Call now to book - 02038270651

Privacy policy

Revised: 31 December 2024

Definition of “User Data”

For the purposes of this Privacy Policy, “User Data” refers to any information that you provide, upload, or share with Medi Labs Ltd during the course of accessing or using our services. User Data encompasses any information that identifies or can reasonably be used to identify an individual, either directly or indirectly, and which is collected or processed by Medi Labs in compliance with applicable data protection laws.

Examples of User Data include, but are not limited to:

  • Personal information such as your name, email address, contact number, or physical address provided when creating an account, completing forms, or contacting us.
  • Payment and transaction details submitted during purchases or subscriptions.
  • Any information you share voluntarily through surveys, feedback forms, or inquiries.
  • Technical data, such as IP addresses or device identifiers, collected when accessing Medi Labs services.
  • Preferences, demographic information, or any additional details provided to enhance user experience.

This data is collected to fulfill our contractual obligations, improve our services, and ensure compliance with relevant regulations.

Updates to This Privacy Policy

Medi Labs Ltd is committed to maintaining a transparent approach to how your data is collected, processed, and protected. To reflect changes in technology, business practices, and legal requirements, we may revise this Privacy Policy periodically.

When changes are made to our privacy practices, Medi Labs will update this Privacy Policy, and such changes will be effective as of the "Revised" date noted at the top of this document. Significant updates will be communicated to you in the following ways:

  • By posting an updated Privacy Policy on our official website, ensuring it is accessible and clearly identifiable.
  • By providing direct notification through email or similar means where material changes impact your rights or how your data is handled.

We encourage users to review this Privacy Policy regularly to stay informed of how Medi Labs protects and manages User Data. Your continued use of our services after any updates signifies your acknowledgment and acceptance of the revised terms, unless otherwise required by applicable law.

Examples of User Data

User Data refers to any information that is collected, processed, or generated by Medi Labs Ltd during the provision of its services. This data can be categorized into several types and is utilized in various ways to improve the services Medi Labs offers, ensure operational efficiency, and comply with applicable legal requirements. The types of User Data include, but are not limited to, the following:

  1. Personally Identifiable Information (PII)
    • Definition: Personally Identifiable Information (PII) is data that directly identifies an individual. This includes, but is not limited to, the following types of information:
      • Names: Full name, first name, last name, or any other identifiers that can pinpoint a specific individual.
      • Postal Addresses: Residential or business addresses, including street names, numbers, postal codes, and city or country details.
      • Email Addresses: Personal or business email addresses that allow for direct communication with an individual.
      • Telephone Numbers: Mobile, landline, or other contact numbers used to reach an individual.
    • Usage: This data is primarily used for customer support, service fulfillment, billing, and communication. It may also be used for marketing purposes with the user's consent, ensuring that the services provided are tailored to individual needs.
  2. Aggregated Data
    • Definition: Aggregated Data refers to information that has been anonymized or de-identified and cannot be used to directly identify any individual. This data is typically processed in bulk to create statistics or general trends.
      • Types: Examples of aggregated data include website traffic patterns, user behavior analysis, or demographic summaries based on large volumes of data collected from various users.
    • Usage: This data is often utilized for:
      • Statistical Analysis: To identify patterns or trends that help improve website design, content, and overall user experience.
      • Public Health Initiatives: In cases where Medi Labs collaborates with healthcare providers or government bodies, aggregated data may be used for research or public health projects, ensuring that no individual can be traced from the data.
      • Commercialization Purposes: Aggregated data may be used to enhance product offerings, refine services, or create new solutions, while adhering to applicable privacy laws to ensure no personal details are disclosed.
  3. Newly Generated Data
    • Definition: Newly Generated Data refers to information that Medi Labs derives from User Data through analysis, innovation, or processing, excluding personally identifiable information (PII). This data is created based on user interactions, preferences, and activities, and is used to enhance and optimize the services offered by the company.
      • Types: Examples include data about customer preferences, behavioral analysis, machine learning insights, or predictive analytics models that help improve service offerings.
    • Usage: This data is often retained as intellectual property by Medi Labs to:
      • Enhance Services and Products: Newly generated data is used to refine existing services, develop new features, or personalize offerings.
      • Innovation and Development: This data plays a crucial role in the innovation process, helping Medi Labs develop new technologies, processes, or methods to better serve users and stay competitive in the market.
      • Internal Improvements: The data helps Medi Labs assess and improve internal operations, such as marketing strategies, customer engagement methods, and overall service performance.

