At QuickMeds we are committed to protecting and respecting your privacy.
www.quickmeds.co.uk is a website and service operated by Apothecare Group Limited ('we'/'us'). We are registered with Companies House in England and Wales with our registered address at 320a Stratford road, Birmingham, B90 3DN. Our trading address is at 153a Stamford Road, Birmingham, B20 3PS. Our company registration number is 11824371.
If you have any concerns
Data Controller and Data Protection Officer
Apothecare Group Limited (t/a www.QuickMeds.co.uk - Companies House registration no: 11824371) whose registered office is at 320a Stratford Road, Shirley, Solihull, B90 3DN is the data controller responsible for your personal data (collectively 'QuickMeds', 'Apothecare Group Limited', 'we', 'us' or our in this policy). We are registered with the UK Information Commisioners Office (ICO) with reference ZA536099.
Ahsan Ali Bhatti, the pharmacy superintendent is the Data Protection Officer.
The Data Protection Officer is responsible for enforcing this privacy notice.
Any concerns, queries, comments or requests should be addressed to him at our address above or email firstname.lastname@example.org
What is this policy for?
This policy serves to notify and explain the following:
- What sort and type of information we collect from or about you
- Defining the purpose of collecting or obtaining the information from you
- Where we store this information
- How the information we store is kept safe and secure
- How your information is used
- How and to whom your information may be shared and/or disclosed
- Your rights regarding any data we hold about you.
What information do we collect from or about you?
In the process of operating our service and website the following data is collecting and processed about you:
Collected from the device or system you use to access our website/service
- Registration information - this is the information you provide when registering to our website to access services, purchase products/services, sign up to our mailing list.
- Specific information - this is the information you provide when completing online screening questionnaires which are assessed by our prescribers.
- Communicated information - this is any information you share with us when you communicate directly with us.
- The above includes information conveyed via e-mail, telephone, post or submitted on our website via forms, questionnaires or live-chat.
This will include information such as your name, address, e-mail address, telephone number, gender, date of birth, GP details, medical history, social history, medical information, consultation responses, consultation notes, payment details including billing address, specifics related to your order such as items, quantity, frequency of ordering.
Third Party Sources
We share your information with selected third parties:
- Analytics and search engine providers to help us assess, improve and optimise our site
QuickMeds use LexisNexis Risk Solutions UK Limited to ensure our patients are who they say they are. This is a regulatory requirement which we must carry out on all new customers placing an order.
Three data sources will be checked by LexisNexis: Credit agencies, telephone database and voting register (THIS NEEDS TO BE CHECKED AND CONFIRMED, may be able to insert every single point checked instead?)
Consent is assumed by virtue of accessing the service as follows:
- You authorise LexisNexis and/or any of their appointed agents to carry out all necessary searches, including searches of consumer credit records to verify my information
- You agree to the maximum extent permitted by applicable law that you will not hold LexisNexis, its officers, employees, agents and/or customers liable for any direct, indirect, incidental, special, consequential or punitive damages and to hold harmless LexisNexis, its officers, directors, employees, agents and customers from and against any and all claims, liabilities, damages, losses or expenses, including reasonable legal fees and costs, arising out of or in any way connected with use of LexisNexis' website or any of the services provided by LexisNexis
- You confirm to the best of your knowledge and having exercised due skill and care that the information you have given is complete, true and correct and you agree to the use of your information as detailed in the above declaration.
Should you have any questions about this process please contact us.('contact us' will be hyperlinked to our contact us page)
Who is your data shared with?
In the provision of our service we rely on the support of selected third parties
- Securing access to and from our website
- Sending you order-related e-mails and other communications
- Storing your personal medical data in a secure manner
- Our trained staff to deliver the service
- Our payment provider to ensure we are able to securely take payment for our services and products
- Our laboratory services provider (The Doctors Laboratory) to provide laboratory testing services to you.
- Royal Mail or UPS to deliver your item to you
- Selected third parties to send you marketing e-mails.
As a constantly adapting and responsive company we prefer to ensure we understand our how our customers and patients use and access your website and services. Selected third party providers are engaged to:
- Collect reviews of our products and services
- Personalise the adverts you receive regarding our services
- Collect and analyse information on how our customers and patients access our website.
This is necessary for us to continue to improve the quality and level of service we provide you, ensure our website is working optimally and ensure relevant marketing communications reach the most appropriate customers and patients.
There may also arise certain legal circumstances in which we may have to disclose your information - only the absolute necessary information will be shared.
- To detect, prevent and/or address fraud, security or technical issues
- Any duty placed upon us to disclose or share your data to comply with any legal obligation to enforce or apply our Terms and Conditions, or to protect the property, rights or safety of Apothecare Group Limited, our partners, entities and customers.
- Sharing of appropriate information with other businesses and organisations for the purpose of fraud and credit risk detection and reduction.
Where your information is shared with any third parties they do not have the authority to make use of your personal data in any way other than for the reason for which it was initially provided. All partner organisations are required to comply with the same data security and protection measures to ensure your personal information is processed appropriately in line with regulations and data processing agreements.
When information is shared with our internal staff this may include appropriately trained prescribers, pharmacists, technicians, dispensary staff, healthcare assistants and customer care representatives; all of whom are bound by strict codes of conduct both professional and internal which ensure the safety of your personal data.
How do we store your information?
Any information you provide us is stored safely and securely on a private database which is only accessed by our prescribers, pharmacists, technicians, dispensary staff, healthcare assistants, customer care staff and our IT support team.
The platform itself is hosted on our own servers in the UK. NEED TO PUT INFORMATION ABOUT SERVER HERE.
How long do we hold your information/data for?
Your data is only held for as long as is necessary. Our internal retention policy details the length of time each type of data is held for.
Medical data is held in accordance with national guidance (up to the death of the patient plus ten years).
Anonymised data is kept for an indefinite period as this by its very nature can not be used to identify you.
Your Rights regarding any information we hold about you
Declining consent for us to process your data
- Visit your account and decline consent under 'marketing preferences'
- Use the 'unsubscribe' link which you will find at the bottom of any marketing e-mails we send you (This will not unsubscribe you from communications which are necessary for us to provide any services you access from us)
- Contacting us directly Contacting us will be hyperlinked to contact us page
Amending your data
If there is any information we hold on you which is incorrect you can update it in your account settings.
Should you come across anything which is not amendable in your account settings (such as responses to screening questionnaires) then please contact us directly. Contacting us will be hyperlinked to contact us page
Your right to erasure
You have the right to request your data be deleted and we have a duty to comply except where there is a legal requirement for us not to delete selected data. Medico-legal requirements mean we must store certain data as per national guidelines and consequently it cannot be deleted. If you wish to terminate your relationship with us you can terminate your account within account settings - your account will then stop working. You will no longer receive any communications from us except where legally required.
Access to your data
You can request to see your data and any information we hold about at any time - you must put your request in writing but you can contact us via any of the methods on our contact us page. We will need to have proof of identity before we supply any information to ensure we are sharing the information with the right person.
Moving your data to another provider
If you wish to move your data to a different provider/company, contact us and we will transfer the data in a commonly used format to facilitate this.
Changes to this notice
Any amendments to this notice will be visible on this page. Substantial changes will be notified by e-mail.