• Free delivery
  • Uk Licensed Pharmacy
  • Free delivery
  • Uk Licensed Pharmacy
  • 1 queue Support

Pharmacy

Pharmacy

Privacy Policy

Our Policy on the Data We Process

Medifix Healthcare Ltd trading as My Pharmacy Stop (“we”, “us”, “our”) is committed to protecting and respecting your privacy.

This Privacy & Cookies Policy explains how we collect, use, store and protect your personal data when you visit www.mypharmacystop.com, use our services, or interact with us. It also explains your rights under the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018 and other applicable data protection laws.

By using our website, you accept the practices described in this policy.

1. Who We Are

The data controller responsible for your personal data is:

Medifix Healthcare Ltd
601 Bury Road
Bolton
Greater Manchester
BL2 6HZ
United Kingdom

Email: [email protected]

We determine how and why your personal data is processed.

If you have any questions about this policy or your data, please contact us using the details above.

2. Information We Collect

We may collect and process the following categories of personal data:

Information You Provide to Us

You may provide information when you:

  • Register for an account
  • Place an order
  • Complete a medical consultation
  • Contact us by email, telephone or post
  • Subscribe to updates or marketing
  • Participate in surveys or promotions

This may include:

  • Full name, date of birth and gender
  • Address, email address and telephone number
  • Payment and transaction details
  • Account login information
  • Photographic submissions (if required for medical review)
  • Order history and communication records

Special Category (Sensitive) Data

As an online pharmacy and healthcare provider, we may process special category data relating to your health.

This may include:

  • Medical history
  • Symptoms and diagnoses
  • Prescription information
  • Consultation responses
  • Relevant health records
  • Information necessary for safe prescribing

We process this data under Article 9(2)(h) UK GDPR for the provision of healthcare and medical treatment, and where necessary based on your explicit consent.

Information We Collect Automatically

When you visit our website, we may automatically collect:

  • IP address
  • Device type and operating system
  • Browser type and version
  • Time zone setting
  • Login data
  • Website usage data (pages viewed, time spent, clickstream activity)
  • Interaction data (scrolling, clicks, navigation behaviour)

Information from Third Parties

We may receive personal data from:

  • NHS or other healthcare professionals (where appropriate and lawful)
  • Payment providers
  • Delivery partners
  • Fraud prevention or credit reference agencies
  • Analytics providers

Where we receive data from third parties, we will process it lawfully and transparently.

3. How We Use Your Information

We only use your personal data where the law permits us to do so.

Lawful Bases for Processing

We rely on one or more of the following:

  • Contractual necessity – to provide services you request
  • Legal obligation – to comply with regulatory requirements
  • Provision of healthcare – under UK GDPR Article 9(2)(h)
  • Legitimate interests – business operations, fraud prevention, service improvement
  • Consent – where required (e.g., marketing communications)
  • Vital interests – in medical emergencies

We Use Your Information To:

  • Process and fulfil prescriptions
  • Provide medical advice and consultations
  • Verify identity and ensure medication suitability
  • Process payments and refunds
  • Communicate order updates
  • Comply with professional and regulatory standards
  • Improve our website and services
  • Conduct internal audits and analytics
  • Prevent fraud and maintain security
  • Send marketing communications (where permitted or consented to)

We may use limited automated decision-making (such as online medical screening tools). You have the right to request human review of any significant automated decision.

4. Who We Share Your Information With

We only share your data where necessary and lawful.

This may include:

  • Qualified prescribers and pharmacists
  • NHS or other healthcare professionals
  • Delivery providers (e.g. Royal Mail, DPD)
  • Payment processors
  • Secure cloud-based IT providers
  • Regulatory bodies (e.g. GPhC, GMC)
  • Fraud prevention agencies

We do not sell your personal data.

All third-party providers are contractually required to safeguard your information and comply with data protection laws.

5. Klarna and Other Payment Providers

If you select certain payment options (such as buy-now-pay-later services), your personal and order data may be shared with the relevant payment provider to assess eligibility and process payment in accordance with their privacy policy.

6. Cookies

Our website uses cookies to distinguish you from other users and to improve your browsing experience.

A cookie is a small file stored on your device.

Types of Cookies We Use:

Strictly Necessary Cookies
Required for core site functionality (e.g. secure login, shopping basket).

Analytical / Performance Cookies
Help us understand how visitors use our website so we can improve it.

Functionality Cookies
Allow us to remember your preferences.

Targeting / Advertising Cookies
Used to make advertising more relevant to you.

Third parties (such as analytics providers) may also set cookies.

You can manage or disable cookies in your browser settings. Please note that disabling essential cookies may affect website functionality.

For further details, please see our Cookie Policy.

7. Data Security

We use appropriate technical and organisational measures to protect your data, including:

  • SSL encrypted communications
  • Secure servers
  • Restricted staff access
  • Regular security audits
  • Confidentiality training for employees

While we take strong precautions, transmission of information via the internet is not completely secure and is at your own risk.

8. Data Retention

We retain personal data only for as long as necessary.

Typical retention periods include:

  • Health records: in line with NHS guidance (typically up to 10 years after death)
  • Transactional and account data: up to 6 years
  • Marketing data: until consent is withdrawn
  • Anonymised analytics data: retained for research purposes

Where data is no longer required, it will be securely deleted or anonymised.

9. International Transfers

Your data is stored and processed within the United Kingdom and the European Economic Area (EEA). Where data is transferred outside these areas, appropriate safeguards will be implemented.

10. Your Rights

Under UK data protection law, you have the right to:

  • Be informed about how your data is used
  • Access your personal data
  • Request correction of inaccurate data
  • Request deletion (“right to be forgotten”)
  • Restrict processing
  • Object to processing (including direct marketing)
  • Data portability
  • Object to automated decision-making

To exercise your rights, contact:

[email protected]

We may need to verify your identity before processing your request.

You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO):
https://ico.org.uk

11. Marketing Communications

If you opt in, we may send you updates about products or services similar to those you have previously purchased or enquired about.

You may unsubscribe at any time by:

  • Clicking the “unsubscribe” link in emails
  • Contacting us directly

We will never send marketing communications where you have opted out.

12. Changes to This Policy

We may update this Privacy & Cookies Policy from time to time.

Any changes will be posted on this page and, where appropriate, notified to you by email. Please check this page periodically for updates.