Skip to content

Get free help & advice: 0800 592 786

Basket

Privacy policy

Unora Healthcare Ltd (“Unora”, “we”, “us”, “our”) is committed to protecting the privacy and security of your personal information.

This policy explains how we collect, use, and protect personal information when you visit our websites:

www.unora.co.uk

www.oakmed.co.uk (operated by Unora Healthcare Ltd for Oakmed/ Unora products in the UK)

www.goldcare.healthcare (operated by Unora Healthcare Ltd for its home delivery service)

www.trioostomycare.us (operated by Unora Healthcare Ltd for Trio products and services)

www.triostomycare.com (operated by Unora Healthcare Ltd for Trio products and services)

 

This Privacy Policy applies to all users of our websites and related online services in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018 (DPA 2018), and, where applicable, the Data (Use and Access) Act 2025 (DUAA 2025). Where website users are based outside the UK, equivalent local data protection laws may also apply.

For information on how we use cookies and similar technologies, please refer to our separate Cookie Privacy Policy.

 

Data controller details

Unora Healthcare Ltd is the data controller for the personal data you provide when visiting or interacting with Unora, Unora Home Delivery, Goldcare or Trio Ostomy Care websites.

Unora Healthcare Limited
Unit B, The I O Centre
Barn Way
Lodge Farm Industrial Estate
Northampton
NN5 7UW

Freephone: 0800 592 786
Main: 01604 586 529
Email: contact@unora.co.uk

You can contact the Managing Director (contact@Unora.co.uk) with any questions, requests for access to your data, or concerns about how we process your data.

Our Data Protection Officer (DPO) is The DPO Centre Ltd, who can be contacted via the contact@unora.co.uk email address.

 

Data protection principles

In relation to your personal data, we will:

 

  • process it fairly, lawfully and in a clear, transparent way
  • collect for specified, explicit and legitimate purposes
  • only use it in the way that we have told you about
  • ensure it is correct and up to date
  • keep your data for only as long as we need it, and
  • process it in a way that ensures it will not be used for anything that you are not aware of or have consented to (as appropriate), lost or destroyed. 

 

Category and types of data we process

 

We may collect, store, and use the following categories of personal data through our websites:

 

  • Identification details: name, job title, department, organisation, work or home address, postal address, phone number, and email address.

  • Communication data: details from contact forms, emails, telephone conversations, or social media interactions.

  • Technical data: IP address, browser type, device information, operating system, and site usage analytics.

  • Marketing preferences: your consent to receive updates or newsletters.

  • Delivery and event details: information required to provide services, deliver orders, or register you for study days.

  • Special category data (if provided): only where voluntarily submitted (for example, dietary or accessibility needs when attending an event).

 

How we collect your data

 

Your personal data may be collected in several ways, including:

 

  • Directly from you when you contact us, register for updates, or place an order.

  • Automatically through cookies and similar technologies (see our Cookie Privacy Policy).

  • Through service providers supporting our websites and IT systems.

  • From logistics partners delivering products or services.

  • Through call recordings or correspondence monitoring for training, quality assurance, or recordkeeping purposes.

  • From analytics or performance logs to maintain website functionality and detect security issues.

 

Purpose and lawful bases for processing:

 

We use personal data collected through our website to operate effectively, respond to enquiries, provide information about our products and services, and ensure website functionality and security.

Purpose of processing

Lawful basis (Article 6 UK GDPR)

Special Category / Criminal Data Condition (Art. 9 & 10, DPA 2018)

Responding to website enquiries, contact form submissions, or email queries

Article 6(1)(f) – Legitimate interests (to respond to enquiries and manage communication)

N/A

Providing information about our products, services, and updates (where requested)

Art. 6(1)(a) – Consent

N/A

Managing newsletter subscriptions or marketing preferences

Art. 6(1)(a) – Consent

N/A

Operating, maintaining, and improving website functionality, performance, and security (including analytics and system logs)

Article 6(1)(f) – Legitimate interests (to maintain website integrity and detect/prevent security issues)

N/A

Complying with legal or regulatory obligations (e.g., responding to lawful requests or protecting rights)

Art. 6(1)(c) – Legal obligation

N/A

Detecting and preventing fraud, misuse, or unauthorised access to the website

Article 6(1)(f) – Legitimate interests (ensuring network and information security)

N/A

Managing and responding to data subject rights requests (e.g., access, rectification, erasure)

Art. 6(1)(c) – Legal obligation

N/A

Record keeping for compliance, accountability, and dispute resolution purposes

Article 6(1)(c) – Legal obligation

 

Article 6(1)(f) – Legitimate interests (maintaining compliance and defending claims)

N/A

Processing special category data (only if voluntarily submitted via web form, e.g., accessibility needs)

Art. 6(1)(a) – Consent

Article 9(2)(a) – Explicit consent

Law enforcement or legal disclosure (if required)

Art. 6(1)(c) – Legal obligation

Article 10 – Criminal offence data (DPA 2018, Sch. 1 Part 2 para 6)

 

Direct Marketing and Communications

 

From time to time, we may contact you to provide information about new products, services, promotions, or updates that we believe may be of interest to you. These communications may be sent by post, email, digital content or telephone, or delivered through visits from our company representatives.

