Privacy Policy

Home Privacy Policy

Privacy Policy

Table of content
1. Introduction

Welcome to MedDigest.co.uk. This Privacy Policy explains how MedDigest LTD collects, uses, shares, and protects your personal information when you visit or use our Website. We are committed to protecting your privacy and processing your data in accordance with the UK General Data Protection Regulation (UK GDPR) and other applicable data protection laws.
The data controller for this Website is MedDigest Ltd, located at 27 Taffrail House Burrells Wharf Square, E14 3TG. You can contact us regarding data protection matters at enquiries@meddigest.co.uk

2: Information We Collect

We collect information about you in the following ways:

  • Information You Provide Directly:
  • Account Registration: When you create an account, we collect information such as your name, email address, and password.
  • Subscription & Payment: If you subscribe to a premium service, we (or our third-party payment processor) collect billing information, such as your billing address and payment method details (we typically only receive confirmation of payment and limited card details like the last four digits).
  • Profile Information: You may optionally provide additional information in your profile, such as your professional role or specialty.
  • Communications: If you contact us directly (e.g., via email or a contact form), we will collect your name, email address, and the content of your message.
  • Saved Content: We store information about which guideline summaries you save or mark as favourites within your account.
  • Information Collected Automatically:
  • Usage Data: We collect information about how you interact with our Website, such as the pages you visit, the time spent on pages, links clicked, guideline summaries accessed or listened to, and search queries.
  • Device Information: We collect technical information about the device you use to access our Site, including IP address, browser type and version, operating system, and device identifiers.
  • Cookies and Similar Technologies: We use cookies and similar tracking technologies to collect information about your Browse activities. Please see our Cookie Policy below for more details.
3: How We Use Your Information

We use the information we collect for various purposes, including:

  • To provide, operate, and maintain our Website and services.
  • To manage your account, including processing registrations and logins.
  • To process your subscriptions and payments.
  • To personalize your experience (e.g., showing relevant content based on saved items or profile information).
  • To communicate with you, respond to your inquiries, send service-related notifications (e.g., subscription renewals, policy updates), and provide customer support.
  • To send marketing communications (only with your explicit consent), such as newsletters or information about new features or content you might find interesting.
  • To analyze usage trends, monitor the effectiveness of our Content, and improve the Website’s functionality and user experience.
  • To ensure the security and integrity of our Website and prevent fraud or misuse.
  • To comply with legal obligations and enforce our Terms & Conditions.
4. Lawful Basis for Processing

We only process your personal data when we have a valid legal basis under UK GDPR. These bases include:

  • Consent: Where you have given us clear consent to process your personal data for a specific purpose (e.g., for marketing emails or non-essential cookies). You can withdraw your consent at any time.
  • Contract: Where processing is necessary for the performance of a contract with you (e.g., to provide the subscription services you have paid for, manage your account).
  • Legitimate Interests: Where processing is necessary for our legitimate interests (or those of a third party), provided your interests and fundamental rights do not override those interests (e.g., for website security, analytics, responding to inquiries, improving our service).
  • Legal Obligation: Where processing is necessary for us to comply with the law.
5: Data Sharing and Disclosure

We do not sell your personal data. We may share your information with third parties only in the following circumstances:

  • Service Providers: We engage third-party companies and individuals to perform services on our behalf (e.g., payment processing, data analysis, email delivery, hosting services, customer support). These providers have access to your personal information only to perform these tasks and are obligated not to disclose or use it for any other purpose. Examples include  e.g., Stripe for payments, Google Analytics for analytics, Mailchimp for emails.
  • Legal Requirements: If required to do so by law or in response to valid requests by public authorities (e.g., a court or government agency).
  • Business Transfers: If we are involved in a merger, acquisition, or asset sale, your personal data may be transferred as part of that transaction. We will notify you before your personal data is transferred and becomes subject to a different privacy policy.
  • Protection of Rights: To enforce our Terms & Conditions, protect the security or integrity of our Service, and protect our rights, property, or safety, or that of our users or the public.
6: International Data Transfers

Some of our service providers may be located outside the United Kingdom (UK) or European Economic Area (EEA). When we transfer your personal data outside the UK/EEA, we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented:  

  • The country has been deemed to provide an adequate level of data protection by the UK authorities (Adequacy Regulations).
  • We use specific contracts approved by the UK authorities which give personal data the same protection it has in the UK (e.g., the UK Addendum to the EU Standard Contractual Clauses).
7: Data Security

We implement appropriate technical and organisational security measures to protect your personal data against accidental or unlawful destruction, loss, alteration, unauthorsed disclosure, or access. These measures include encryption, access controls, and regular security reviews. However, please remember that no method of transmission over the Internet or method of electronic storage is 100% secure.

8: Data Retention

We will retain your personal data only for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements. Generally, account information is retained for as long as your account is active and for a reasonable period thereafter in case you decide to re-activate the services or as required by law (e.g., financial records). We will delete or anonymise your data when it is no longer needed.  

9:  Your Data Protection Rights

Under UK GDPR, you have the following rights regarding your personal data:

  • Right to be Informed: To know how we collect and use your personal data.
  • Right of Access: To request a copy of the personal data we hold about you.
  • Right to Rectification: To request correction of inaccurate or incomplete data.
  • Right to Erasure (‘Right to be Forgotten’): To request deletion of your personal data under certain conditions.
  • Right to Restrict Processing: To request the restriction of processing under certain conditions.
  • Right to Data Portability: To receive your data in a structured, commonly used, machine-readable format and transmit it to another controller under certain conditions.
  • Right to Object: To object to processing based on legitimate interests or for direct marketing purposes.
  • Rights related to Automated Decision-Making and Profiling: To not be subject to decisions based solely on automated processing, including profiling, which produce legal effects concerning you or similarly significantly affect you (we currently do not engage in such processing).
  • To exercise any of these rights, please contact us at enquiries@meddigest.co.uk or manage your account settings via your Dashboard where applicable. We may need to request specific information from you to help us confirm your identity before processing your request.
10: Children's Privacy
Our Service is not intended for individuals under the age of 18. We do not knowingly collect personal data from children under 18. If we become aware that we have collected personal data from a child under 18 without verification of parental consent, we take steps to remove that information.
12: Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the “Last Updated” date. We may also notify you via email or through a notice on our Website prior to the change becoming effective, especially for material changes. You are advised to review this Privacy Policy periodically for any changes.  

13: Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

Add Your Heading Text Here

Log In

To keep connected with us please login with your personal info