Free delivery over £40
15% off first order
Fully regulated UK pharmacy
Order in 1h 25m to get your medication by 5pm

Privacy Policy

We are committed to protecting your privacy and ensuring the security of your personal information. This policy explains how we collect, use, and protect your data.

Last updated: 1st September 2025

Fully Regulated

At Open Pharmacy, we take the privacy of our patients seriously. We are a leading online pharmacy in the UK and are registered with the General Pharmaceutical Council (GPhC - who regulate pharmacies), Medicines Health Regulatory Authority (MHRA - who regulate online medicine sales) and the Care Quality Commission (CQC - who regulate doctors and other healthcare services). We are registered with the Information Commissioner's Office (ICO - who uphold data privacy laws).

Our superintendent pharmacist, Aisha Malik (GPhC registration:2205843), oversees all pharmaceutical services to ensure the highest standards of patient care and data protection.

Taking Your Privacy Seriously

We take your privacy very seriously, and we are committed to protecting and respecting your privacy, and to using technology to enhance your online security. We ask that you read this Privacy Policy ('the Policy') carefully as it contains important information about how we will use your personal data.

By using our website and services, including our online assessment tool, you confirm that you agree to the terms of this Policy. If you do not agree to this Policy, do not use our website or services.

Who Controls the Data You Provide?

This Website is owned and operated by Open Pharmacy ('we', 'us', 'our'). Our address is Floor 2, 6 Princess Road West, Leicester, LE1 6TP.

You can phone us on 07979232317 or email us at hello@theopenpharmacy.com. For any privacy-related enquiries, you can also contact us using our online contact form.

Information We May Collect From You

Contact Data includes data such as your email address, telephone number, geographical address, delivery address and billing address

Identity Data includes data such as first name, last name, username or similar identifier, date of birth, passport number, driving licence number

Health Data includes GP address, patient notes, consultation notes, assessment responses, and any other information relating to your health and medical status collected through our assessment process

Financial Data includes details you provide to us so that we can process your payments through our third party payment provider

Transaction Data includes details of products you have purchased and payments made

Technical Data includes data such as internet protocol (IP) address, your login data, browser type and version, cookies, time zone setting and location

Usage Data includes information about how you use our website such as pages you viewed, searches you made, page response times, length of visit, and page interaction information

Marketing Data includes your preferences in receiving marketing from us

We do not knowingly collect personal data of children. Please do not provide personal data to us unless you are at least 18 years old.

Information You Voluntarily Provide

You may provide information to us in a number of ways, including the following:

  • You access and interact with our website or with us by telephone
  • You complete our online health assessment
  • You create an account on our website
  • You purchase products on our website
  • You provide feedback or reviews to us
  • You respond to a survey or questionnaire
  • You sign up for our newsletter
  • You otherwise contact us including with queries, comments or complaints

Where We Store Your Personal Data

We ensure that all of the data that we hold about you is stored within the UK. However, the data that we collect from you may be transferred to, and stored at, a third party in a destination outside the United Kingdom. This will always be the minimum required information to carry out the task required and the data is anonymised where possible.

Information Security

We shall process your personal data in a manner that ensures appropriate security of the personal data, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage.

Where you have chosen a password which enables you to access certain parts of our website, you are responsible for keeping this password confidential. We ask you not to share a password with anyone.

Uses Made of Your Data

We will only use your personal data where we have a lawful basis to do so. The lawful purposes that we rely on are:

  • Consent (where you choose to provide it)
  • Performance of a contract with you
  • Compliance with legal requirements
  • Legitimate interests (our legitimate business interests in the normal running of our business)

We use your data to register you as a patient, manage your account and orders, process your health assessments, manage payments, deliver relevant content, and improve our services.

Disclosure of Your Information

For our legitimate interests, we may share your personal data with our sub-contractors and agents that we may appoint to perform functions on our behalf and in accordance with our instructions, including our IT service providers, payment providers, accountants, auditors and lawyers.

We may also disclose or share your personal data if we are under a duty to do so in order to comply with any legal obligation, or to protect the rights, property, or safety of Open Pharmacy, our patients, or others.

Your Rights

Right of access: You have the right to obtain from us a copy of the personal data that we hold for you

Right to rectification: You can require us to correct errors in the personal data that we process for you

Right to portability: You can request that we transfer your personal data to another service provider

Right to restrict or object to processing: In certain circumstances, you have the right to require that we restrict the processing of your personal information

Right to be forgotten: If you would like to discontinue Open Pharmacy as a patient you can email us and we will suspend your account

Right to stop receiving marketing information: You can ask us to stop sending you information about our services

You acknowledge and agree that Open Pharmacy is required by law to archive electronic patient records including your personal information, communication and treatments for a minimum of 10 years.

Retention of Data

We will retain personal data in accordance with applicable laws. To determine the appropriate retention period for personal data, we consider the type of the personal data, the potential risk of harm from unauthorised use or disclosure, and the purposes for which we process your personal data.

As noted above, you acknowledge and agree that Open Pharmacy is required by law to archive electronic patient records including your personal information, communication and treatments for a minimum of 10 years.

Changes to Our Policy

Any changes we may make to our Policy in the future will be posted on this page and, where appropriate, notified to you by email. Please check this page periodically for updates.

Contact

If you have any questions, comments, requests, and concerns regarding this Privacy Policy please contact us or email us directly at hello@theopenpharmacy.com.

If you believe that a request or concern has not been handled to your satisfaction, you can raise your concern with the Information Commissioner's Office (https://ico.org.uk), the UK independent regulator of data controllers and privacy.