Lastinghealth.com Limited (“we”, “our”, “us”) is committed to protecting and respecting your privacy. This policy (together with our terms and any other documents referred to in it) sets out the basis on which any personal data we collect from you, or that you provide to us, will be processed by us.
Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it. By visiting www.lastinghealth.com (the “Website”) you are accepting and consenting to the practices described in this policy.
WHO ARE WE?
Your personal data i.e. any information which identifies you, or which can be identified as relating to you personally, will be collected and used by Lastinghealth.com Limited a company registered in England with company number 10573539 and registered office at Maple House, Wood Lane, Paradise Industrial Estate, Hemel Hempstead, Hertfordshire, HP2 4TL.
THE DATA WE COLLECT FROM YOU
Data we collect automatically
When you visit the Website, we may collect any or all of the following technical data:
Device Identifiers (the internet protocol address used to connect your device to the internet, your log-in information, browser type and version, regional settings, operating system and platform);
data about your use of our Website (the full Uniform Resource Locators (URL), clickstream to, through and from our Website (including date and time), products you viewed or searched for, time spent on certain pages or screens, interaction data (such as scrolling, clicks, and mouse-overs).
HOW WE USE YOUR PERSONAL DATA
We only ever use your personal data with your consent, or where it is necessary in order to:
enter into, or perform, a contract with you e.g. to fulfil any orders you place through the Website or over the phone;
- perform the services you have asked us to provide;
- comply with a legal duty;
- protect your vital interests;
- remember your preferences e.g. if you ask not to receive marketing material, we’ll keep a record of this, or
- for our own (or a third party’s) lawful interests, provided your rights don’t override these.
In any event, we will only use your personal data for the purposes for which it was collected, or purposes which are very similar.
You can withdraw your consent at any time.
From time to time, we may wish to send you details regarding upcoming special offers, new product ranges and other information about Lastinghealth.com which may be of interest to you. Where you have purchased goods from us, we may send you messages about other, similar goods and services which we think you may like.
Alternatively, you can opt-in to receiving this information by ticking the appropriate box when requested. This means you’ll have the choice as to whether you want to receive these messages and be able to select how you want to receive them (email, phone, or post).
If you decide that you wish to stop hearing from us, or change how we contact you, you can do so in any of the following ways:
clicking the appropriate link at the bottom of our e-mails;
contacting us at [email protected]; or writing to us at Maple House, Wood Lane, Paradise Industrial Estate, Hemel Hempstead, Hertfordshire, HP2 4TL.
HOW WE PROTECT YOUR PERSONAL DATA
Technical and organisational measures
We employ a variety of physical and technical measures to keep your personal data safe and to prevent unauthorised access to, use or disclosure of it. Electronic data and databases are stored on secure computer systems and we control who has access to them (using both physical and electronic means). Our staff receives data protection training and we have a set of data protection procedures which personnel are required to follow when handling personal data.
Of course, we cannot absolutely guarantee the security of the internet or external networks and any online communications (e.g. information provided by email or through our website are at your own risk).
You are fully responsible for access to your account. You undertake not to allow unauthorised third parties to use your account for any reason whatsoever. You undertake to contact us as soon as possible should you suspect that an unauthorised person has gained access to your account. We shall not be held liable for any misuse of your account and any resulting consequences for you, your partner, or any third party.
We will not communicate, sell or transfer your personal data to third parties without obtaining your prior written consent, except where we are required to do so by law.
If you have opted-in to receiving marketing messages from us, we may contact you with information about our partners, or third party products and services, but these communications will always come from us and are usually incorporated into our own marketing materials (e.g. advertisements in magazines or newsletters).
We may share personal data with subcontractors or suppliers who provide us with services. For example, if you order something from us, your name and address will be shared with the delivery company. However, these activities will be carried out under a contract which imposes strict requirements on our supplier to keep your information confidential and secure.
STORAGE OF PERSONAL DATA
Where it is stored
We only store data within the European Economic Area (EEA). If our trusted service providers transfer any of it outside of the EEA we will take steps to make sure adequate levels of privacy protection, in line with UK Data Protection legislation, are in place.
How long it is stored for
The data we collect will be stored and kept for as long as your account remains active. If you delete your account with us, the data it contains will be removed without undue delay. We continually review the personal data we hold and delete what is no longer required. We never store payment card data.
If you require the destruction and/or deletion of any data (including biological samples) held by us please contact us on [email protected] and we shall ensure that this is deleted and/or destroyed within 30 days.
We want to ensure you remain in control of your personal data. Part of this is making sure you understand your legal rights, which are as follows:
- the right to confirmation as to whether or not we have your personal data and, if we do, to obtain a copy of it (this is known as a subject access request) within one month of our receiving your request;
- the right to have your data erased (though this will not apply where it is necessary for us to continue to use the data for a lawful reason);
- the right to have inaccurate data rectified;
- the right to object to your data being used for marketing or profiling; and where technically feasible, you have the right to see any personal data you have provided to us which we process automatically on the basis of your consent or the performance of a contract. This information will be provided in a common electronic format.
If you would like further information on your rights or wish to exercise them, please write to us at [email protected] or Maple House, Wood Lane, Paradise Industrial Estate, Hemel Hempstead, Hertfordshire, HP2 4TL.
Please keep in mind that there are exceptions to the rights above and, though we will always try to respond to your satisfaction, there may be situations where we are unable to do so. If you are not happy with our response, or you believe that your data protection or privacy rights have been infringed, you should contact the UK Information Commissioner’s Office, which oversees data protection compliance in the UK.