Privacy Policy

Last updated: 27 May 2026 · TeleClinic UK Ltd

This Privacy Policy explains how TeleClinic UK Ltd ("TeleClinic UK", "we", "us", "our") collects, uses, stores and protects your personal and medical data when you use our platform at teleklinik.cxmxo.com.

1. Who We Are

TeleClinic UK Ltd is a private healthcare provider registered in England and Wales. We provide online medical consultations and digital prescription services. Our platform is operated in compliance with UK GDPR, the Data Protection Act 2018 and CQC regulations.

Data Controller: TeleClinic UK Ltd
Contact: privacy@teleclinic.co.uk

2. What Data We Collect

We collect the following categories of personal data:

• Identity data: First name, last name, date of birth
• Contact data: Email address, phone number, postal address
• Health data (Special Category): Medical history, current medications, allergies, symptoms, mental health information, lifestyle data
• Appointment data: Consultation dates, times, doctor preferences, session notes
• Payment data: Transaction references, payment status (we do not store card details — handled by Adyen)
• Technical data: IP address, browser type, session identifiers

3. Legal Basis for Processing

We process your personal data on the following legal bases under UK GDPR:

• Contract performance: To provide medical consultation services you have requested
• Explicit consent: For processing special category health data (you provide this during registration)
• Legal obligation: To comply with healthcare regulations and CQC requirements
• Legitimate interests: For platform security, fraud prevention and service improvement

4. How We Use Your Data

• Providing and managing your medical consultations
• Processing payments through our secure payment provider
• Issuing digital prescriptions via DTrust
• Sending appointment confirmations and reminders
• Complying with our legal and regulatory obligations
• Improving our services and platform functionality

5. Sharing Your Data

We share your data only with:

• Treating doctors: Your medical information is shared with the doctor conducting your consultation
• Pharmacies: Your prescription data is shared with your nominated pharmacy via DTrust
• Payment processor: Transaction data is processed by Adyen B.V. (PCI DSS compliant)
• IT infrastructure: Encrypted data is stored on Hetzner Online GmbH servers in the EU

We never sell your personal or medical data to third parties.

6. Data Retention

We retain medical records for a minimum of 8 years from the date of last treatment, in accordance with NHS guidelines and CQC requirements. Payment records are retained for 7 years for legal compliance.

7. Your Rights

Under UK GDPR you have the right to:

• Access your personal data (Subject Access Request)
• Rectify inaccurate data
• Request erasure of data (where legally permissible)
• Restrict or object to processing
• Data portability
• Withdraw consent at any time

To exercise any of these rights, contact: privacy@teleclinic.co.uk

8. Cookies

We use essential session cookies only, which are necessary for the platform to function. We do not use advertising or tracking cookies.

9. Security

All data is transmitted over HTTPS (TLS 1.3). Medical data is stored in encrypted form. Access to patient data is restricted to authorised clinical staff only. We conduct regular security reviews.

10. Complaints

If you have concerns about how we handle your data, you have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.

11. Contact

TeleClinic UK Ltd
Email: privacy@teleclinic.co.uk
Registered in England & Wales