We will only send marketing communications with your consent or where we are otherwise permitted to do so under data protection and electronic communications laws (for example, when you are an existing customer, and we are promoting similar products or services).

 

You can opt out of receiving marketing communications at any time by:

 

  • Calling us on 01604 586 529
  • Emailing us at contact@unora.co.uk
  • Visiting either of our websites to check for updates
  • We will respect your communication choices and ensure your preferences are updated promptly.

 

Sharing your data:

 

Your data will only be shared where necessary. We may share your data with:

 

  • IT and website service providers;
  • Delivery and logistics companies (e.g., DPD, ParcelForce or Royal Mail)
  • Marketing support partners (e.g., marketing agencies acting under strict data protection terms)
  • Regulatory, legal, or law enforcement bodies (where required by law)

 

We will not sell or share your personal information for marketing purposes.

Our websites may contain links to external websites. We are not responsible for their content or privacy practices, and we encourage you to review their privacy policies.

If we transfer your data outside the UK or EEA, we ensure appropriate safeguards are in place, such as adequacy regulations or Standard Contractual Clauses.

 

Protecting your data

 

We take data security seriously and use a range of technical and organisational measures to protect your data, including:

 

  • Access controls and user authentication
  • Encryption and secure servers
  • Regular system monitoring and security reviews
  • Secure deletion of data when no longer required, and
  • Staff training on confidentiality and data protection

 

How long do we keep your data for

 

We retain personal data only for as long as necessary to fulfil the purposes outlined above, including satisfying legal, accounting, or reporting obligations.

 

  • Enquiry data – up to 12 months
  • Customer data – up to 7 years (in line with legal and financial recordkeeping)
  • Marketing data – until you withdraw consent or unsubscribe
  • Event registration data – up to 12 months post-event (unless required longer by law).

Where users are based in other jurisdictions, retention may also be subject to local legal requirements.

 

Your rights in relation to your data

 

The law on data protection gives you certain rights regarding the data we hold about you. These are:

 

  • The right to be informed. This means that we must tell you how we use your data, and this is the purpose of this privacy policy

  • The right of access. You have the right to access the data that we hold about you. To do so, you can make a subject access request

  • The right to rectification. If any data that we hold about you is incomplete or inaccurate, you can require us to correct it

  • The right to erasure (“right to be forgotten”). If you would like us to stop processing your data, you can request that we delete it from our systems, particularly if you believe there is no longer a valid reason for us to continue processing it and no legal requirement to retain it

  • The right to restrict processing. For example, if you believe the data we hold is incorrect, we will stop processing it (while retaining it) until we have verified its accuracy

  • The right to data portability. You may transfer the data that we hold about you for your own purposes, where technically possible

  • The right to object. You have the right to object to how we use your data when it serves our legitimate interests

  • The right to regulate any automated decision-making and profiling of personal data. You have a right not to be subject to automated decision-making in a way that adversely affects your legal rights

  • The right to withdraw consent. If you have provided us with consent, you have the right to withdraw it. The process for doing so must be easily accessible. The data you provided before withdrawing your consent may still be used if we have a legitimate reason to do so.

  • The right to complain. You have the right to complain to a Supervisory Authority (i.e. the Information Commissioner's Office (ICO) in the UK) if you feel that we have not processed your data in line with data protection principles.

 

If you wish to exercise any of the rights explained above, please contact the Managing Director at contact@unora.co.uk

 

Automated decision making

 

We do not engage in automated decision-making or profiling that has a legal or significant impact on you.

 

Making a complaint

 

If you have any concerns about how we handle your data, please reach out to the Managing Director first so we can address your issues together. If you feel that your concerns have not been adequately addressed, you may also contact the Supervisory Authority.

 

(UK) Information Commissioner’s Office (ICO) contact details:

0303 123 1113

www.ico.org.uk

 

Contact us:

 

Managing Director
Unora Healthcare Ltd
Unit B, The I O Centre
Barn Way
Lodge Farm Industrial Estate
Northampton
NN5 7UW

Main: 01604 586 529
Email: contact@unora.co.uk

 

Our appointed Data Protection Officer (The DPO Centre Ltd) can also be contacted through the same email address for any privacy-related concerns.

To note: We will monitor and update this policy as further provisions of the Data (Use and Access) Act (DUAA) 2025 are commenced to reflect any new statutory obligations.

Version number: 2.0

Last updated: May 2026