EasyMeds – Privacy Policy
Effective Date: September 1, 2025
1. Introduction
“EasyMeds” (“EasyMeds Health,” “we,” “us,” or “our”), is a brand operated by Groove Health Limited, a company incorporated in Jamaica. Throughout this document, references to “EasyMeds,” “EasyMeds Health,” “we,” “us,” or “our” refer to Groove Health Limited, trading under the brand name EasyMeds.
We provide an online telemedicine platform where Jamaican residents can receive online doctor consultations and order prescription medications and treatments delivered in discreet packaging to their homes. We value your privacy and are committed to protecting your personal data under Jamaica’s Data Protection Act, 2020 (“DPA”) and its regulations.
2. Definitions
- Personal Data: Any information relating to an identified or identifiable individual. Includes medical, contact, payment, and behavioral data.
- Sensitive Personal Data: Means certain sensitive data which includes Health-related and biometric data, among others, which enjoy additional protection under the DPA.
- Data Controller / Processor: EasyMeds determines the purposes and means of processing (thereby acting as data controller), while third-party service providers may act as processors.
3. Lawful Basis & Consent
We process your data only where there is a lawful basis—typically, your explicit, informed, freely given, specific, and unambiguous consent, or as necessary for contract fulfillment or medical services. Consent must not be a condition to receive services beyond what is reasonably required.
4. What We Collect & Why
- Consultation Data: Medical history, symptoms, prescriptions—for diagnosis and treatment.
- Account Information: Name, contact, shipping address—for deliveries and communications.
- Payment Details: Transaction information—for order fulfillment and billing.
- Technical & Usage Data: Device/browser, IP address—for improving platform reliability and security.
We collect only what’s adequate, relevant, limited to purpose, and not excessive.
5. How We Use Your Data
We use Personal Data to:
- Provide telehealth consultations and deliver medications.
- Process payments and manage your account.
- Communicate service updates or important health notices (with your consent).
- Improve our services and maintain platform security.
6. Data Retention
We retain data only as long as necessary for its purpose, or as required by law. Retention periods (e.g., medical and shipping records) will be clearly stated. After expiry, data will be securely deleted or anonymized.
7. Your Rights
Under Jamaican law, you have the right to:
- Access your data.
- Request correction, erasure, or restriction of processing.
- Withdraw consent at any time.
- Object to processing, especially for marketing.
- Data portability, where applicable.
Any other rights provided for under the Data Protection Act. You may exercise these rights by contacting
EasyMeds Data Protection Officer
Groove Health Limited (trading as EasyMeds Health)
Unit 3, Montego Freeport Shopping Centre,
Montego Bay, St. James, Jamaica
Email: hello@easymedsja.com
Phone: 876-575-9890
8. Data Transfers
We may transfer your data outside Jamaica to the United States or other locations with equivalent data protections to the DPA, once:
- You have given explicit consent, or
- Adequate safeguards (e.g., contractual clauses) are in place, or
- It’s necessary for contract performance or legal claims.
Third-Party Service Providers
Where we engage third-party service providers (including payment processors, telehealth technology providers, pharmacies, and logistics partners), we require contractual assurances that they implement appropriate technical and organizational safeguards, comply with applicable data protection laws, and process personal data only on our documented instructions. We conduct due diligence and ongoing oversight consistent with our Information Security Policy.
9. Security Measures
We follow technical and organizational safeguards—like encryption, access controls, and staff training—to protect your data from unauthorized access, loss, or alteration.
Additional Security Safeguards
In accordance with our internal Information Security Policy and applicable industry standards, EasyMeds implements role-based access controls, least-privilege permissions, encryption of sensitive data in transit and at rest, audit logging, vulnerability management, and incident response procedures. Access to health, payment, and account data is restricted to authorized personnel with a legitimate business need, and all staff receive regular security and privacy training.
10. Breach Notification & Incident Response
EasyMeds maintains documented incident response and escalation procedures designed to promptly identify, contain, investigate, and remediate data security incidents. In the event of a personal data breach, we will notify the Office of the Information Commissioner within 72 hours of becoming aware of the breach, and affected individuals without undue delay where there is a high risk to their rights and freedoms, in accordance with the Data Protection Act, 2020. We may also notify relevant partners or authorities where legally required
11. Direct Marketing
We will only use your data for marketing with your explicit opt-in consent. You will have a clear, free option to opt-out in every communication.
12. Data Controller Registration & DPO
EasyMeds is registered with the Information Commissioner, as required by Jamaican law. We have appointed a Data Protection Officer (DPO) to oversee compliance and manage data-subject requests.
13. Children’s Data
If we collect data from minors, we require parental or guardian consent. We do not knowingly process data of minors without proper authorization.
14. Updates to This Policy
We may update this policy to reflect legal changes, service enhancements, or operational decisions. Changes will be posted with an updated effective date.
15. Contact Information
For questions, requests, or complaints, please contact:
Data Protection Officer
Groove Health Limited (trading as EasyMeds Health)
Unit 3, Montego Freeport Shopping Centre,
Montego Bay, St. James, Jamaica
Email: hello@easymedsja.com
Phone: 876-575-9890
You also have the right to lodge a complaint with the Office of the Information Commissioner.