Privacy Policy

  • Home
  • Privacy Policy

Privacy Policy

This Privacy Policy explains how Hyde Park Pharmacy collects, uses, stores, and shares personal data when you visit our website, contact us, use our pharmacy services, request appointments, submit forms, or otherwise interact with us.

As a community pharmacy, we may process both standard personal data and health-related information. Health information is treated as special category data and is handled with additional care in line with UK data protection law.

Last updated: 23 April 2026

Who We Are

Hyde Park Pharmacy is an independent community pharmacy serving Doncaster. For the purposes of UK data protection law, Hyde Park Pharmacy is the data controller for the personal data described in this policy unless we tell you otherwise.

  • Address: 65-67 Carr House Road, Doncaster, DN1 2BJ
  • Telephone: 01302 556022
  • Email: gurservak.singh@live.co.uk

The Information We May Collect

Depending on how you interact with us, we may collect and use:

  • Your name, title, date of birth, address, email address, and telephone number.
  • Contact history, enquiry details, appointment requests, and messages you send to us.
  • Prescription, service, consultation, and healthcare-related information where this is necessary to provide pharmacy services.
  • Payment or transaction information where relevant to private services.
  • Technical website information such as IP address, browser type, pages visited, and cookie preferences.
  • Any documents or information you provide to confirm eligibility, identity, exemption status, or suitability for a service.

How We Use Your Information

We may use personal data to:

  • Provide NHS and private pharmacy services, including dispensing, advice, clinical checks, and service administration.
  • Manage bookings, service enquiries, callbacks, contact requests, and customer support.
  • Communicate with you about your prescriptions, appointments, and pharmacy services.
  • Maintain patient records, keep accurate audit trails, and comply with professional and legal obligations.
  • Improve our website, monitor usage, and maintain site security.
  • Process payments, prevent fraud, and protect our staff, patients, and business.
  • Respond to complaints, legal claims, regulatory requests, or safeguarding concerns.

Our Lawful Bases For Processing

Under the UK GDPR, we rely on one or more lawful bases depending on the service or activity involved. These may include:

  • Performance of a contract, where we need your information to provide a requested service.
  • Legal obligation, where we must process data to comply with pharmacy, healthcare, tax, regulatory, or safety requirements.
  • Legitimate interests, where we have a reasonable business or service-related need that does not override your rights and freedoms.
  • Consent, where you have clearly agreed to a specific use of your information.

Where we process health information or other special category data, we also rely on an additional condition under Article 9 of the UK GDPR, such as the provision of health or social care, public health requirements, or another applicable legal basis.

Sharing Your Information

We only share personal data where it is lawful and necessary. This may include sharing with:

  • GP surgeries, NHS bodies, hospitals, and other healthcare professionals involved in your care.
  • Service providers who help us operate our business and website, subject to appropriate confidentiality and data protection obligations.
  • Payment processors and other providers involved in private service transactions.
  • Regulators, auditors, insurers, law enforcement, or other authorities where disclosure is required or permitted by law.

We do not sell your personal data.

How Long We Keep Information

We keep information only for as long as necessary for the relevant purpose, including legal, regulatory, professional, tax, clinical, and operational requirements. Retention periods may vary depending on the type of record, service, and whether the information forms part of a patient or business record.

When information is no longer required, we aim to delete it securely or anonymise it where appropriate.

Your Rights

Depending on the circumstances, you may have the right to:

  • Be informed about how your personal data is used.
  • Request access to your personal data.
  • Ask us to correct inaccurate or incomplete personal data.
  • Request deletion of personal data where the law allows.
  • Ask us to restrict processing in certain situations.
  • Object to certain processing, including some direct marketing activity.
  • Request transfer of certain personal data where the right to data portability applies.
  • Withdraw consent where we rely on consent.

Some of these rights are limited where pharmacy, healthcare, legal, or regulatory obligations apply.

Cookies And Website Use

Our website may use cookies or similar technologies to help it function properly, remember preferences, improve usability, and monitor performance. Where required, you can manage cookie preferences through the website tools we provide.

Security

We take appropriate technical and organisational measures to protect personal data against unauthorised access, alteration, disclosure, loss, or misuse. However, no website or electronic system can ever be guaranteed completely secure.

Complaints And Contact

If you have a question about this Privacy Policy or about how we use personal data, please contact Hyde Park Pharmacy using the details above first so we can try to resolve your concern.

You also have the right to complain to the Information Commissioner’s Office if you are unhappy with how your personal data has been handled.

© 2026 Hyde Park Pharmacy. All Rights Reserved