Genie Health – Data Disposal Policy
Effective Date: 5 October 2025
Quick Summary
- End-User data collected through a Client's use of Genie SmartCare is retained while the Client relationship is active.
- Clients may export data at termination; Genie deletes Client Data within 90 days.
- Encrypted backups and logs are purged within 90 days.
- End-User data is siloed per Client and not cross-linked across different Clients.
- Disposal practices comply with Singapore's PDPA and use NIST SP 800-88 standards.
1. Scope and Definitions
This Policy applies to all data processed through Genie SmartCare (B2B) and Genie (B2C), including End-User communications, contact details, health data, Client business information, and technical data.
2. Retention Periods
End-User data is retained while the Client account is active. Upon Client termination, data may be exported within 30 days, then permanently deleted within 30 days, with backups purged within 90 days.
3. Data Segregation Across Clients
End-User data is siloed per Client and not cross-linked. Where an End-User is also a Genie Member with explicit consent, their Genie account serves as their personal health record.
4. Disposal Methods
Genie uses secure practices including NIST SP 800-88 standards for electronic data erasure, anonymization, and encrypted backup purging.
5. Client Responsibilities
Clients ensure lawful End-User consent and may request data export or early deletion in writing.
6. Oversight and Compliance
Genie's Data Protection Officer (DPO) oversees compliance. Disposal processes are reviewed annually.
Contact Us
📍 Genie Health Pte. Ltd., 60 Paya Lebar Road, Singapore