Medi Labs is committed to ensuring that all User Data is collected, processed, and used in compliance with applicable data protection laws and regulations, including GDPR and other global privacy standards. While PII is carefully protected and used only with explicit user consent or as necessary for service provision, aggregated and newly generated data can be used more freely for research, analysis, and business optimization, provided such use does not violate user privacy or legal guidelines.

How Medi Labs Collects Information Online
Medi Labs Ltd acts as the data controller for User Data collected through its websites and software platforms. This means that Medi Labs determines the purposes for which and the means by which this data is processed. Data is collected through secure and compliant mechanisms to ensure privacy and accuracy.

Categories of Personally Identifiable Information Collected
In the course of its operations, Medi Labs collects and processes the following categories of Personally Identifiable Information (PII) to deliver services, maintain compliance, and enhance customer experience:

  • Contact Information: Name, address, email address, telephone number, and other contact details necessary for communication.
  • Transactional and Account Information:
    • Contact history, including inquiries and interactions.
    • Purchase history and delivery addresses provided for order fulfillment.
    • Account details, such as usernames, passwords, and login credentials required for secure access.
  • Financial Information: Billing details, payment information, including credit card and bank account details, processed securely in line with data protection laws.
  • Demographic Information: Gender, where specified and necessary for service personalization.
  • Customer Feedback and Communications: Any feedback, reviews, or correspondence shared with Medi Labs via email, telephone, post, or social media.
  • Service-Related Information: Data pertaining to the services Medi Labs has provided to you, including history and preferences to ensure tailored service delivery.

All data collection is conducted with your consent where required or in accordance with applicable legal obligations. Medi Labs is committed to protecting your personal information and ensuring it is used only for the purposes for which it was provided.

How Medi Labs Collects User Data

  1. User Data You Submit
    Medi Labs collects personal information that you voluntarily provide when interacting with our websites or software platforms. This data may include, but is not limited to, your name, address, email address, phone number, and other contact details. We collect this information for a variety of purposes, including but not limited to obtaining additional information, registering for services or programs, making customer service inquiries, responding to surveys, or subscribing to our communications.
    It is important to ensure that the information you provide is accurate, complete, and up to date. You should only provide data that has been specifically requested. Additionally, you must confirm that you have the legal right to submit any personal data, including that which may pertain to third parties, under applicable local laws and regulations.
  2. Passive Collection of Unidentifiable Information
    Medi Labs also employs technologies such as cookies and web beacons to collect non-identifiable information regarding your interactions with our websites and online platforms. Cookies are small text files placed on your device by our websites that allow us to store preferences and other information. Web beacons (such as GIFs, pixels, or tags) are tiny, transparent images embedded in web pages that enable the collection of information about your device’s interactions with our websites.
    The information gathered through these technologies includes data such as your browser type, IP address, device type, referring websites, and the pages you visit within our site. This information is used primarily to enhance your browsing experience, optimize the performance of our websites, customize services, monitor trends, and improve the functionality of the site.
    While this data is non-identifiable on its own, it may be linked with personally identifiable information if you voluntarily provide such details. Medi Labs does not link passive information with personally identifiable data unless explicitly required by law or consented to by you.
  3. Google Analytics
    To assess website usage and to optimize user experience, Medi Labs utilizes Google Analytics, a web analytics service offered by Google, Inc. Google Analytics collects data about your use of our websites through cookies, including your IP address and other website interaction details.
    Google Analytics uses the collected data to generate reports on website activity and to provide insights on how users interact with the site. Data collected by Google Analytics may be shared with third parties, as required by law or when processing information on behalf of Google. However, Medi Labs ensures that your IP address will be anonymized, and we take appropriate measures to ensure that no other personally identifiable information is linked to the collected data.

