England Flag Germany Flag

Privacy Policy

Privacy notice for Medicalshop.co.uk and Simplitudebyme.com

Owen Mumford Limited (“us” or “we”) are committed to protecting and respecting your privacy. We will retain data about you which is obtained as a result of your visiting our websites at www.medicalshop.co.uk or Simplitudebyme.com (in each case the “Website”). This data may be:

  • anonymised data collected by us through the use of “cookies”, the collection and use of which is governed by our cookie policy which you can read by clicking here; or
  • personal data, our collection and use of which is governed by this privacy notice.

This notice explains what personal data we may receive from you, and how and why we use it.

We are the data controller of the personal data we collect through the Website. We are a company registered in England and Wales under company number 01257871 and our registered office address is Brook Hill, Woodstock, Oxfordshire OX20 1TU. We are VAT registered under number GB195 9293 07.

Summary

Full details are set out in the relevant sections of this privacy notice below, but in summary:

  • we normally receive your personal data from you, but sometimes it might be from a third party if they place an order with us on your instructions;
  • we use your personal data to supply our products, answer queries, conduct our business, keep appropriate records and meet our legal obligations;
  • we only provide your personal data to third parties for our business purposes or as permitted by law. We don’t share your data with third party advertisers;
  • we store personal data for specified retention periods;
  • you have legal rights in relation to your personal data which you can exercise on request;
  • the Website use cookies; and
  • you can contact us to enquire about any of the contents of this privacy notice.

Information We May Collect from You

We may collect and process the following data about you:

  • information that you provide to us by filling in forms on the Website or otherwise by contacting us using the Contact form provided on the Website.
    – this information may include your name, address, date of birth, email address and any other information you provide to us when contacting us for any other reason;
  • information that you provide to create an account on the Website;
  • information that you provide to us when making, or in connection with, purchases through the Website (which might include contact details as set out above or transaction records relating to your order. We do not receive bank or card details as these are handled by our payment processing services providers such as Apple Pay and/or Shopify Pay);
  • records of your correspondence (if any) with us; and
  • details of your visits to the Website including, but not limited to, traffic data, the Internet protocol (IP) address used to connect your device to the Internet, location data, files downloaded, weblogs and other communication data.

We may also collect, use and share special categories of personal data (for example, about your physical or mental health) if you choose to provide this information to us. We do not require this information in order for you to use the Website or make purchases through the Website and will only handle this data with your consent.

We may receive data from third parties

Sometimes we may receive information about you from third parties. For example, we often partner with charities or similar organisations who might place orders for particular products with us on behalf of their service users. This information is usually limited to your name, address, contact details and the details of your order, and used by us to send the ordered products to you.

IP Addresses and Cookies

We may collect information about your computer, including where available your IP address, operating system and browser type, for system administration and statistical analysis. This is statistical data about our users’ browsing actions and patterns, and does not identify any individual. We may also use cookies to collect information about how visitors use our site, in accordance with our cookie policy which you can read by clicking here.

Uses Made of the Information

We (and where applicable our group companies) use information held about you in the following ways:

  • to ensure that content from the Website is presented in the most effective manner for you and for your computer;
  • to correspond with you and to address any queries you may raise through the Website;
  • to enable your access to certain areas of our Website (including access to our educational support information);
  • to carry out our obligations arising from any contracts entered into between you and us, or fulfil any orders placed with us on your behalf;
  • to use data analytics to improve the Website, products/services, marketing, customer relationships and experiences; and
  • to provide you with information regarding our products or services that you request from us or which we feel may interest you where you have consented to be contacted for such purposes.

Except as provided in this notice or our Cookie Policy, we do not sell, trade or rent your personal information to third parties and will not share your personal information with third party advertisers.

If we wish to use your data for marketing purposes, we will always inform you (before collecting your data) and either request your consent or, if permitted by law, provide you with the opportunity to opt out. You can exercise your right to prevent such processing by contacting us at info@owenmumford.co.uk or by clicking “unsubscribe” on any marketing emails you receive from us.

Our legal basis of processing

We are required by law to have a “legal basis” for processing personal data, and to identify it to you. We have set out below a description of all the ways we use your personal data, and the legal bases on which we rely. Where our legal basis is our legitimate interest, we have also identified what our legitimate interests are.

Note that we may process your personal data on more than one lawful legal basis depending on the specific purpose for which we are using your data.

