Privacy Policy

1.1 Personal Identification Information

We collect personal identification details to verify your identity and ensure accurate prescription processing for clinicians, prescribers, pharmacy professionals, pharmacy and clinic administrators. This includes:

• Full name for identification purposes. Job title, professional qualifications, organisational and institutional affiliations.
• Contact details (email, phone number) to communicate important updates about your prescriptions and account.
• Address to facilitate the delivery of medications where applicable and billing.
• Date of birth and gender to ensure proper identification and legal compliance.
• Sensitive personal data, includes details about your physical and mental health, medical conditions, and other clinical indicators. This may encompass environmental, socio-economic, and behavioral factors relevant to health and well-being.

1.2 Medical and Prescription Information

To provide safe and appropriate prescriptions, we collect:

• Medical history relevant to your prescriptions, ensuring drug compatibility and patient safety.
• Prescription details, including medication name, dosage, and prescribing physician.
• Healthcare provider details to coordinate with doctors and pharmacists.

1.3 Transactional, Technical and Usage Information

We collect technical data to enhance our website, SendScript App and SendScript Platform functionality and security:

• IP address to track usage trends and prevent fraudulent activity.
• Browser type and version and language for site optimisation.
• Operating system details for compatibility improvements.
• Cookies and tracking technologies to personalise user experience and provide analytics (see Cookie Policy).
• Other technologies that may uniquely identify your device or browser.
• Transactional data, which includes details of purchases and orders made by you, along with your payment card information or bank transfer details.

1.4 Payment Information

We process personal data to facilitate payments for services provided. This may include details necessary for identification and verification, such as your name, credit or debit card number, card expiration date, and CVV code.

1.5 Profile, Marketing, and Publicly Available Information

We collect the following information to ensure transparency:

• Profile Data: Includes login credentials for your online account, such as username and password, as well as your stated interests, preferences, feedback, and survey responses.
• Marketing and Communications Data: Covers your preferences regarding marketing communications from us and third parties, your preferred method of communication, and any correspondence you have had with us.
• Publicly Available Personal Information: Includes details you have shared on publicly accessible platforms, such as social media accounts (e.g., Twitter, Facebook, or other public forums).

1.6 Information We Receive from Others

In addition to the information you provide directly, we may receive personal data about you from third parties and publicly available sources, including:

• Healthcare Service Providers: Pharmacy staff, Clinicians and administrators may share information about you when using our services.
• Other Partners: We may receive personal data about you from our business partners.
• Third Parties or Publicly Available Sources: We may obtain personal data about you from various third parties and publicly accessible sources.

2.1 Lawful Basis for Processing

We only process your personal data where permitted by law. The most common circumstances in which we use your data include:

• Contractual necessity – When processing is required to fulfill a contract we have entered into with you or are about to enter into.
• Legitimate interests – When processing is necessary for our legitimate interests (or those of a third party), provided these do not override your fundamental rights and freedoms.
• Legal or regulatory obligations – When processing is required to comply with applicable laws or regulatory requirements.

2.2 Consent and Marketing Communications

We generally do not rely on consent as a legal basis for processing your personal data, except when sending direct marketing communications from third parties via email or SMS. You can withdraw consent for marketing at any time by contacting us.

2.3 Healthcare and Service Management

We process personal data to support healthcare services, including:

• Preventive or occupational medicine
• Assessing an employee's work capacity
• Medical diagnosis and treatment
• Managing health or social care systems and services
• Fulfilling healthcare-related contracts with professionals or institutions

Why We Share Your Data

We may share your data with third parties in the following cases:

• To deliver the services you request.
• To meet legal or regulatory requirements.
• To enforce agreements and protect our contractual rights.
• To assist law enforcement in crime or fraud prevention.
• To protect public safety or security where necessary.
• As permitted or required under applicable laws.

Our Third-Party Service Providers

To maintain a seamless and secure experience, we work with external partners who support various operational aspects of our platform, such as:

• IT infrastructure and security – Ensuring stability, hosting, and data protection.
• Payment processing – Managing transactions securely.
• Customer communication and support – Handling inquiries, complaints, and notifications.
• Delivery and logistics – Enabling prescription fulfillment and product dispatch.

Your Rights Explained

• Right to Be Informed: You have the right to know how your personal data is being used. We are committed to transparency and provide clear details about the collection, use, storage, and sharing of your information through this Privacy Notice and other relevant policies.
• Right to Access (Subject Access Request - SAR): You can request a copy of the personal data we hold about you at any time. This allows you to verify what information we have and ensure we are processing it lawfully. If you would like to access your data, you may submit a Subject Access Request (SAR).
• Right to Rectification (Correction of Data): If your personal information is incorrect, outdated, or incomplete, you can request that we update or correct it.
• Right to Erasure (Right to Be Forgotten): You can request the deletion of your personal data in certain situations, such as when the data is no longer needed for the purpose for which it was originally collected.
• Right to Restrict Processing: You may ask us to limit how your data is processed in certain cases.
• Right to Data Portability: You have the right to receive a copy of your personal data in a structured, commonly used, machine-readable format (e.g., CSV or JSON).
• Right to Object: You can object to the processing of your personal data in certain cases, such as when processing is based on legitimate interests, and you believe it affects your fundamental rights.
• Right to Avoid Automated Decision-Making and Profiling: You have the right not to be subject to fully automated decisions (i.e., decisions made solely by computers without human involvement) that significantly impact you.

How to Exercise Your Rights

If you wish to exercise any of the rights listed above, please contact us directly with your request. Important Points to Note:

• Free of charge – You do not have to pay to exercise your rights, but if a request is excessive, repetitive, or clearly unfounded, we may charge a reasonable fee or refuse the request.
• Identity verification – To protect your data, we may ask for proof of identity before processing your request. This ensures that personal information is only disclosed to the correct individual.
• Clarification requests – If needed, we may ask for more details to better understand and process your request efficiently.

Types of Cookies We Use:

• Essential Cookies – These are necessary for the functionality of the SendScript App, website, and platform. They help ensure the platform loads properly, store your cookie preferences, enable secure login for administrative users, and support payment processing features.
• Analytical Cookies – These help us understand how users interact with our platform, allowing us to improve performance and optimise user experience.

Managing Your Cookie Preferences

You can control how cookies are stored and used by:

• Adjusting your browser settings to accept, reject, or block cookies.
• Setting your browser to notify you when a cookie is placed on your device.
• Opting out of Google Analytics tracking by installing Google's opt-out browser add-on.

Opting Out

You may request that we or third parties stop sending you marketing communications at any time by contacting us. Opting out of marketing messages does not affect the personal data we have collected in connection with a product or service purchase, interactions with a medical practitioner (which may need to be retained for future reference), service experiences, or other transactions.