Cookies and User Options

Persistent cookies are small files stored on your device for an extended period, allowing our website to remember your preferences and settings for future visits. These cookies help improve your browsing experience by enabling quicker access to preferred features, such as language settings or login credentials. These cookies remain on your device until they expire or are manually deleted by you.

Users are free to manage or disable cookies by adjusting their browser settings. However, it is important to note that disabling cookies may negatively impact the functionality of certain features on the Medi Labs website. Some features that rely on cookies, such as saving preferences or remembering login information, may not work as expected if cookies are disabled.

Circumstances and Purposes for Collecting and Using User Data

Medi Labs collects and processes User Data for the following purposes, based on the lawful grounds outlined by applicable data protection laws:

  1. Consent
    Medi Labs may collect and process your data based on your explicit consent. This applies when you voluntarily provide information, such as when you sign up for our services, register for programs, or accept cookies that track your preferences. By providing this consent, you acknowledge that you are aware of how your information will be used.
  2. Legal and Regulatory Obligations
    We may process your data as required to comply with applicable laws and regulatory requirements. This includes complying with legal obligations related to tax reporting, law enforcement requests, data retention mandates, and other governmental or legal directives. Medi Labs is committed to upholding all applicable legal and regulatory standards.
  3. Performance of a Contract
    User data may be processed when it is necessary to fulfill a contract or to take steps at your request prior to entering into a contract. This includes processing payments, fulfilling orders, providing customer service, delivering services, and managing contracts.
  4. Legitimate Interests
    Medi Labs may process your data based on legitimate business interests, provided these interests do not override your rights and freedoms. Legitimate interests include improving our services, conducting marketing activities, preventing fraud, and enhancing customer satisfaction. In all cases, we ensure that any processing activities conducted under this basis are in compliance with applicable data protection laws and are balanced against your interests.
  5. Scientific Research, Statistical Analysis, and Public Interest
    Where applicable and lawful, Medi Labs may use user data for purposes of scientific research, statistical analysis, or in the public interest. This use is aligned with regulatory guidelines and is conducted in a manner that respects privacy rights. We take steps to anonymize or aggregate data where necessary to protect individual privacy.

By processing User Data in these circumstances, Medi Labs ensures compliance with relevant data protection laws, providing transparency and maintaining accountability in the handling of your information.

Examples of User Data Use and Corresponding Reasons

Medi Labs processes User Data for various purposes, in compliance with applicable data protection laws. The following table outlines the specific purposes for which we collect and use User Data, as well as the corresponding legal reasons for processing such data:

Purpose

Reason

Creating and managing your account

To perform or prepare for a contract.

Verifying identity and fraud prevention

To comply with legal and regulatory obligations.

Legal rights enforcement and proceedings

To fulfill legal obligations or based on legitimate interests (e.g., protecting our business).

Customizing website content

Based on consent or legitimate interests (e.g., delivering an efficient service).

Analyzing website visits

Based on consent or legitimate interests (e.g., improving website usability).

Communications (non-marketing)

Based on legal obligations or legitimate interests (e.g., ensuring efficient service delivery).

Protecting system and data security

To comply with legal obligations or based on legitimate interests (e.g., preventing criminal activity).

Statistical customer analysis

Based on legitimate interests (e.g., understanding the customer base).

Updating customer records

To perform a contract, fulfill legal obligations, or based on legitimate interests (e.g., staying in touch with customers).

Complying with audits

Based on legitimate interests (e.g., maintaining accreditation standards).

Marketing to existing/former customers

Based on legitimate interests (e.g., promoting our services).

Corporate restructuring (e.g., mergers)

To comply with legal obligations or based on legitimate interests (e.g., protecting business assets).

Tracking preferences

Based on consent or legitimate interests (e.g., tailoring services).

 

Special Category User Data

Certain types of sensitive data, known as special category data, require heightened protections due to the potential impact on an individual’s rights and freedoms. Medi Labs is committed to handling special category data with the utmost care and in full compliance with applicable data protection laws, including GDPR and other international regulations. We take all necessary steps to safeguard the confidentiality, security, and integrity of this sensitive information.