Purpose/Activity: To ensure that content from the Website is presented in the most effective manner for you and for your computer

Type of Data: Information that you provide by filling in forms on the Website or otherwise by contacting us using the Contact form provided on the Website, and details of your visits to the Website including, but not limited to, traffic data, location data, files downloaded, weblogs and other communication data.

Legal Basis for Processing, including Basis of Legitimate Interest:

  1. Necessary for our legitimate interests (to define types of customers for our products and services, to keep the Website updated and relevant, to develop our business, to inform our marketing strategy, for running our business, provision of administration and IT services, network security, to prevent fraud and in the context of a business reorganisation or group restructuring exercise); and
  2. Necessary to comply with a legal obligation

____________________________________________

Purpose/Activity: To correspond with you and to address any queries you may raise through our Website.

Type of Data: Information that you provide by filling in forms on the Website, placing orders or otherwise by contacting us using the Contact form provided on the Website and copies of your correspondence with us. This information may include your name, address, date of birth, email address and any other information you provide to us when contacting us (including any special categories of personal data, like information relating to your health).

Legal Basis for Processing, including Basis of Legitimate Interest

  1. Performance of a contract with you
  2. Necessary for our legitimate interests (to address our customers’ concerns and queries, and fulfil orders)
  3. In the case of any special categories of personal data, our processing is based on your consent.

____________________________________________

Purpose/Activity: To register you as a new user to enable your access to certain areas of our Website (including access to our educational support information)

Type of Data: Information that you provide to create an account on the Website, including your email address and password.

Legal Basis for Processing, including Basis of Legitimate Interest: Performance of a contract with you

____________________________________________

Purpose/Activity: To carry out our obligations arising from any contracts entered into between you and us, or to fulfil orders placed with us on your behalf.

Type of Data: Information that you provide by filling in forms on the Website or otherwise by contacting us using the Contact form provided on the Website and copies of your correspondence with us. This information may include your name, address, date of birth, email address, transaction details and any other information you provide to us when contacting us (including any special categories of personal data, like information relating to your health). It may also include your contact details if provided to us by third parties who have placed an order on your behalf.

Legal Basis for Processing, including Basis of Legitimate Interest: Performance of a contract with you, or a contract benefiting you. In the case of any special categories of personal data, our processing is based on your consent.

____________________________________________

Purpose/Activity: To use data analytics to improve the Website, products/services, marketing, customer relationships and experiences

Type of Data: Information relating to your visits to the Website including, but not limited to, traffic data, location data, files downloaded, weblogs and other communication data.

Legal Basis for Processing, including Basis of Legitimate Interest: Necessary for our legitimate interests (to define types of customers for our products and services, to keep the Website updated and relevant, to develop our business and to inform our marketing strategy).

____________________________________________

Purpose/Activity: To provide you with information regarding our products or services that you request from us or which we feel may interest you where you have consented to be contacted for such purposes

Type of Data: Information that you provide by filling in forms on the Website or otherwise by contacting us using the Contact form provided on the Website and copies of your correspondence with us. This information may include your name, address, date of birth, email address and any other information you provide to us when contacting us (including any special categories of personal data, like data relating to your health).

Legal Basis for Processing, including Basis of Legitimate Interest: Necessary for our legitimate interests (to develop our products/services and grow our business). Consent (in the case of data relating to your health).

____________________________________________

Purpose/Activity: To solicit customer feedback on transactions undertaken through the Website, or on our products and services through our third party providers (currently Feefo and SurveyMonkey). To use feedback (which is typically anonymised and aggregated) for marketing purposes, including using comments in promotional materials and publicity.

Type of Data: Your email address, feedback provided by you (which is typically anonymised and aggregated).

Legal Basis for Processing, including Basis of Legitimate Interest: Necessary for our legitimate interests (to develop our products/services and grow our business).

____________________________________________

 

Disclosure of Your Information

We may share your personal information with any member of our group of companies.

