Privacy Policy

Introduction

Your privacy is important to us. This Privacy Policy explains how Sajaam collects, uses, and safeguards information — including patient dietary data — when healthcare facilities use our meal ordering platform.

Information We Collect

We collect information necessary to provide our healthcare meal ordering service, including:

• Patient dietary profiles (allergens, intolerances, medical diets, texture modifications, cultural and religious preferences).
• Meal ordering history and nutritional intake data.
• Facility and staff account information (names, email addresses, roles).
• Non-personal information such as browser type, device, and usage patterns through cookies and similar technologies.

How We Use Your Information

• To provide and maintain the meal ordering platform, including dietary safety checks.
• To generate nutrition and compliance reports for care teams.
• To communicate with facility administrators about updates, maintenance, and support.
• To improve the functionality and user experience of the platform.

Sharing Your Information

We do not sell patient data. We share information only as necessary to provide our services (e.g. integration with facility EMR/EHR systems) or to comply with legal obligations. Third-party processors are bound by data processing agreements that meet GDPR standards.

Data Security

All patient dietary and ordering data is encrypted at rest and in transit. We implement role-based access controls so that only authorised staff can access relevant patient information. Our infrastructure is regularly audited for compliance with healthcare data protection standards.

Your Rights Under GDPR

You have the right to access, rectify, or delete personal information we hold. You may also request data portability or object to processing in certain circumstances. Please contact us at [email protected] to exercise your rights.