Home / Privacy Policy

Privacy Policy

Introduction

Dragon Pharma UK is committed to protecting and respecting your privacy. This policy explains how we collect, use, and safeguard your personal data when you visit dragonpharma.co.uk or place an order with us. We comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

What Data We Collect

When you browse our website or place an order, we may collect the following information:

  • Identity data: your name, username, or similar identifier
  • Contact data: email address, delivery address, billing address
  • Transaction data: details of products you have purchased, order history, payment references
  • Technical data: IP address, browser type and version, time zone, operating system, and platform
  • Usage data: how you use our website, pages visited, products viewed

We do not collect or store your full payment card details. Card payments are processed by our third-party payment processor, which is PCI DSS compliant.

How We Use Your Data

We use your personal data for the following purposes:

  • To process and fulfil your orders, including shipping and delivery
  • To communicate with you about your order (confirmation, dispatch, tracking)
  • To respond to your enquiries and provide customer support
  • To improve our website, products, and services
  • To detect and prevent fraud
  • To comply with legal obligations

We will not use your data for marketing purposes unless you have given explicit consent. You can withdraw consent at any time by contacting us.

Data Sharing

We do not sell, rent, or trade your personal data to third parties. We may share your data only with:

  • Delivery partners: Royal Mail or other couriers, to fulfil your delivery (name and address only)
  • Payment processors: to process your payment securely
  • Legal authorities: if required by law or to protect our rights

Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. Our website uses SSL/TLS encryption for all data transmission. Access to personal data is restricted to authorised personnel only.

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected. Order data is retained for 6 years to comply with UK tax and accounting obligations. You may request deletion of your account and personal data at any time, subject to our legal retention requirements.

Cookies

Our website uses cookies to enable essential site functionality (shopping cart, login sessions) and to understand how visitors use the site. By continuing to browse our site, you consent to our use of cookies. You can control cookies through your browser settings.

Your Rights

Under UK GDPR, you have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data (right to be forgotten)
  • Object to or restrict processing of your data
  • Request portability of your data
  • Withdraw consent at any time

To exercise any of these rights, contact us at support@dragonpharma.co.uk. We will respond within 30 days.

Contact

For any questions about this privacy policy or how we handle your data, contact us at:

Email: support@dragonpharma.co.uk