Please select a language
and delivery country
This policy explains how we, TestCard.com (which is a trading name of TestCard Ltd (company no. 10764577), use your personal data which you provide to us including when you use our website, www.testcard.com. We take our responsibilities for managing your personal data seriously and we have tried in this document to explain how we collect your personal information and what we do with it.
When we say your “personal data” or "personal information" we mean any information that identifies you as a person. You can read more information about how we process your personal information by clicking on the various sections below.
Collecting your personal data – our relationship with you
What we do with your personal information
Sharing your personal information with third parties
Cookies – what are they and how do we use them?
Access to your personal data – your rights and contacting us
Retention of Data
Our Security Standards
You may provide us with personal data in one of the following ways:
Examples of the personal data we collect include your name, your email address, contact details. The collection of this personal data is essential to enable us to perform our contract with you and to provide Test Kits and results to you.
One of our team may, in the course of assisting you with a query or when we provide services to you, ask for your consent to use your details for further purposes such as marketing and other promotional activities. When we do this you will be clearly advised and your specific consent will be required before we can use your information for such activities.
We may also gather personal information about you from third parties such as the country you are from, the device you used to visit our website (including IP addresses) and what pages you like to look at online. We do our best to ensure that the businesses that provide us with this information do so lawfully and have obtained your consent to do this.
All of your payment information is collected, processed and stored by our chosen payment processor, Stripe. We do not hold your payment details. You can find more information about how Stripe manage your data here.
There are certain scenarios where we may have to share your personal information with other parties and examples of these scenarios are set out below:
Personal information may also be collected automatically using cookies. Cookies are small files that are automatically saved to your device as a result of the websites you visit. Cookies track, save and store information. Cookies may enable us or a third party to recognise you and make your next visit easier, and our services more useful to you, by giving you tailored options based on the information that has been stored from your last visit. Cookies are widely used in order to make websites work, or work more efficiently, as well as to provide information to the owners of the web site.
Access to the personal data we hold on you:You have the right to ask us for a copy of the personal information we hold on you, a “subject access request”. There is no fee for this. However, requesting subsequent copies of such information within an unreasonably short period may be chargeable.
Right to rectify or erase your personal data: You also have the right to have any inaccuracies corrected or removed and in certain circumstances you may ask us to erase your personal data. If you would like us to erase the personal data we hold about you, please get in touch specifying why you would like us to do so.
Right to withdraw consent: If you have given us consent to use your personal details you may withdraw this consent at any time by emailing us – email@example.com.
Right to limit processing your data: You may also instruct us to cease processing your data if no longer relevant, or if there are no other legal or contractual obligations for us to do so.
You also have the right to make a complaint about our data processing activities to the Information Commissioner’s Office. Further details can be found at https://ico.org.uk.
We hold your personal data only for as long as is necessary for the specified purpose. Once you have closed your account with us we will delete all of the personal information that we hold on you apart from your name and email address which we will hold on our marketing database if you agreed to receive news and other marketing from us. You may unsubscribe to any of our marketing emails at anytime which will in turn delete all your personal information. We will also keep invoicing and other accounting records which are necessary to satisfy HMRC. Results generated from the testcards will be retained in an anonymised state for the purposes of improving our analytical algorithms, epidemiology, and will remain in the ownership of TestCard Ltd.
Data produced in the support of a Clinical Trial will be retained for a minimum of 10 years post completion of the trial.
We use standard SSL encryption throughout our business. Data on the website is only accessed through encrypted SSL. All orders placed with us for a Test Kit are given an encrypted reference number during the order process in order to enhance the security of our ordering process.
All personal information that you provide to us or that we collect is stored on our secure servers which are located within the EU. We promise that we will do our best to ensure that your personal information is treated securely.
We have appropriate security measures in place (such as encrypted passwords) to protect your personal information from being accidentally lost, used or accessed by someone who does not have permission to access it. We only give access to your personal information to people who need to access it in order to carry out their job such as our website admins. They will only use your personal information in the way we tell them to and they undertake to keep it secret.
We have procedures to deal with any suspected breaches of personal information and if the law requires us to, we will tell you (and any regulator) if there has been a breach.
Our website may include links to other websites, plug-ins and apps which we do not own or control. If you click on those links, activate the plug-ins or apps, (for example if you click on link to share our content to your Facebook, Twitter, OK, VK or Google Plus account, or choose to post a comment through your WordPress, Facebook, Google Plus or Twitter account) you may allow third parties to collect or share information about you. Because we do not control these other websites, we are not responsible for their privacy notices or how they will handle your personal information. When you leave our website, we strongly suggest that you read the privacy notice of every website that you visit.
(Last updated November 2019)