Privacy

This Website is owned and operated by Hexpress Healthcare (‘we’, ‘us’, ‘our’) trading to users and visitors (‘you’, ‘your’). We take your privacy very seriously, and we are committed to protecting and respecting your privacy, and to using technology to enhance your online security. We ask that you read this Privacy Policy ('the Policy') carefully as it contains important information on who we are and how and why we collect, store, use, will use and share your personal data. It also explains your rights in relation to your personal data and how to contact us or supervisory authorities in the event you have a complaint.

Topics:

What information do we collect about you?

As a visitor to our website we may ask you for information about you, such as:

  • Contact details (title, last name, first name, address, telephone number, email).
  • Query details.

The information collected in relation to persons under 18 years of age is limited to their name, nationality and date of birth, which can only be supplied to us by an adult.

How will we use the information about you?

We use your information in a number of different ways, primarily to arrange contact and understand the visitors to our website. What we do depends on the information. The tables below set this out in detail, showing what we use the information we collect for.

Personal Information What we use it for.
Contact Details To record contact details of visitors to our website who have a query for us, in order to reply.
Query Details Understand your query.

Your Rights

You have rights relating to your personal information:

  • The right to be informed about how your personal information is being used (e.g. this notice).
  • The right to access the personal information we hold about you.
  • The right to request the correction of inaccurate personal information we hold about you.
  • The right to request that we delete your data, or stop processing it or collecting it, in some circumstances.
  • The right to stop direct marketing messages, and to withdraw consent for other consent-based processing at any time.
  • The right to request that we transfer or port elements of your data either to you or another service provider.
  • The right to complain to your data protection regulator — in the UK, the Information Commissioner’s Office.

If you want to exercise your rights, have a complaint, or just have questions, please contact us, details in the contact us section at the end of this document.

The Data Protection Act 2018 also gives you right to lodge a complaint with the supervisory authority in the UK. This is Information Commissioner who may be contacted at https://ico.org.uk/concerns or telephone: 0303 123 1113.

Keeping Your Information

We’ll hold on to your information for as long as needed to perform the processing requested.

We’ll also hold on to your information If reasonably necessary or required to meet legal or regulatory requirements, resolve disputes, prevent fraud and abuse, or enforce our terms and conditions, we may also keep hold of some of your information as required, even if it is no longer needed to provide the services to you.

Our Legal Basis for using your personal information.

We only process your personal information when we have a legal basis to do so. This depends on the purpose of the processing

We use the following lawful basis to process your data;

  • Contractual
    To allow us to fulfil, or prepare, for a contract with you. We need to collect and process your personal information to supply and administer services. Objecting to providing this information may mean we will be unable to provide services to you.
  • Compliance
    We will sometimes need your personal information to comply with existing legal or regulatory requirements.
  • Legitimate Interests
    To allow us to manage and protect our business interests and supply, improve and tailor our services.
  • Consent
    We may request your consent to process your personal information, you will always be able to remove this consent. If you remove consent, we will stop any processing of your personal information.

How we secure your information

We take data security seriously, and we use appropriate technologies and procedures to protect personal information. Our information security policies and procedures are aligned with widely accepted international standards. These standards are applied and are reviewed regularly and updated as necessary to meet our business needs, changes in technology, and regulatory requirements.

For example:

Policies and procedures

  • We have measures in place to protect against accidental loss and unauthorized access, use, destruction, or disclosure of data.
  • We have a Business Continuity and Disaster Recovery strategy that is designed to safeguard the continuity of our service to our clients and to protect our people and assets.
  • We place appropriate restrictions on access to personal information.
  • We implement appropriate measures and controls, including monitoring and physical measures, to store and transfer data securely.
  • We conduct Privacy Impact Assessments in accordance with legal requirements and our business policies.

Training for employees and contractors

  • We require privacy, information security, and other applicable training on a regular basis for our employees and contractors who have access to personal information and other sensitive data.
  • We take steps to ensure that our employees and contractors operate in accordance with our information security policies and procedures and any applicable contractual conditions.

Vendor risk management

  • We require, through the use of contracts and security reviews, our third-party vendors and providers to protect any personal information with which they are entrusted in accordance with our security policies and procedures.

Marketing

We would like to send you information about products and services of ours and other companies in our group which may be of interest to you. If you have consented to receive marketing, you may opt out at a later date.

You have a right at any time to stop us from contacting you for marketing purposes.

Changes to how we protect your Privacy

We may change this page from time to time, to reflect how we are processing your data. If we make significant changes, we will make that clear on our website, or by some other means of contact such as email, so that you are able to review the changes before you continue to use our services

How to contact us

If you:

  • Have any questions or feedback about this notice.
  • Would like us to stop using your information.
  • Want to exercise any of your rights as set out above or have a complaint.

Our contact details are shown below:

  • Registered office address: 144 Mitcham Road, Tooting, London, SW17 9NH
  • Contact email address: enquiry(@)healthexpress.co.uk

Our Data Protection Officer contact details are shown below:

  • Crawford Brysland
    CMPLY LTD
    crawford.brysland(@)cmply.co.uk
    +44 207 084 6784