The types of special category data that Medi Labs may collect and process include the following:

  1. Health Data
    • Definition: Health data includes information related to an individual’s physical or mental health. This type of data can encompass a broad range of health-related information, such as:
      • Medical conditions (e.g., chronic illnesses, disabilities, allergies)
      • Treatment history (e.g., surgeries, therapies, prescribed medications)
      • Physical or mental health assessments and diagnoses
      • Health-related lifestyle information (e.g., fitness levels, dietary habits)
    • Processing: Medi Labs may collect health data only when it is necessary to provide specific health-related services or support, such as wellness programs or medical research initiatives. This data is used with explicit user consent or when required for the performance of a contract related to healthcare services. Health data is handled with strict confidentiality to prevent unauthorized access and is protected using secure storage and processing methods.
  2. Sexual Life Data
    • Definition: Sexual life data refers to information regarding an individual’s sexual orientation, sexual activity, or sexual preferences. This type of data is considered particularly sensitive and requires additional protection.
    • Processing: Medi Labs may process sexual life data only when the individual has explicitly consented to such processing, or when it is necessary to fulfill specific contractual obligations, or where it is essential for the performance of certain health-related services. The processing of sexual life data is carried out with the highest level of care to ensure that individuals’ privacy rights are protected at all times.
  3. Genetic Data
    • Definition: Genetic data relates to the genetic makeup or genetic history of an individual. This includes:
      • Data obtained from genetic testing, such as DNA analysis
      • Information about genetic predispositions to certain diseases or conditions
      • Family medical history related to genetic traits or conditions
    • Processing: Genetic data is collected and processed by Medi Labs only under strict conditions, and typically in contexts where individuals voluntarily provide such data, such as health assessments, research studies, or personalized health programs. Explicit consent is required from users before processing their genetic data, and the information is handled with stringent safeguards to prevent misuse.

Medi Labs recognizes that special category data requires robust protections due to its sensitive nature. We are committed to complying with data protection regulations that govern the processing of such data, including the following:

  • Explicit Consent: For most instances of processing special category data, explicit consent is required. Medi Labs ensures that users are fully informed about how their sensitive data will be used and provides a clear opt-in process for consent. Users have the right to withdraw their consent at any time.
  • Legitimate Purposes: Special category data is only processed when absolutely necessary for a legitimate purpose, such as delivering personalized health services, conducting research, or fulfilling contractual obligations. The data is never processed for reasons that are incompatible with these legitimate purposes.
  • Strict Safeguards: When processing special category data, Medi Labs applies stringent security measures to protect the data from unauthorized access, accidental loss, or breaches. These measures include encryption, secure storage, access control policies, and regular security audits.
  • Data Minimization: Medi Labs follows the principle of data minimization, ensuring that only the minimum amount of special category data necessary for the intended purpose is collected and processed.
  • Transparency and User Rights: Medi Labs is committed to ensuring transparency in its data processing practices. We provide clear and accessible information to users about the processing of their special category data and respect their rights under data protection laws. This includes providing users with the ability to access, rectify, erase, and restrict the processing of their data as required.

By adhering to these standards, Medi Labs ensures that special category data is processed with the highest level of security and privacy, in compliance with all relevant data protection laws, and with the full consent and awareness of the individuals whose data is being processed.

 

User Data for Marketing

Medi Labs may use your User Data to keep you informed about our products, services, exclusive offers, promotions, and special invitations. Our marketing activities are based on legitimate interests; however, we respect your preferences, and you have the right to opt-out at any time by:

  • Contacting Medi Labs directly.
  • Clicking the “unsubscribe” link provided in promotional emails.
  • Updating your marketing preferences through your account settings or communication with Medi Labs.

We may also confirm or update your marketing preferences when you request new products or services or when there are regulatory or business changes that may affect your data processing preferences.

It is important to note that Medi Labs will never sell or share your User Data with third parties for marketing purposes.

Does Medi Labs Consolidate User Data?

Yes, Medi Labs may consolidate User Data collected from customers through its websites. This data may also be aggregated or anonymized for several purposes, including but not limited to:

  • Enhancing the design and functionality of our websites and services.
  • Conducting research to improve our business operations and strategies.
  • Facilitating statistical analysis for public health improvements.

