Privacy & Policy

1. Who Are We?

truvva.co.ukis a website and service operated by LP SD EIGHTY SEVEN LIMITED, a
UK-registered
company providing safe and regulated weight loss treatments via a licensed pharmacy.

  • Company Name: LP SD EIGHTY SEVEN LIMITED
  • Registered Office: Cuckfield Chemist, Ground Floor Shop, 1 Hillcrest, Ockenden Lane,
    RH17
    5LD
  • Company Number: 15076343
  • GPhC Registration Number: 9012743
  • ICO Registration Number: ZB957598

You can contact our Data Protection Officer (DPO) by emailing info@truvva.codebuddys.in.

2. Our Role

We are a Data Controller, which means we determine how and why your personal data is
processed. We are responsible for handling your information in line with the UK General Data
Protection Regulation (UK GDPR) and Data Protection Act 2018.

3. Your Rights

You have the following rights under data protection laws:

  • Access – Request copies of the personal data we hold about you.
  • Rectification – Request that we correct inaccurate or incomplete data.
  • Erasure – Request we delete your data in certain cases (e.g. no longer necessary,
    withdrawn
    consent), unless required for legal or medical reasons.
  • Restriction – Request we stop processing your data temporarily.
  • Objection – Object to processing where the lawful basis is our legitimate interest.
  • Portability – Request we transfer your data to another provider, where applicable.

You may contact info@truvva.codebuddys.in to exercise these rights.

You also have the right to complain to the Information Commissioner’s Office
(ICO):📍 https://ico.org.uk/make-a-complaint

4. Technical and Operational Security

We take your data security seriously. Here’s how we protect it:

  • All sensitive data is encrypted using industry-standard SSL encryption.
  • Access to data is restricted to trained employees on a need-to-know basis.
  • All staff sign confidentiality agreements and undergo regular data protection training.
  • We ensure third-party suppliers adhere to strict data protection terms.

5. What Data Do We Collect?

  • A. Identity and Contact Details
    • Name, date of birth, address
    • Email address and phone number
    • ID documentation where required (to verify age or identity)
  • B. Medical Information
    • Health conditions, allergies, medications, medical history
    • Photos submitted for consultations
    • Communications with our pharmacy and clinical staff
  • C. Payment and Transaction Data
    • Payment method details (via third-party processors – we do not store full card numbers)
    • Transaction reference, billing address
  • D. Website Usage Data
    • Device, browser, IP address
    • Usage analytics (pages visited, interactions, cookies if consented)
    • Location data (only if consented)

6. How Do We Use Your Data?

We use your data to:

  • Provide regulated healthcare services (prescriptions, advice, pharmacy dispensing)
  • Verify your identity and medical suitability
  • Process payments and manage orders
  • Communicate with you (email, SMS if opted-in)
  • Improve our website and services
  • Send marketing (only if you consented)

7. Our Lawful Bases for Processing

We rely on the following legal bases:

  • Consent – For marketing and non-essential cookies
  • Contract – To provide you with our service
  • Legal Obligation – To meet pharmacy and GPhC regulatory requirements
  • Legitimate Interest – For business operations, fraud prevention, analytics
  • Vital Interests – To protect your health in emergencies

8. Who We Share Your Data With

We only share your data when necessary:

  • With pharmacists and clinicians delivering your care
  • With payment processors and couriers
  • With IT and email service providers (under contract)
  • With regulators (e.g. GPhC or ICO) if legally required
  • With your GP (only with your explicit consent)
  • With law enforcement if required by court order
  • We never sell your data.

9. International Data Transfers

If we transfer your data outside the UK/EEA, we will ensure adequate safeguards such as:

  • Adequacy decisions by the UK Government
  • Standard Contractual Clauses approved by the ICO

10. Data Retention

We retain your data in line with healthcare standards and pharmacy regulations:

  • Medical records: Held for up to 10 years after your last interaction (as per
    Department
    of
    Health guidance)
  • Accounts: Retained while active; if inactive and no services ordered, deleted upon
    request
  • Marketing preferences: Stored until you unsubscribe (then moved to suppression list)
  • Analytics: Retained in pseudonymised form while your account is active

11. Cookies and Website Use

We use cookies for:

  • Site functionality
  • Analytics
  • Marketing (if consented)

You can manage your cookie preferences on our website at any time.

12. Contact

To exercise your rights or raise a concern, contact our DPO:

 

info@truvva.codebuddys.in

 

Truvva, Ground Floor Shop, 1 Hillcrest, Ockenden Lane, RH17
5LD