Distributor login
Find a distributor

Keeler Privacy Policy

Introduction

Keeler Ltd (“Keeler,” “we,” “us,” or “our”) respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you use our websites. We process personal data in compliance with UK data privacy laws including UK GDPR (based on the General Data Protection Regulation (GDPR)) and Data Protection Act 2018, and other privacy laws that apply to our processing of personal data.  

This Privacy Policy applies to all Keeler websites, including:  

Due to the way we manage our business, it is possible your information may be processed outside the UK. If this is the case, we will always make sure the processing meets the strict criteria set out in UK data protection law. As such, if an adequacy regulation does not apply to the country where your data is processed, we will ensure an appropriate safeguard is in place such as standard contract clauses, and if required, carry out a transfer risk assessment.  

By accessing or using any Keeler website, you agree to the terms outlined in this Privacy Policy.  

What data we collect

Keeler collects personal data from individuals through various means, including direct interactions, automated technologies, and third-party sources. The types of personal data we collect includes, but is not limited to:  

  1. Contact and identity data – such as your name, job title, business/organisation details, email address, geographical location, and phone number.  
  2. Website technical data – including your Internet Protocol (IP) address, device identifiers, browser type, operating system, cookie IDs, and website interaction details.  
  3. Website usage information – such as time, date, and duration of website visits, and engagement with content and services.  
  4. Financial data – relating to payments, transactions, and credit history.  
  5. Marketing and communications data – including your preferences regarding marketing communications.  

Keeler may also collect anonymised data to analyse trends and improve website functionality.  

How we collect your data 

We obtain your data through the following methods:  

  • Directly from you – when you provide it via completing forms, account creation, orders, or direct communication. 
  • Automated technologies – when you interact with our websites, cookies and similar tracking technologies collect usage data.  
  • Third-party sources – including distributor or service partners, promotional partners, agencies, events or publicly available sources.  
  • Your organisation or employer – when they share data for business purposes.  

Why we collect data and how we use it 

We process personal data for the following purposes:  

  • Providing services – to respond to enquiries, complete transactions, and deliver customer support.  
  • Fulfilling contractual obligations – ensuring the provision of goods and services. 
  • Improving user experience – optimising website functionality and security.  
  • Marketing and advertising – including, but not limited to, targeted advertising campaigns via email, social media (Meta, Google, LinkedIn), and direct mail marketing.  
  • Market research and analytics – to assess trends and enhance products/services. 
  • Identifying potential customers – through data analysis and profiling.  

As part of our compliance with the Drug Supply Chain Security Act (DSCSA) in the United States, we collect and process information from our customers of our pharmaceutical supplies to ensure the integrity, safety, and security of the pharmaceutical supply chain. Data provided through the DSCSA customer portal may be shared with relevant third parties, including regulatory authorities and business partners, where necessary to fulfil legal, regulatory, and operational requirements.  

When processing personal data, we ensure compliance with GDPR by:  

  • Collecting only the necessary information.  
  • Implementing security measures to protect personal data. 
  • Limiting data sharing to trusted entities.  
  • Retaining data only as long as required.  

Our lawful basis for processing

We must have a lawful basis for processing your personal data; this will vary on the circumstances of how and why we have your personal data. 

We may process your personal data by relying on the following lawful bases: 

  • when you have given us consent to process your personal data for one or more specific purposes 
  • to perform a contract we are about to enter into or have entered into with you 
  • to comply with a legal obligation (e.g., providing information to governmental or regulatory bodies)
  • when it is for our legitimate interests and your rights do not override those interests (e.g., to send you information about our products and services, to make our services more efficient, to develop our product offerings or to carry out fraud prevention activities). 

Cookies and targeted advertising 

Keeler uses cookies and similar tracking technologies to enhance user experience, analyse website traffic, and deliver relevant advertising. We categorise cookies as:  

  • Strictly necessary cookies – required for essential website functions.  
  • Analytical/performance cookies – used for improving website functionality.  
  • Functionality cookies – used to remember preferences.  
  • Targeting cookies – used to track browsing behaviour and enable targeted advertising.  

Users can manage cookie settings via their web browser on each webpage by accepting/rejecting and choosing preferences. Disabling cookies may impact website functionality.  

For targeted advertising, Keeler partners with third-party networks to display relevant ads based on browsing activity. You may opt out of targeted ads via Google Ad Settings.  