Any commercial use of aggregated or anonymized data is strictly for statistical or research purposes, and no individual user is identified. As a result, users are not entitled to any compensation for the use of such data.

What Choices Do Users Have About How Medi Labs Collects and Uses Their Data?

Medi Labs offers users various choices regarding the data shared with us. You can limit the amount of data you provide by:

  1. Choosing not to submit data in online forms or during registration processes.
  2. Opting out of marketing communications by:
    • Updating your preferences in your account settings.
    • Clicking the “unsubscribe” link provided in marketing emails.
  3. Limiting cookies or tracking technologies via your browser settings. However, please note that some cookies are necessary for the website to function optimally, and disabling them may affect certain website features.

While you have control over these preferences, please understand that certain services may require specific User Data to function properly. For example, opting out of tracking technologies or cookies related to anonymous data collection generally cannot be fully disabled, as these are essential for website performance and analysis.

Who Has Access to User Data?

Access to User Data is strictly limited to those individuals or organizations that need it for the fulfillment of their duties or business operations. These include:

  • Authorized Medi Labs employees who have been trained on privacy standards and are responsible for handling your data in accordance with this Privacy Policy.
  • Joint program partners, such as collaborators or affiliates working with Medi Labs, but only with the user's prior consent where applicable.
  • Contractors and service providers engaged by Medi Labs to perform business activities, including but not limited to operational, marketing, payment processing, and delivery services. These third parties are bound by confidentiality agreements and are limited in their use of the data to the specific services they are contracted to perform.

Does Medi Labs Share User Data with Third Parties?

Medi Labs may share your User Data with the following categories of third parties, with appropriate safeguards in place:

  1. Operational Partners:
    • Delivery companies for fulfilling orders.
    • Payment processors for handling financial transactions.
    • Marketing agencies for assisting in promotional campaigns.
  2. Buyers (with consent where required):
    • In the event of a sale or transfer of Medi Labs' business, User Data may be shared with prospective buyers or involved parties, with user consent when necessary.
  3. Service Providers:
    • Medi Labs may share User Data with service providers who assist in specific operational areas. These service providers are required to operate under strict confidentiality agreements and are only authorized to process data for the services they are contracted to perform.
  4. Regulatory or Government Authorities:
    • Medi Labs may disclose User Data to comply with legal obligations, such as reporting requirements, regulatory inquiries, or public health initiatives. Where appropriate, this data may be anonymized before sharing.
  5. Research Partners:
    • Medi Labs may share aggregated data with research partners for the development of diagnostic products aimed at improving public health or for statistical analysis. Any such data will be anonymized, ensuring that no personally identifiable information is shared.

Additional Disclosures May Include:

  • External auditors, professional advisors, and law enforcement agencies when necessary, provided these parties are bound by confidentiality obligations.
  • Potential acquirers or investors during mergers, acquisitions, or corporate restructuring, where the data will be anonymized whenever possible.

Data Protection Measures

Medi Labs is committed to ensuring that all parties with access to User Data adhere to strict data protection practices:

  • Adequate Security Measures: All parties with access to User Data are required to implement security measures that meet industry standards for data protection.
  • Confidentiality Obligations: Parties handling User Data are contractually obligated to maintain confidentiality and use the data only for specified purposes.

How Does Medi Labs Secure User Data?

Medi Labs takes various measures to ensure the security of User Data:

  • Access Restriction: Only authorized personnel within Medi Labs have access to User Data, and access is granted solely for roles that require it.
  • ISO 27001 Certification: Medi Labs complies with ISO 27001, an internationally recognised standard for information security management, to ensure its systems meet the highest security standards.
  • Incident Management: Medi Labs has established procedures for managing data breaches or security incidents in compliance with applicable laws.
  • Online Transmission: While Medi Labs employs secure methods to protect data transmitted over the internet, it is important to note that no transmission method can be fully guaranteed to be 100% secure. Users are advised to exercise caution when transmitting sensitive information online.
  • Third-Party Links: Medi Labs' websites may contain links to third-party websites. When users click on these links, they are advised to review the privacy policies of these external sites, as they may differ from those of Medi Labs. Medi Labs is not responsible for the privacy practices of third-party websites.

