You should know what happens with your personal data when you use RedBoxRX. This page explains, in plain words, what we collect, why we collect it, how long we keep it, and how you can control it. No legal fluff — just the facts you need to feel secure.
We collect only what we need to run the site and deliver useful content: contact details when you reach out, account info if you create one, and usage data like pages visited and basic device info. We also use cookies to improve the site, remember preferences, and show relevant content. Our lawful reasons for processing are clear: to perform services you request, to meet legal obligations, and sometimes for our legitimate interest in running a safe, useful website. If we rely on consent, we’ll ask clearly and let you refuse or withdraw it anytime.
Examples: if you sign up for updates, we use your email to send newsletters. If you request medical content or support, we use the info you give to respond. We never collect extra health details unless you explicitly provide them for a specific purpose.
Under GDPR you have rights you can use right now. You can ask to see the data we hold about you (access). You can ask us to correct wrong data (rectification). You can ask us to delete data (erasure), to limit how we use it (restriction), to move it elsewhere (portability), or to object to certain uses like direct marketing. If we process based on consent, you can withdraw consent any time without penalty.
To act on any right, email our team at the contact address on our Contact Us page or use the site form. Tell us what you want, include enough detail to find your records, and we’ll respond within one month. If your request is complex we’ll tell you and may extend the deadline with an explanation. If you disagree with our answer, you can complain to your local data protection authority.
We work with trusted service providers (hosts, analytics, email tools). They’re bound by contracts that limit how they use your data. If data leaves the EEA, we use approved safeguards like standard contractual clauses or only transfer to countries with adequate protections.
We protect data with technical and organizational measures: encrypted connections, role-based access, regular backups, and staff training. We keep data only as long as needed — for example, transactional records are kept for legal or tax periods, while marketing lists are kept until you unsubscribe.
If our GDPR framework changes, we’ll update this page and notify users when a change affects how we handle personal data. Questions or requests? Visit our Contact Us page or use the contact email provided there. We aim to be fast, clear, and fair with every request.
May, 20 2025