Privacy Policy

  1. Home
  2. Privacy Policy

Last Updated January 2025

Privacy Policy

Introduction

At Novacare Health Limited t/a onlinemeds (“we”, “us”, “our”, “company”), we are committed to protecting and respecting your privacy. This policy outlines how we collect, use, and safeguard your personal data in compliance with the General Data Protection Regulation (UK GDPR), Data Protection Act 2018, and the Human Medicines Regulations 2012 as they apply to online pharmacy services.

  1. Information We Collect

    To provide our services, we may collect and process the following types of personal data:

    • Personal Information: Name, address, contact details (email, phone number), date of birth, and any information necessary to verify your identity.
    • Health Information: Details about your medical history, prescriptions, current health conditions, and other relevant health-related data necessary for the safe provision of our services.
    • Payment Information: Financial details for billing and payments.
    • Prescribing Information: Information about your consultation with our UK registered prescribers, including prescriptions issued, treatment plans, and recommendation.

  2. How We Use Your Data

    We collect and use your data for the following purposes:

    • To Provide Our Services: This includes processing your orders, fulfilling prescriptions, and delivering medications to you.
    • For Consultations and Prescriptions: Our UK registered prescribers will access your medical history and health information to provide safe, personalised prescribing services.
    • To Comply with Legal Obligations: We are required by law to maintain accurate records of prescriptions and consultations, in accordance with the General Pharmaceutical Council (GPhC) and other regulatory bodies.
    • To Communicate with You: We may contact you regarding your orders, prescriptions, or consultations, and provide necessary health information. We may also contact you with marketing material related to the company, existing or new products and existing or new services.

  3. Legal Basis for Processing

    We process your personal data under the following lawful bases:

    • Performance of a Contract: Processing is necessary for the performance of a contract to which you are a party, such as purchasing medications or receiving a consultation.
    • Legal Obligation: We are required to keep certain records under UK pharmacy law, such as the retention of prescription records.
    • Consent: For certain types of data, such as marketing communications, we will request your explicit consent before processing your data.

  4. Sharing Your Data

    We will only share your personal data with third parties when it is necessary to do so, including:

    • Healthcare Providers: To ensure you receive the best care, we may share your health information with other healthcare providers, such as your GP, in accordance with your consent.
    • Payment Processors: To process your payment securely.
    • Regulatory Authorities: We may disclose your information to the General Pharmaceutical Council, the Medicines and Healthcare products Regulatory Agency (MHRA), or other regulatory bodies as required by law.

    We will never sell or share your personal data with third parties for marketing purposes without your explicit consent.

  5. Data Retention

    We will retain your personal data for as long as necessary to provide our services and comply with our legal and regulatory obligations. For example:

    • Prescription Records: Retained for a minimum of five years, as required by law.
    • Consultation Notes: Retained for at least eight years after your last contact with us, in line with best medical practice.

  6. Your Rights

    Under UK GDPR, you have several rights regarding your personal data:

    • Access: You have the right to request access to your personal data that we hold.
    • Correction: You can request corrections to any inaccurate or incomplete data.
    • Erasure: In certain circumstances, you may request the deletion of your personal data.
    • Restriction of Processing: You can request that we limit how your data is processed in certain situations.
    • Data Portability: You have the right to receive your personal data in a commonly used, machine-readable format.
    • Objection: You can object to processing based on legitimate interests or direct marketing.

    To exercise any of these rights, please contact us at hello@onlinemeds.co.uk.

  7. Data Security

    We implement robust security measures to protect your personal data against unauthorized access, accidental loss, or destruction. Our website uses encryption technology to ensure that any personal data you provide is transmitted securely. We also regularly review our security procedures to maintain the highest standards of data protection.

  8. Cookies

    Our website uses cookies to enhance your browsing experience. For more detailed information on the types of cookies we use and how to manage them, please see our Cookie Policy.

  9. Changes to This Policy

    We may update this Privacy Policy from time to time to reflect changes in our services or legal requirements. Any changes will be posted on this page, and where appropriate, notified to you by email.

  10. Contact Us

    If you have any questions about this Privacy Policy or how we handle your personal data, please contact our Data Protection Officer at:

    Gavin Cheema

    Novacare Health Limited t/a onlinemeds

    Address: Kings House Business Centre, St Johns Square, Wolverhampton, WV2 4DT

    Email: hello@onlinemeds.co.uk

    Telephone: 01902 288213