Privacy policy.
This policy explains how ViviPractice collects, uses, and protects information you submit through our website, including enquiries and onboarding intake.
1. Who we are
ViviPractice provides tools and operational support for appointment-led pharmacy services.
Contact email: [email protected]
Website: vivipractice.com
2. Information we collect
We collect information that you provide and limited technical data to keep the site secure.
Information you provide
- Pharmacy/organisation name
- Pharmacy postcode
- Pharmacy email address
- Contact name and role
- Premises count
- Enquiry type and message content
Technical information
- IP address (for security and abuse prevention)
- Basic device/browser data (via standard server logs)
- Form verification signals (e.g., spam prevention tokens)
3. How we use information
We use your information to respond, onboard, and operate the service responsibly.
- To respond to enquiries and schedule walkthroughs
- To confirm plan fit, premises scope, and onboarding requirements
- To provide support and service communications
- To protect the website from spam, abuse, and unauthorised access
- To comply with legal obligations where applicable
4. Legal basis (UK GDPR)
We rely on standard legal bases under UK GDPR depending on the context.
- Legitimate interests: responding to enquiries, preventing abuse, operating the website
- Contract: delivering services once you subscribe or onboard
- Legal obligation: where we must comply with applicable laws
- Consent: where required for specific communications
5. Sharing information
We do not sell personal data. We share information only when necessary.
- With trusted service providers who help us operate the website and service (for example hosting and security providers)
- With professional advisers where appropriate (legal, accounting)
- If required by law or to protect rights, safety, and security
Where we use service providers, we require appropriate safeguards and confidentiality obligations.
6. International transfers
If data is processed outside the UK, we apply appropriate safeguards.
We may use service providers with infrastructure in different regions. Where personal data is transferred internationally, we use appropriate safeguards such as contractual protections and security controls.
7. Data retention
We retain information only as long as necessary.
- Enquiry submissions are retained for as long as needed to respond and manage onboarding
- Operational records are retained according to service configuration and requirements
- Security logs are retained for a limited period to protect the website and investigate abuse
8. Security
We use reasonable measures designed to protect information and reduce risk.
- Access controls aligned to authorised roles
- Monitoring and security controls to reduce abuse
- Use of reputable hosting infrastructure and secure configuration
- Spam protection on forms to reduce automated abuse
No system is perfectly secure. We encourage you to use secure email practices and avoid sending sensitive clinical data through website enquiry forms.
9. Your rights
Depending on your circumstances, you may have rights under UK GDPR.
- Access to your personal data
- Correction of inaccurate information
- Deletion in certain circumstances
- Restriction of processing in certain circumstances
- Objection to processing based on legitimate interests
- Data portability where applicable
- Withdrawal of consent where processing is based on consent
To exercise rights, contact [email protected].
10. Cookies
We use cookies and similar technologies where necessary to operate the site and improve reliability.
We may use essential cookies required for site operation. Where additional cookies are used, we will provide appropriate notice and choices. See our Cookie Policy.
11. Changes to this policy
We may update this policy to reflect changes in the service or legal requirements.
We will post updates on this page and revise the “Last updated” date above.