Transferring User Data Across Borders

Medi Labs may transfer User Data to countries outside of the user's country of residence, including those with varying levels of data protection laws. Such transfers are conducted in full compliance with applicable data protection regulations to ensure the security and privacy of User Data.

The following conditions govern the transfer of User Data:

  • Adequacy Decision: Transfers may occur to countries or regions that are deemed to provide adequate levels of data protection, as recognised by regulatory bodies. For example, the European Union (EU) and the United Kingdom (UK) recognize certain jurisdictions as offering an adequate level of data protection under Article 45 of the EU General Data Protection Regulation (GDPR).
  • Appropriate Safeguards: When transferring User Data to regions without an adequacy decision, Medi Labs ensures that appropriate safeguards are in place. This may include the use of Standard Contractual Clauses (SCCs), which are legally approved mechanisms designed to protect the transfer of data between countries with different levels of data protection laws.
  • Exceptions: Under certain conditions, specific exceptions may apply to the transfer of User Data, as stipulated under applicable data protection laws. These exceptions may include, but are not limited to, situations where transfers are necessary for contractual obligations, legal claims, or vital interests.
  • User Consent: In cases where adequate safeguards are not in place, Medi Labs may request explicit user consent for transferring User Data across borders. This consent is sought only when all legal and regulatory requirements are met, ensuring users are fully informed of the risks and their rights.

Medi Labs is committed to notifying users in the event of any significant changes in the transfer mechanisms or destinations of User Data, ensuring continued transparency and compliance with data protection laws.

Types of Cookies Used by Medi Labs

Medi Labs uses various types of cookies to improve the user experience, enhance website performance, and deliver personalized services. The following categories of cookies are used on the Medi Labs websites:

  1. Advertising Cookies:
    • These cookies are placed by third-party advertisers to serve interest-based ads.
    • Advertising cookies do not collect personally identifiable information about users, and they are primarily used for tracking user behavior and preferences across different websites for the purpose of delivering targeted advertisements.
  2. Analytics Cookies:
    • Analytics cookies track user interactions with the website to assess site performance and improve the user experience.
    • These cookies help Medi Labs identify areas for improvement by monitoring how users engage with the site, which pages are most visited, and the duration of their visits.
  3. First-Party Cookies (Necessary):
    • These cookies are essential for the basic functionality of the website and enable users to navigate the site and access various features.
    • Disabling these cookies may impair certain functions of the website, such as logging in, saving preferences, or maintaining session continuity.
  4. Personalization Cookies:
    • Personalization cookies recognize returning visitors and store their browsing history, preferences, and settings.
    • These cookies allow the website to offer a more tailored experience by remembering user preferences and customizing content based on past interactions.

Medi Labs ensures that cookies are used in a way that respects user privacy and complies with applicable data protection laws. Users can manage their cookie preferences through their browser settings, including the option to disable or delete cookies, although doing so may affect the functionality of the website.

Cookie Controls and Usage

Medi Labs uses a variety of cookies and tracking technologies to enhance the user experience, improve website functionality, and gather useful insights for business and marketing purposes. Below is a breakdown of the types of cookies used and how users can manage their preferences:

  1. Types of Cookies
  • Site Management Cookies:
    These cookies are essential for maintaining user sessions during navigation on the website. They allow the website to remember user preferences, maintain login states, and ensure a smooth browsing experience. Without these cookies, certain functionalities (e.g., shopping cart, user login) may not work properly.
  • Third-Party Cookies:
    These cookies are installed by external services, such as advertising or social media platforms, that integrate with the Medi Labs website. They can be used for purposes such as tracking user behavior, serving targeted ads, or enabling social media sharing features. Users have the option to disable third-party cookies through their browser settings.
  • Performance & Functionality Cookies:
    These cookies enhance the functionality of the website by remembering user preferences and settings across sessions. While these cookies improve the website's usability, users can choose to disable them; however, doing so may limit certain features or result in a less personalized experience.
  • Analytics & Customization Cookies:
    These cookies gather data about user interactions with the website to help Medi Labs optimize site performance and improve the user experience. The data collected is used for purposes such as analyzing traffic patterns, customizing content, and refining marketing strategies.
  • Media Cookies:
    These cookies track user preferences related to media content, such as video and audio. For example, they can help remember the volume settings or playback preferences when users watch videos on the website.
  1. User Control over Cookies
  • Most browsers are set to accept cookies by default, but users have the option to reject or delete cookies through their browser settings. If users prefer not to accept cookies, they can choose to block or delete cookies at any time.
  • Browser-Specific Cookie Management:
    Users can manage their cookie preferences directly through their browser settings. Below are links to the cookie management instructions for the most popular browsers:
  1. Other Tracking Technologies

