Book a demo
Platform
Onescript Partnership

Privacy Policy

Last Updated: 26 June 2026

This Privacy Policy explains how Utilise Marketing Group Ltd ("we", "our", or "us") collects, uses, stores
and protects your personal information when you use the LoopRX platform, our websites and
associated services.

We are committed to protecting your privacy and handling your personal information in accordance
with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018 and other
applicable privacy legislation.

Who We Are

LoopRX is operated by Utilise Marketing Group Ltd.

We provide software and technology services to healthcare providers, pharmacies and prescribing
organisations to facilitate the management of online healthcare services.

Where we determine how and why your personal information is processed, we act as the Data Controller.

In some circumstances, we may process information solely on behalf of our healthcare clients, in which
case we act as a Data Processor.

Contact Details

If you have any questions regarding this Privacy Policy or your personal information, you can contact
us:

Utilise Marketing Group Ltd

Email: privacy@looprx.co.uk

Website: www.looprx.co.uk

Information We Collect

Depending on how you use LoopRX, we may collect the following information.

Identity Information

  • Name
  • Date of birth
  • Gender
  • Photographic identification
  • Government-issued ID (where required)
  • Account credentials

Contact Information

  • Email address
  • Telephone number
  • Postal address
  • Delivery address

Healthcare Information

Where necessary to provide healthcare services, we may process:

  • Medical history
  • Current medications
  • Allergies
  • Height and weight
  • Assessment responses
  • Clinical notes
  • Photographs submitted for clinical review
  • Blood test results
  • Prescription information
  • Treatment history


This information is clasified as Special Category Data under UK GDPR.

‍Payment Information

Payments are securely processed by third-party payment providers.

We do not store full payment card details.

We may receive:

  • Transaction references
  • Payment status
  • Billing address

Technical Information

We automatically collect:

  • IP address
  • Browser type
  • Device information
  • Operating system
  • Log files
  • Website usage
  • Cookie identifiers

How We Use Your Information

We use your information to:

  • Create and manage your account
  • Verify your identity
  • Deliver healthcare services
  • Enable clinicians to assess treatment suitability
  • Process prescriptions
  • Coordinate pharmacies and fulfilment partners
  • Arrange deliveries
  • Provide customer support
  • Improve our platform
  • Detect fraud
  • Maintain security
  • Meet legal obligations
  • Respond to regulatory requests
  • Produce anonymous statistical reporting

Our Lawful Basis for Processing

Under UK GDPR we rely upon one or more of the following lawful bases:

  • Performance of a contract
  • Compliance with legal obligations
  • Legitimate interests
  • Consent (where required)
  • Provision of health or social care
  • Public interest in the area of public health
  • Explicit consent for certain categories of Special Category Data where applicable

Sharing Your Information

We only share personal information where necessary.

Recipients may include:

  • Registered healthcare professionals
  • Partner pharmacies
  • Diagnostic laboratories
  • Identity verification providers
  • Courier and delivery companies
  • Payment providers
  • Cloud hosting providers
  • Customer support providers
  • Regulatory authorities where legally required
  • Professional advisers

We never sell your personal information.

Third-Party Service Providers

Depending upon the service provided, we may use trusted providers including:

  • AWS
  • Shopify
  • Stripe
  • Recharge
  • ComplyCube
  • Royal Mail
  • DPD
  • Omnisend
  • Zendesk
  • Google Analytics


Each provider processes data under contractual safeguards where required.

International Transfers

Where personal information is transferred outside the United Kingdom, we ensure appropriate
safeguards are in place, including:

  • UK International Data Transfer Agreements
  • Adequacy Regulations
  • Standard Contractual Clauses
  • Equivalent legal protections

Data Security

We implement appropriate technical and organisational measures to protect personal information
including:

  • Encryption in transit
  • Encryption at rest where appropriate
  • Multi-factor authentication
  • Role-based access controls
  • Audit logging
  • Regular security monitoring
  • Secure backups
  • Vulnerability management
  • Staff confidentiality obligations


No online system can ever guarantee absolute security, but we take appropriate steps to protect your
information.

Data Retention

We retain information only for as long as necessary.

Retention periods vary depending on:

  • Legal obligations
  • Regulatory requirements
  • Healthcare record requirements
  • Contractual obligations
  • Legitimate business needs


Where information is no longer required, it is securely deleted or anonymised.

Your Rights

You have the right to:

  • Access your personal information
  • Correct inaccurate information
  • Request deletion where applicable
  • Restrict processing
  • Object to processing
  • Withdraw consent
  • Request data portability
  • Lodge a complaint with the Information Commissioner's Office (ICO)


Not all rights apply in every circumstance, particularly where healthcare legislation requires records to
be retained.

Marketing Communications

Where permitted by law, we may send information about our products or services.

You may opt out of marketing communications at any time by:

  • Clicking the unsubscribe link in emails
  • Updating your account preferences
  • Contacting us directly

Service-related communications relating to your healthcare or prescriptions will still be sent where
necessary.

Cookies

Our website uses cookies and similar technologies.


For more information, please see our Cookie Policy.

Children's Privacy

LoopRX services are intended for adults aged 18 years and over unless otherwise specified.

We do not knowingly collect information from children without appropriate legal authority.

Automated Decision Making

Some aspects of our platform may use automated processes to assist with workflow management and
clinical administration.

Final prescribing decisions are made by appropriately qualified healthcare professionals.

Changes to this Privacy Policy

We may update this Privacy Policy from time to time.

The latest version will always be available on our website with the revised effective date.

Contacting Us

If you have any questions about this Privacy Policy or your personal information, please contact:

Privacy Officer

Utilise Marketing Group Ltd

Email: privacy@looprx.co.uk

Website: www.looprx.co.uk

Information Commissioner's Office

If you are unhappy with how we have handled your personal information, you have the right to
complain to the Information Commissioner's Office (ICO).

Website: https://ico.org.uk

Telephone: 0303 123 1113

Ready to close the loop?

If you're running a private prescription operation and you're still holding the stack together yourself, we'd like to show you what LoopRX does in practice.

Book a chat
Book a demo
Privacy PolicyTerms of ServiceCookie Policy
Brand and website by Utilise Social.