In order to manage the site, VitalClinic(collectively We, Our or Us) collect a certain amount of personal data. “Personal data” means data relating to a living individual who is or can be identified either from the data or from the data in conjunction with other information.
This Data Protection Notice sets the basis on which we gather, use, disclose and process any personal data we collect from you, or that you provide to us. We will use your personal data only for the purposes and in the manner set forth below which describes the steps we take to ensure our processing of your personal data is in compliance with the General Data Protection Regulation ((EU) 2016/679) (the GDPR) and any implementing legislation.
Please read the following carefully to understand our use of your personal data.
Your right to object – please note that you have a right to object to the processing of your personal data where that processing is carried out for our legitimate interests.
1. What personal data we may collect about you?
2. The purposes of, and legal basis for, the processing of your personal data
- Information that you provide by filling in forms and pop-ups on our site: (our site). This includes information provided at the time of registering to use our site, subscribing to any services or requesting further services.
- If you contact us, we may keep a record of that correspondence.
- Details provided by you during the course of your participation in a medical or product study conducted by us.
- Details of transactions you carry out with us and of the fulfilment of your orders.
- Details of your visits to our site including, but not limited to, traffic data, location data, weblogs and other communication data, whether this is required for our own billing purposes or otherwise, and the resources that you access on our site.
- We may also use your personal data where: a) it is necessary to comply with our legal and regulatory obligations (for example, complying with reporting obligations to the Information Commissioner’s Office); b) it is necessary to support our legitimate interests (i) managing and or administering our website and operations (ii) improving our services (iii) prevention and detection of crime, (iv) analytics, provided in each such instance they are not overridden by your interests and rights; and/or c) you have consented to processing your information in such a way.
3. Medical information
4. Special categories of personal data
- You have given us your explicit consent.
- The processing is necessary to protect your, or another’s vital interest.
- You have manifestly made your personal data publicly available.
- The processing is necessary for the establishment, exercise or defence of legal claims; or necessary for reasons of substantial public interest on the basis of law.
5. Who we share your information with
- With our agents and third parties who provide services to us to help us administer our website, processing of transactions and other services.
- With regulatory bodies and law enforcement bodies (where we are required to do so to comply with a relevant legal and regulatory obligation);
- Legal, financial, political and other professional advisors;
6. Transfer of personal data outside the UK and the EEA
7. How Long we keep your personal data
8. Your data rights
- Access a copy of your personal data held by us.
- Request rectification of your personal data if it is inaccurate or incomplete.
- Request erasure of your personal data.
- Restrict our use of your personal data.
- Move (or port) personal data which you have given us to process on the basis of your consent or for automated processing.
- Object to the processing of your data where our legal basis for processing your data is for our legitimate interests.
- And not to be subject to a decision based on automated processing, including profiling which has legal or similarly significant effects.
- Update your preferences by clicking the “Unsubscribe” link in our emails;
- Contact us – see 12 section for contact details