Privacy Policy

Privacy Policy – Slinic

Last updated: 17th December 2025

Slinic is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, store, protect, and share personal data and protected health information (PHI) when you use our website www.slinic.co.uk and our clinical services.

We comply with all applicable data protection laws, including:

  • UK General Data Protection Regulation (UK GDPR)
  • Data Protection Act 2018
  • NHS confidentiality principles (where applicable)

 

1-Who We Are:

is a UK-based, GPhC-regulated pharmacy-led medical weight-loss clinic providing online clinical consultations and prescription services under professional supervision.

Data Controller: Slinic, United Kingdom

Email: privacy@slinic.co.uk

2-Information We Collect

We collect information necessary to provide safe, lawful, and clinically appropriate healthcare services.

a) Personal Information

  • Name, date of birth, gender
  • Contact details (email, phone number, address)
  • Account login details
  • Payment and billing information (processed securely via third-party providers)

 

b) Protected Health Information (PHI)

  • Medical history and health questionnaires
  • Height, weight, BMI, and lifestyle information
  • Medication history and allergies
  • Consultation records and clinical notes
  • Prescriptions and treatment outcomes

This information is classified as special category data under UK GDPR and is handled with enhanced safeguards.

3-We Use Your Information

We use your information only where lawful and necessary, including to:

  • Conduct medical assessments and consultations
  • Determine clinical suitability for treatment
  • Prescribe and supply medications safely
  • Monitor treatment progress and side effects
  • Communicate with you about your care
  • Meet legal, regulatory, and professional obligations
  • Prevent fraud and ensure patient safety
  • We do not sell or misuse personal or health data

 

4-Lawful Basis for Processing

We process your data under the following lawful bases:

  • Provision of healthcare (Article 9(2)(h) UK GDPR)
  • Explicit consent for medical and health data
  • legal and regulatory obligations
  • Legitimate interests relating to service delivery and safety

 

5. How We Protect Your Data

We apply strict security measures to protect your data, including:

  • Encrypted data storage and transmission
  • Secure clinical systems with access controls
  • Role-based access for authorised healthcare professionals only
  • Regular security monitoring and system updates
  • Confidentiality obligations for all staff and clinicians

Access to PHI is restricted strictly to professionals involved in your care.

6-Sharing Your Information

We may share your information only where necessary and lawful, including with:

  • UK-registered prescribers and pharmacists involved in your care
  • Regulated pharmacies and dispensing partners
  • Secure IT, hosting, and clinical platform providers
  • Regulators or authorities where legally required

All third parties are contractually required to comply with data protection and confidentiality laws.

7Data Retention

We retain personal and health information only for as long as required by:

  • Clinical governance standards
  • Legal and regulatory requirements
  • Professional record-keeping obligations

Medical records are retained securely in line with UK healthcare retention guidelines

8-Your Rights

Under UK GDPR, you have the right to:

  • Access your personal data
  • Request correction of inaccurate data
  • Request erasure where legally permissible
  • Restrict or object to certain processing
  • Withdraw consent at any time
  • Lodge a complaint with the Information Commissioner’s Office (ICO)

ICO website: https://www.ico.org.uk

9-Cookies and Analytics

Our website uses cookies and similar technologies to:

  • Improve functionality
  • Analyse website performance
  • Ensure security

You can manage cookie preferences via your browser settings.

10-International Data Transfers

Where data is processed outside the UK, appropriate safeguards are in place to ensure compliance with UK GDPR, including data protection agreements and approved transfer mechanisms.

11-Changes to This Policy

We may update this Privacy Policy periodically. The latest version will always be published on our website.

12- Contact Us

If you have questions about this Privacy Policy or how we handle your data, contact:

Email: privacy@slinic.co.uk

Website: www.slinic.co.uk