B2B privacy policy
Last updated: 14 May 2026
1. Introduction
Aqlios Primary Care (“we”, “us”, “our”) is committed to protecting your privacy and handling personal information lawfully, transparently, and securely.
This Privacy Policy explains how we collect, use, store, and protect personal data through our website and related business communications.
Our website is intended for professional and corporate audiences, including GP partners, practice managers, Primary Care Networks (PCNs), Integrated Care Boards (ICBs), NHS commissioners, and other organisations involved in primary care delivery and commissioning.
We do not provide direct clinical services to patients through this website and do not process patient medical records or clinical data via this platform.
By using our website, you agree to the terms outlined in this Privacy Policy.
Data controller information
Data controller:
Aqlios Primary Care
28 City Road
London
United Kingdom
EC1V 2NX
Email: primarycare@aqlios.co.uk
Please note that third-party websites linked from our website are not covered by this Privacy Policy.
2. Information we collect
2.1 Information you provide directly
We may collect professional and business contact information when you:
- Submit an enquiry through our website
- Contact us by email or telephone
- Request information about our services
- Engage with us regarding partnership, acquisition, commissioning, or consultancy opportunities
- Register for events, updates, or newsletters
This information may include:
- Name
- Job title
- Organisation or practice name
- Business email address
- Telephone number
- Professional correspondence and enquiry details
We do not intentionally collect special category personal data through this website.
2.2 Information collected automatically
We do not intentionally collect special category personal data through this website.
- IP address
- Browser type and device identifiers
- Pages visited and navigation behaviour
- Date, time, and duration of visits
- Website performance and analytics data
- Cookie and preference data
This information helps us maintain website security, improve functionality, and understand how our website is used.
3. How we use your information
We process personal data only where there is a lawful basis to do so under the UK GDPR.
Our lawful bases for processing include:
- Legitimate Interests – to operate and improve our business, respond to professional enquiries, develop partnerships, and communicate with organisations involved in primary care delivery and commissioning.
- Consent – where you have opted in to receive marketing communications or newsletters.
- Legal Obligations – where processing is necessary to comply with applicable laws or regulatory requirements.
We may use your information to:
- Respond to enquiries and business correspondence
- Provide information about our services and projects
- Manage professional relationships and partnership discussions
- Support procurement, commissioning, acquisition, and consultancy activity
- Improve website functionality and user experience
- Monitor website performance and security
- Maintain internal business records
- Send relevant industry updates or communications where appropriate
We do not sell personal data to third parties.
4. Cookies
Our website uses cookies and similar technologies to:
- Ensure website functionality and security
- Analyse website traffic and usage patterns
- Remember user preferences
- Support website performance improvements
- Deliver relevant communications or content where consent has been provided
You can control or disable cookies through your browser settings. However, some parts of the website may not function correctly if cookies are disabled.
5. Sharing your information
We may share personal data with trusted third-party providers who support our business operations, including:
- IT and website hosting providers
- Analytics and website performance providers
- Professional advisers and consultants
- Marketing and communications platforms
- Regulatory or legal authorities where required
All third parties processing personal data on our behalf are required to:
- Maintain appropriate confidentiality and security measures
- Process data only in accordance with our instructions
- Comply with UK data protection legislation
Where data is transferred outside the United Kingdom, we will ensure appropriate safeguards are in place in accordance with UK GDPR requirements.
6. Data retention
We retain personal data only for as long as necessary for the purposes for which it was collected, including legal, regulatory, operational, and contractual requirements.
Typically:
- Professional enquiry and correspondence data is retained for up to six years
- Marketing preferences are retained until consent is withdrawn
- Website analytics data is retained for a limited period appropriate to business and security purposes
Data that is no longer required is securely deleted or anonymised where appropriate.
7. Data security
We implement appropriate technical and organisational measures to protect personal data, including:
- Secure hosting infrastructure
- Encryption and secure transmission protocols
- Access controls and authentication measures
- Regular monitoring and security updates
- Staff awareness and confidentiality obligations
While we take reasonable steps to protect information, no online transmission or storage system can be guaranteed to be completely secure.
8. Your rights
Under UK data protection law, you have rights in relation to your personal data, including the right to:
- Access your personal information
- Request correction of inaccurate data
- Request deletion of data in certain circumstances
- Restrict or object to processing
- Withdraw consent where processing relies on consent
- Request transfer of your data to another organisation
To exercise your rights, please contact:
primarycare@aqlios.co.uk
We will respond to requests in accordance with applicable data protection legislation.
You also have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO) if you believe your data has been handled improperly.
9. Changes to this policy
We may update this Privacy Policy from time to time to reflect changes in legal requirements, business operations, or website functionality.
Any updates will be published on this page with a revised “Last Updated” date.