Logo

Privacy Policy

At Evermale Health Limited ("we", "our", "us"), we are committed to protecting and respecting your privacy. This Privacy Policy describes how we collect, use, store, and protect your personal information when you use our website or services.

Please read this Privacy Policy carefully to understand our practices regarding your personal data and how we will treat it. By visiting our website and using our services, you are accepting and consenting to the practices described in this policy.

1. Information about us

  1. Evermale Health Limited is a company registered in England whose registration number is 15856625 and registered office is at 5 Brayford Square, London, United Kingdom, E1 0SG.
  2. We are registered with the Information Commissioner's Office (ICO) as a data controller.
  3. For all data protection matters, you can contact us at help@evermale.co.uk.

2. Information we collect from you

  1. Information you give us. This is information about you that you provide to us by filling in forms on our website, during consultations, or by corresponding with us by phone, email, or otherwise. It includes:
    • Personal identification information (name, date of birth, address, email, phone number)
    • Health information including medical history, symptoms, diagnoses, test results, and treatments
    • Payment and billing information
    • Identity verification documents (passport, driving licence, utility bills)
    • Any other information you choose to provide us
  2. Information we collect about you. With each visit to our website, we may automatically collect:
    • Technical information, including IP address, browser type and version, time zone setting, operating system and platform
    • Information about your visit, including pages visited, links clicked, length of visits, and referral sources
  3. Special categories of personal data. When you use our medical services, we will process special categories of personal data, such as health data. We process this data on the basis that such processing is necessary for medical diagnosis, the provision of health care or treatment, or the management of health care systems.

3. How we use your information

  1. We use your information for the following purposes:
    • To provide you with the medical services you request
    • To manage your patient account and records
    • To process payments and refunds
    • To verify your identity
    • To communicate with you about appointments, prescriptions, and treatment plans
    • To monitor and improve our services
    • To respond to your inquiries and provide customer support
    • To comply with legal and regulatory obligations
    • With your consent, to send you marketing communications
  2. The legal bases for processing your personal data include:
    • Processing is necessary for the performance of a contract with you
    • Processing is necessary for our legitimate interests
    • Processing is necessary for compliance with legal obligations
    • Processing of health data is necessary for medical diagnosis, healthcare, or treatment
    • Your consent, where applicable

4. Disclosure of your information

  1. We may share your personal information with:
    • Our healthcare practitioners who provide treatment services to you
    • Your NHS GP (with your permission, as described in our Terms of Service)
    • Pharmacies to fulfil prescriptions
    • Blood testing laboratories and providers
    • Payment processors to handle transactions
    • IT service providers who host or maintain our systems
    • Professional advisers including lawyers, auditors, and insurers
    • Regulatory authorities, government bodies, or law enforcement agencies where required by law
  2. We require all third parties to respect the security of your personal data and to treat it in accordance with the law. We do not allow our third-party service providers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions.

5. Data security

  1. We have implemented appropriate security measures to prevent your personal information from being accidentally lost, used, or accessed in an unauthorised way, altered, or disclosed.
  2. We limit access to your personal information to those employees, agents, contractors, and other third parties who have a business need to know. They will only process your personal information on our instructions, and they are subject to a duty of confidentiality.
  3. All electronic medical records are stored in secure, encrypted databases that meet NHS standards for data protection.
  4. We have procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.

6. Data retention

  1. We will only retain your personal information for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
  2. For medical records, we are required by law to retain these for specified periods:
    • Adult medical records: 8 years after the conclusion of treatment
    • Patient records for persons under 18: Until their 25th birthday or 8 years after the conclusion of treatment, whichever is longer
  3. For non-medical data, such as account and transaction details, we typically retain this information for 7 years after your last interaction with us.

7. Your legal rights

  1. Under certain circumstances, you have rights under data protection laws in relation to your personal data:
    • Request access to your personal data (commonly known as a "data subject access request")
    • Request correction of incomplete or inaccurate personal data
    • Request erasure of your personal data in certain circumstances
    • Object to processing of your personal data where we are relying on a legitimate interest
    • Request restriction of processing of your personal data
    • Request transfer of your personal data to you or to a third party
    • Right to withdraw consent where we are relying on consent to process your personal data
  2. Please note that some of these rights may be limited when it comes to medical records, as we have legal obligations to retain this information for specified periods.
  3. If you wish to exercise any of these rights, please contact us at help@evermale.co.uk.
  4. You will not have to pay a fee to access your personal data or to exercise any of the other rights. However, we may charge a reasonable fee if your request is clearly unfounded, repetitive, or excessive. Alternatively, we may refuse to comply with your request in these circumstances.

8. Cookies

  1. Our website uses cookies to distinguish you from other users of our website. This helps us to provide you with a good experience when you browse our website and also allows us to improve our site.
  2. A cookie is a small file of letters and numbers that we store on your browser or the hard drive of your computer. Cookies contain information that is transferred to your computer's hard drive.
  3. We use the following cookies:
    • Strictly necessary cookies. These are required for the operation of our website.
    • Analytical/performance cookies. These allow us to recognise and count the number of visitors and to see how visitors move around our website.
    • Functionality cookies. These are used to recognise you when you return to our website.
    • Targeting cookies. These record your visit to our website, the pages you have visited and the links you have followed.
  4. You can set your browser to refuse all or some browser cookies, or to alert you when websites set or access cookies. If you disable or refuse cookies, please note that some parts of this website may become inaccessible or not function properly.

9. Children's privacy

  1. Our services are not directed at individuals under the age of 18. We do not knowingly collect personal data from individuals under 18. If we become aware that we have collected personal data from an individual under 18, we will take steps to delete such information from our files as soon as possible.

10. Changes to our privacy policy

  1. We may update this Privacy Policy from time to time to reflect changes to our practices or for other operational, legal, or regulatory reasons. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last Updated" date.
  2. You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.
  3. The most current version of this Privacy Policy can be accessed at any time by selecting the "Privacy Policy" link in the footer of the website.

11. Complaints

  1. If you have any concerns or complaints about our use of your personal data, you have the right to lodge a complaint with the Information Commissioner's Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk).
  2. We would, however, appreciate the chance to deal with your concerns before you approach the ICO, so please contact us at help@evermale.co.uk in the first instance.

12. Contact us

If you have any questions about this Privacy Policy or our privacy practices, please contact us at:

Email: help@evermale.co.uk

Postal address: Evermale Health Limited, 5 Brayford Square, London, United Kingdom, E1 0SG

Last Updated: 15 April 2025