Privacy Policy — MyQueue
Last updated: 15 May 2026
Operator: PiHub Systems, operating MyQueue (“Service”) with principal web presence at https://queue.pihubsystems.com (update this URL if your live app uses a different hostname) and corporate domain https://pihubsystems.com.
Territory: This Policy applies to users and customers in India only.
Contact (email only): support@pihubsystems.com (questions and privacy / data-rights requests).
1. Summary
MyQueue provides a digital queue / token system for clinics and similar venues: visitors check in (often via QR), staff manage the queue, and optional alerts may be sent when configured.
We process minimal personal data needed to run the queue and billing. We do not intend MyQueue to store clinical diagnoses or prescriptions.
2. Who we are
| Role | Detail |
|---|---|
| Data fiduciary / business operator | PiHub Systems |
| Brand | MyQueue |
| Website | https://queue.pihubsystems.com |
3. Who this Policy covers
- Venue owners / administrators who register and configure the Service (typically via Google sign-in where Firebase is enabled).
- Staff who operate the queue using a staff key on approved devices.
- Visitors / patients who join the queue through check-in or staff-assisted entry.
4. Categories of personal data we process
Depending on how your venue uses MyQueue, we may process:
| Category | Examples | Purpose |
|---|---|---|
| Account / owner | Name, email (via identity provider), billing identifiers linked to Razorpay | Registration, authentication, invoices/subscriptions |
| Venue profile | Clinic name, doctor display name, city, slug | Operating the queue and displays |
| Queue entry (visitor) | Full name; optional mobile number; age and area/locality fields as entered; token number; timestamps; queue status | Queue management, optional WhatsApp/SMS/voice alerts |
| Technical | IP address, device/browser signals, logs (including structured logs when enabled), cookies/local storage as strictly necessary | Security, abuse prevention, reliability |
Sensitive medical data: The Service is not designed for storing health records. You should not enter clinical or sensitive health information into queue fields.
5. Phone numbers and messaging (special note)
When a visitor provides a phone number, it may be used only for queue-related notices you have configured (e.g. WhatsApp template messages or SMS via integrated providers), subject to applicable law and provider rules (including TRAI DLT requirements for SMS in India).
- We process the number only as needed to deliver those messages and to operate the queue.
- Do not use MyQueue to send marketing unrelated to the visit without separate lawful basis and compliance.
- Owners are responsible for template approvals and consent/opt-in practices at the counter and in signage.
6. Legal bases (summary)
For business customers (venues) and their authorized users: contract (providing the Service) and legitimate interests (security, fraud prevention), where applicable under the Digital Personal Data Protection Act, 2023 (DPDP Act) and other applicable law.
For visitors’ data processed on behalf of a venue: the venue (clinic) is typically determining why the data is collected (check-in); PiHub Systems processes it as instructed in the subscription and as described in our Data Processing Addendum and this Policy.
7. Sharing and subprocessors
We use vetted subprocessors (e.g. cloud hosting, database, payments, messaging). A current list is published at /legal/subprocessors on the production site. We will notify business customers by email of material changes to subprocessors where required.
We do not sell personal data.
8. International transfers
The Service is offered India-first. Subprocessors may include providers with infrastructure outside India depending on configuration (e.g. cloud regions). Where required, we use appropriate safeguards and disclosures consistent with applicable Indian law.
9. Retention
See /legal/data-retention for retention aligned with queue lifecycle and the venue owner’s archive controls (including deletion of old completed entries).
10. Security
We implement reasonable technical and organizational measures appropriate to the risk, including encryption in transit (HTTPS), access controls for owner/staff flows, and separation of venues (multi-tenant isolation in the product design).
11. Your rights (India)
Subject to applicable law, individuals may have rights to access, correction, erasure, grievance handling, and nomination, among others. Contact support@pihubsystems.com. We may verify requests and coordinate with the relevant venue when data was collected on their behalf.
12. Grievance officer (India)
In accordance with applicable Indian requirements:
| Field | Value |
|---|---|
| Name | Ram Bilash Choudhary |
| grievance@pihubsystems.com | |
| Postal address | Mahavir Nagar, Pakri, Patna-800002, Bihar, India |
(Update when DPDP rules prescribe additional particulars.)
13. Children
The Service is intended for business use. Visitors under parental supervision may appear as queue entries without profiling children as a separate product feature. Do not misuse queue fields.
14. Changes
We may update this Policy and will post the revised version at /legal/privacy-policy with an updated date. Material changes affecting business customers may be communicated by email to the registered owner contact where we hold one.
15. Trial and billing
New venues may receive a ninety (90) day trial from registration where enabled. Commercial terms are in the Terms of Service.
Disclaimer: This document is a draft template and does not constitute legal advice.