In addition to cookies, Medi Labs may also use other tracking technologies such as web beacons and pixel tags. These tools help with:

  • Gathering data for analytics and tracking the effectiveness of marketing campaigns.
  • Improving user experience by customizing content based on behavior patterns.

These technologies, similar to cookies, collect information such as user interactions with emails, webpage content, or advertisements, and are typically used for optimizing services or measuring the success of marketing strategies.

Medi Labs provides users with control over their cookie preferences and other tracking technologies, ensuring transparency and offering a personalized browsing experience. While cookies are essential for some website functionalities, users have the freedom to manage them as needed. Disabling cookies may limit some features or impact site performance, so users should carefully consider their preferences.

User Data Rights

Under GDPR (General Data Protection Regulation) and other applicable global data protection laws, users have several important rights regarding their personal data. These rights ensure that individuals have control over their data and how it is processed by organizations like Medi Labs.

  1. Right to Information

Users have the right to be informed about the types of personal data that are collected and the purposes for which this data is processed. Medi Labs provides clear and transparent information about data collection practices and how personal data is used.

  1. Right to Correction and Erasure

Users can request the correction of inaccurate data or the deletion of their personal data when it is no longer necessary for the purposes for which it was collected. This is known as the "right to rectification" and the "right to erasure" (also known as the "right to be forgotten").

  1. Right to Data Portability

Users have the right to receive their personal data in a structured, commonly used, and machine-readable format. This enables users to transfer their data to another organization or service provider if they wish, facilitating greater control over their information.

  1. Right to Objection

Users can object to the processing of their personal data under certain circumstances, such as when their data is used for direct marketing purposes. Users also have the right to contest the processing of their data based on legitimate interests, unless the organization can demonstrate overriding legitimate grounds for the processing.

  1. Right to Withdraw Consent

If data processing is based on user consent, users have the right to withdraw their consent at any time. This can be done without affecting the lawfulness of the processing that occurred before consent was withdrawn. Once consent is withdrawn, Medi Labs will cease using the personal data for the purposes for which consent was originally given, unless other lawful grounds for processing exist.

These rights are designed to ensure that individuals retain control over their personal data and can exercise their preferences regarding its collection, use, and sharing. Medi Labs is committed to upholding these rights in compliance with applicable data protection laws.

Complaints and Queries

Users who have inquiries, complaints, or wish to exercise their data rights can contact Medi Labs through the following channels:

  • Email: For any concerns or data-related inquiries, users can reach Medi Labs at customerenquiries@medilabslondon.com.
  • Post: Medi Labs also accepts postal correspondence for formal inquiries or complaints.

If a user is dissatisfied with the resolution of their complaint, they have the right to escalate the issue to the relevant data protection authority, such as the Information Commissioner's Office (ICO), which oversees data protection laws in the UK.

 

Data Retention Policy

Medi Labs retains personal data only for as long as it is necessary to fulfill the purposes for which it was collected. Once the data is no longer needed for these purposes, it will be securely deleted or anonymized. However, aggregated and anonymized data may be retained and used for purposes such as research, statistical analysis, and public health improvement, in accordance with applicable laws and regulations.

 

Privacy Policy Updates

Medi Labs may periodically update its privacy policy to reflect changes in data processing practices, legal requirements, or business operations.

  • Effective Date: Updates to the policy will be reflected with a new effective date.
  • Notifications: For significant changes, users may receive notifications via email to ensure they are aware of any important updates to the policy.

These updates ensure that Medi Labs remains transparent with its users while continuing to comply with data protection regulations.