Information we collect.
When you visit our website(joycepharmacy.com), we automatically collect and save your IP address.
Where you volunteer this information (i.e. by filling in an online form to use our services), we will also save your name, delivery address, email address, date of birth, telephone number, GP address, patient notes, consultation notes, payment records and details of the medicines you have ordered.
Use of Client data & information
We use Your Data:
* To provide our services to you (namely, medical consultations for prescription medications) and to comply with regulatory requirements.
* To send you details of our goods and services, or those of other companies within our group, but only if you give us permission to do so.
Some of the information we collect is medical data. This information is always treated confidentially. We will never disclose medical data unless legally required or permitted to do so. It will not be used by us for marketing purposes unless you give us your express permission.
the privacy of our customers and website visitors.
We do update this Policy from time to time so please do review this Policy regularly.
Important information about who we are
Joyce Pharmacy is a controller and responsible for all personal data it receives and holds. We have appointed a data protection leader (“DPL”) who is responsible for overseeing questions in relation to this Policy. If you have any questions about this Policy, including any requests to exercise your legal rights, please contact the DPL using the details set out below:
Full name of legal entity:
3601 California St, San Francisco, CA 94118,
If you have any queries, concerns or complaints about the use of Your Data by us, please raise them with the DPL. If this does not resolve the problem to your satisfaction, or, if you prefer to raise the issue with somebody else, then feel free to contact the live chat or call our hotline number.
24/7 online service
JOYCE PHARMACY HAS ONE OF THE BEST MOST SECURED DATA SERVE GUARDING SITE WITH WELL ENCRYPTED SSL VERSION.CLIENT PERSONAL DATA ARE SERVE GUARDED FOR A PERSONAL USE ONLY
You have the right to make a complaint at any time to the Information Commissioner’s Office (“ ICO“), the US supervisory authority for data protection issues. We would, however, appreciate the chance to deal with your concerns before you approach the ICO so please contact us in the first instance.
Changes to the Policy and your duty to inform us of the changes
This version was last updated in May 2016.
It is important that the personal data we hold about you is accurate and current. Please keep us informed if Your Data changes during your relationship with us.
Information We Collect
If you register with us, we will collect personal data or personal information from you. Personal data or personal information means any information about an individual from which that person can be identified. It does not include data where a person’s identity has been removed (anonymous data).
We may collect, use, store and transfer different kinds of data about you which we have categorized as follows:
Identity Data includes first name, last name, date of birth and gender.
Contact Data includes delivery address email address and telephone numbers.
Financial Data includes bank account, payment records and payment card details.
Medical Data includes your patient medical records, GP details, patient notes, consultation notes and details of medicines you have ordered and order history. This category of data constitutes sensitive personal data for the purposes of data protection legislation.
This will only be collected where you have expressly provided your consent to provide us with this data through any online forms and medical questionnaires you complete and send to us, telephone conversations and secure messaging with us, as well as through photo assessments.
Marketing and Communications Data includes your preferences in receiving marketing from us and our third parties and your communication preferences.
We also collect and use Aggregated Data such as statistical or demographic data for internal purposes. Aggregated Data may be derived from Your Data but is not personal data as it does not directly or indirectly reveal your identity. For example, we may aggregate information about how you use our website and services to calculate the percentage of users accessing a specific website feature, but this is anonymized. However, if we combine or connect Aggregated Data with Your Data so that it can directly or indirectly identify you, we treat the combined data as personal data which will be used in accordance with this Policy.
Storing Your Personal Data
We have put in place appropriate security measures to prevent Your Data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to Your Data to those employees, agents, contractors and other third parties who have a business need to know. They will only process Your Data on our instructions and they are subject to a duty of confidentiality.
We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.
Please note that sending information via the internet is not totally secure and on occasion such information can be intercepted. We cannot guarantee the security of personal information that you choose to send us electronically and sending such information is entirely at your own risk.
We will only retain Your Data for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
To determine the appropriate retention period for Your Data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of Your Data, the purposes for which we process Your Data and whether we can achieve those purposes through other means, and the applicable legal requirements.
During the provision of our services to you we will retain Your Data to provide our goods or services to you.
We are required by law to retain specific categories of Your Data for certain periods after we stop providing our goods or services to you. We are registered with the General Pharmaceutical Council with registration number 9010254. We are therefore required to store any Medical Data, Identity Data and Contact Data submitted to us to comply with our legal obligations.
Please note that we may keep Your Data for longer than the periods stated above if it is necessary. However, this will be assessed on a case by case basis. If we determine that it is necessary to keep Your Data for longer than the periods listed above, we will confirm this to you in writing when we have finished providing our goods and services to you and explain why it is necessary.