements through Google Ad Exchange to financially sustain our free informational platform.
  • To respond promptly to your emails, inquiries, and technical support requests.
  • To enforce our Terms and Conditions and prevent automated bot scraping of our proprietary medical data.

6. Your Rights Under the GDPR

If you are a resident of the European Economic Area (EEA), or if you are accessing our site from a jurisdiction that respects global data protection laws, you possess the following explicit rights regarding your personal data:

6.1 The Right to Access

You have the right to request a complete copy of the personal data we hold about you. We will provide this structural data in a clear, readable format.

6.2 The Right to Rectification

You have the right to request that we correct any personal information you believe is inaccurate or complete information you believe is incomplete.

6.3 The Right to Erasure (The Right to be Forgotten)

Under certain conditions, you have the right to request that we securely erase your personal data from our servers and communication logs.

6.4 The Right to Restrict Processing

You have the right to request that we temporarily or permanently restrict the processing of your personal data under specific legal conditions.

6.5 The Right to Data Portability

You have the right to request that we transfer the data that we have collected directly to another organization, or directly to you, under certain conditions.

6.6 The Right to Object

You have the right to object to our processing of your personal data, particularly regarding automated profiling or direct marketing.

To exercise any of these rights, please contact our Data Protection Officer at support@med.sohojuttar.com. We are legally obligated to respond to your request within one month.

7. International Data Transfers

Med Sohojuttar operates globally. Our corporate headquarters are located in Mumbai, India, and our target audience frequently searches for healthcare in the USA and UAE. Therefore, your personal data may be transferred to, stored, and processed in countries outside of your home jurisdiction. By using our website, you consent to these international data transfers. We ensure that all data transfers comply with the GDPR by utilizing Standard Contractual Clauses (SCCs) and partnering only with top-tier, compliant hosting and advertising providers like Google.

8. Data Retention Periods

We do not keep your personal data longer than is absolutely necessary. Analytical data used for website performance is typically anonymized or deleted within 14 to 26 months. Direct email correspondence via info@med.sohojuttar.com or business@med.sohojuttar.com is retained only as long as required to resolve your inquiry or maintain necessary corporate records, after which it is securely permanently deleted.

9. Security of Your Personal Data

We implement the highest standards of digital security to protect your data. This includes robust SSL (Secure Socket Layer) encryption across the entire med.sohojuttar.com domain, secure server hosting environments, and strict administrative access controls. However, please be aware that no method of transmission over the internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal data, we cannot guarantee its absolute security.

10. Third-Party Links and Hospitals

Our medical tourism articles frequently link to external websites, such as highly-rated hospitals, visa application portals, and aesthetic clinics. This GDPR Policy applies solely to med.sohojuttar.com. We have no control over, and assume no responsibility for, the content, privacy policies, or data protection practices of any third-party healthcare websites. We strongly advise you to read the privacy statements of any external clinic you visit.

11. Updates to This GDPR Policy

We reserve the right to update or modify this GDPR Policy at any time to reflect changes in international data protection laws, modifications to the Google Ad Exchange requirements, or updates to our operational procedures. We will post the updated policy on this page and revise the “Effective Date” at the top of the document. We encourage you to review this policy periodically.

12. Contact Our Data Protection Officer (DPO)

If you have any questions about this GDPR Policy, the data we hold on you, or if you would like to exercise one of your data protection rights, please do not hesitate to contact our designated Data Protection Officer.

Corporate Operations Address:
Mizanur Rahman Hridoy
Founder, Med Sohojuttar
Level 7, The Capital, Bandra Kurla Complex (BKC)
Mumbai, Maharashtra 400051
India

Home Treatments Hospitals Support