Sharing your data 

We may share your personal data with trusted third parties for business operations, including:  

  • Marketing and communication partners – such as Mailchimp for email campaigns (which you can unsubscribe from at any time by contacting us or clicking the unsubscribe link within the email), paid social media platforms for targeted ads and agencies for direct mail campaigns.  
  • Business service providers – including distributors, servicing partners, shipping providers and website agencies. 
    General enquiries submitted to Keeler may be shared with our authorised distributor partners to facilitate a timely response and ensure efficient service. If you prefer to be contacted directly by Keeler rather than a distributor partner, please indicate this preference in the contact form or notify us through an alternative method.  
  • Analytics and technical services – including Google Analytics for usage analysis. You can opt out via Google Analytics Opt-out and by selecting which cookies are in use 

Data shared is limited to what is necessary, and we ensure strict security measures are in place. We always carry out due diligence against all our third-party suppliers for the purposes of ensuring their compliance with data protection, maintaining adequate security of your data and ensuring they apply adequate data protection principles to the processing of the data we supply. We also make sure a legally binding contract (sometimes called a Data Processing Agreement or DPA) is also in place to protect your data. 

In some cases we maybe required by law to share your information. In such instances we will ensure it is lawful for us to do so. 

Security of your data

Keeler takes appropriate measures to protect your personal information from accidental loss, unauthorised access, use, alteration, and disclosure. However, the security of your data also depends on you. If you have been provided with, or have chosen, a password to access certain parts of our Websites, you are responsible for keeping it confidential. Please do not share your password with anyone.  

While we take all reasonable steps to protect your personal data, we cannot guarantee the security of information transmitted to our Websites. Any transmission is at your own risk. Keeler is not responsible if privacy settings or security measures on the Websites are bypassed by unauthorised parties.  

How we protect your data:  

  • Storing personal data securely using modern software and, if stored on paper, in locked drawers or filing cabinets.  
  • Access to personal data is strictly limited to authorised personnel, with security measures in place to prevent unauthorised sharing.  
  • When personal data is deleted, we ensure it is done securely and irreversibly.  
  • We maintain back-up and disaster recovery solutions to restore data if needed.  
  • We implement technical and organisational security measures to prevent data loss or misuse, storing data in a secure, non-public operating environment.  
  • Personal data transmitted online is encrypted using Secure Socket Layer (SSL) technology.  

Data retention 

We retain your personal data only as long as necessary for operational and legal purposes. Retention periods are reviewed periodically, and data is securely deleted when no longer needed. Certain data may be retained for legal compliance (e.g., tax, accounting obligations).  

Your rights 

Depending on your location, you may have the following rights regarding your personal data:  

  • Right to access – request copies of your personal data.  
  • Right to correction – correct inaccurate data.  
  • Right to erasure – request deletion of your data.  
  • Right to restrict processing – limit data processing under certain circumstances.  
  • Right to data portability – request automatic transfer of your data where possible, or to receive a machines readable extract of your personal data.  
  • Right to object – object to certain types of processing.  
  • Right to withdraw consent – opt out of marketing communications.  
  • Right to lodge a complaint – with the Information Commissioner’s Office (ICO) or other applicable data protection authority.  

To exercise these rights, please contact us at privacy@keelerusa.com.  

International data transfers 

As a global company, we may transfer personal data between our offices and service providers in the UK, EU, US, India, China, Spain, and other locations. We ensure that any such transfers comply with GDPR and other regulations by using Standard Contractual Clauses (SCCs), relying on adequacy decisions, or implementing other appropriate safeguards 

Special category data 

Some Keeler products store health-related data, classified as sensitive personal data under GDPR. We process such data only under a valid legal basis and apply enhanced security measures.  

Third-party links 

Our websites may contain links to third-party sites. This Privacy Policy applies only to Keeler-operated websites. We recommend reviewing third-party privacy policies before submitting personal data.  

Data breach response 

In the event of a data breach leading to unauthorised access or loss of personal data, Keeler will assess risks and notify relevant authorities, including the ICO, where required.

Updates to this privacy policy 

Keeler reserves the right to update this Privacy Policy at any time. We encourage you to review this page regularly to stay informed. We will notify you of any significant changes to this policy which may affect your data protection rights and protections. 

Last updated: March 2025

Contact information 

For any privacy-related inquiries or requests, contact our Data Protection Officer:  

Keeler Ltd  

Clewer Hill Road, Windsor, Berkshire, SL4 4AA, United Kingdom  

Email: privacy@keelerusa.com  

If you wish to access, update, or delete your personal data, please contact us directly.  

Claim your offer