BLOG > GDPR Compliance Framework

GDPR Compliance Framework

Introduction to GDPR

The General Data Protection Regulation (GDPR) is a legal framework that sets guidelines for the collection and processing of personal information of individuals within the European Union (EU). TheOnlineClinic.co.uk acknowledges the importance of GDPR and the rights it grants to individuals regarding their personal data. As a virtual health community and resource for pharmaceutical information, we are committed to protecting the privacy and security of our users' information in accordance with GDPR requirements. This extensive page serves as our dedicated guide to understanding GDPR as it applies to the services and resources provided by TheOnlineClinic.co.uk.

Personal Data Protection

The protection of personal data is at the heart of GDPR, and TheOnlineClinic.co.uk places great emphasis on ensuring that all personal information is treated with the highest level of care and security. We take all necessary measures to protect against unauthorized access, alteration, disclosure, or destruction of your personal information, including but not limited to secure data storage, encrypted communications, and regular privacy audits. Our policies and practices are designed to safeguard your data, ensuring that it is processed fairly, lawfully, and transparently.

Right to Access and Control Your Information

Under GDPR, you have the right to access your personal information that we hold and to control how we use it. This includes the right to obtain confirmation as to whether or not personal data concerning you is being processed, where, and for what purpose. Additionally, you may request a copy of your personal data in an electronic format, free of charge. If you find that the data we have is inaccurate or incomplete, you have the right to have it corrected. Furthermore, you can request the deletion of your personal data under certain conditions, exercising what is commonly referred to as the 'right to be forgotten'.

Data Portability

The GDPR also introduces the right to data portability, which allows individuals to receive personal data they have provided in a structured, commonly used, and machine-readable format. It also gives you the right to transmit those data to another controller. TheOnlineClinic.co.uk supports this right and will facilitate the transfer of your data securely and without hindrance.

Consent and Withdrawal

Under GDPR, the consent of individuals for the processing of their personal data must be freely given, specific, informed, and unambiguous. TheOnlineClinic.co.uk ensures that consent is obtained in a clear and accessible form, along with the purpose for data processing attached to that consent. You have the right to withdraw your consent at any time, and we have facilitated a simple process for the withdrawal of consent, ensuring that it is as straightforward as granting it.

Data Protection Officer and Contact Information

We have appointed a Data Protection Officer (DPO) who is responsible for overseeing GDPR compliance. Our DPO ensures that our practices are in line with the GDPR and is available to address any concerns or inquiries you may have regarding your personal data. If you have any questions about your rights or our data protection practices, please contact our DPO at [email protected]. Additionally, you can reach out via postal mail at the following address:

  • Alistair Fothergill
  • 97 St Georges Bay Rd, Parnell
  • Auckland 1052, New Zealand