We may disclose your personal information to third parties:

  • who provide us with hosting services;
  • who provide us with marketing and customer relationship management services;
  • who provide us with e-commerce or payment processing services (and in particular the Simplitude ByMe Website is supported by Shopify and Shopify Payments, whose privacy notice is available at https://www.shopify.com/legal/privacy/customers);
  • who provide us with customer feedback (and in particular, we use Feefo, whose privacy policy is available at https://www.feefo.com/en/business/privacy-policy);
  • who provide us with logistics and fulfilment services;
  • if all or the relevant part of our business is acquired by a third party, in which case personal data held by us about our
    customers will be one of the transferred assets;
  • if we are under a duty to disclose or share your personal data in order to comply with any legal obligation, or in order to
    enforce or apply our Website Terms of Service or any other terms or agreements.

Where We Store Your Personal Information

All information you provide to us or that we collect from you is stored on our secure servers or on the servers of our respective hosting service providers, which we may change from time to time. We may share your personal data with other Owen Mumford group companies, or with our suppliers in connection with our use of that data. While our servers are located within the UK and EEA, some of our suppliers and affiliates may be outside, or use infrastructure outside, those territories and your personal data may therefore be transferred outside the UK and EEA.

Whenever we transfer your personal data to a territory outside the and UK and EEA, we ensure that it remains protected to an equivalent degree as is required under UK and European law. That means either:

  • Your personal data will be transferred to a country that has been assessed by the United Kingdom and/or European Commission to provide an adequate level of protection for personal data; or
  • Where we use service providers, we will use specific contractual provisions approved by the United Kingdom’s data protection regulator, the ICO, and/or the European Commission, which will require those providers to give the personal data equivalent protection as is required under UK and European law.

Please contact us if you want further information on the specific mechanism used by us when transferring your personal data.

Security of Information

Where we have given you (or where you have chosen) a password which enables you to access the education support information available to download from our Website, you are responsible for keeping your password confidential. You must not share your password with anyone, or store it in a way that may allow a third party to access it.

We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know it. They will only process your personal data on our instructions and where they are subject to a duty of confidentiality.

Retaining Your Information

We will retain the information we receive and collect about you for a period which is reasonably required for us to use it in accordance with this privacy notice or in accordance with our legal rights and obligations.

Your Rights

You have rights under data protection law – they are complex, and subject to exemptions, and you can read guidance from the Information Commissioner’s Office (ICO) at ico.org.uk for a fuller explanation of your rights. In summary:

  • the right to access: you have the right to confirmation as to whether or not we process your personal data and, where we do, to access the personal data, together with certain additional information;
  • the right to rectification: you have the right to have any inaccurate or incomplete personal data about you rectified or completed;
  • the right to erasure: in some circumstances you have the right to the erasure of your personal data (for example, if the personal data is no longer needed for the purposes for which it was processed or if the processing is for direct marketing purposes);
  • the right to restrict processing: you have the right to restrict the processing of your personal data to limit its use. Where processing has been restricted, we may continue to store your personal data and will observe the restrictions on processing except to the extent permitted by law;
  • the right to object to processing: you have the right to object to our processing of your personal data on the basis of legitimate interests (discussed above) or for direct marketing purposes and if you do so we will stop processing your personal data except to the extent permitted by law. For example, if you have given your consent to receive team updates or other marketing communications, but have changed your mind, you have the ability to opt out from receiving such communications going forward by contacting us using the details provided below or by clicking the relevant link in any communications you receive.
  • the right to data portability: you have the right to receive your personal data from us if the legal basis for our processing is the performance of a contract with you, and such processing is carried out by automated means; and
  • the right to complain to a supervisory authority: if you consider that our processing of your personal data is unlawful, you have a legal right to lodge a complaint with the ICO.

 

Third Parties

The Website may contain links to and from the websites of our partner networks, advertisers, or other third parties, including links to our social media pages hosted by third-party providers such as LinkedIn, Facebook, Twitter, Google and YouTube. If you follow a link to any of these websites, please note that these websites are operated by third parties and have their own privacy policies governing the use of any personal data you submit through them. We do not accept any responsibility or liability for the use of your personal data by those third parties or under or in connection with those privacy policies. Please check those policies before you submit any personal data through those websites.

Changes to our privacy notice

Any changes we may make to our privacy notice in the future will be posted on this page and, where appropriate, notified to you by e-mail. You should ensure that you review this page from time to time.

Contact Us

If you have any concerns about material which appears on the Website, or any questions or comments regarding our privacy notice, please contact us at Simplitudebyme@owenmumford.com  or by recorded delivery to our postal address at Brook Hill, Woodstock, Oxford, OX20 1TU, United Kingdom.

Last updated: January 2022

 

Buy now