1. Our Commitment

JunnieGreen Pharmacy is committed to protecting the confidentiality, integrity, and availability of all information entrusted to us. As a healthcare provider handling patient records, consultation information, loyalty programme data, and pharmacy transactions, we recognise the importance of maintaining strong information security practices.

2. Purpose

This Information Security Policy outlines the measures we take to protect personal, medical, operational, and business information against unauthorized access, disclosure, alteration, loss, misuse, or destruction.

3. Scope

This policy applies to all JunnieGreen Pharmacy services, including:

• Physical Pharmacy Operations
• TelePharm Services
• Medical Consultations
• Mobile Pharmacy Units
• CareMint Loyalty Programme
• Online Wellness & Product Store
• Website and Digital Platforms
• Customer Support Services

4. Information We Protect

We implement safeguards to protect:

• Patient Health Information
• Personal Information
• CareMint Account Data
• Prescription Records
• Consultation Records
• Payment Information
• Employee Information
• Business and Operational Information

5. Security Measures

To protect information, JunnieGreen Pharmacy implements reasonable technical, administrative, and physical safeguards including:

• Secure data storage systems.
• Role-based access controls.
• Password protection measures.
• Restricted access to sensitive information.
• Secure communication channels.
• Routine system monitoring.
• Data backup procedures.
• Staff confidentiality obligations.

6. Access Control

Access to personal and medical information is limited to authorised personnel who require such access to perform their job responsibilities. Employees and contractors are expected to maintain confidentiality at all times.

7. Employee Responsibilities

All personnel working with JunnieGreen Pharmacy are required to:

• Protect confidential information.
• Use secure passwords and authentication methods.
• Report suspected security incidents promptly.
• Comply with applicable privacy and security requirements.
• Follow approved information handling procedures.

8. User Responsibilities

Users of our services are encouraged to:

• Protect their account credentials.
• Avoid sharing passwords.
• Use secure devices when accessing our services.
• Report suspicious activity immediately.
• Provide accurate information during consultations and transactions.

9. Data Retention and Disposal

Information is retained only for as long as necessary to fulfil healthcare, operational, legal, and regulatory requirements. When information is no longer required, it is securely deleted, destroyed, or anonymised where appropriate.

10. Incident Response

In the event of a suspected security incident, JunnieGreen Pharmacy will:

• Investigate the incident promptly.
• Contain and mitigate risks.
• Restore affected systems where necessary.
• Implement corrective measures.
• Notify affected individuals or authorities where legally required.

11. Third-Party Service Providers

Where third-party providers support our operations, we take reasonable steps to ensure they maintain appropriate security standards consistent with the protection of healthcare and personal information.

12. Continuous Improvement

Information security is an ongoing responsibility. We regularly review our policies, procedures, technologies, and practices to strengthen our security posture and adapt to emerging threats.

13. Compliance

JunnieGreen Pharmacy seeks to comply with applicable laws, regulations, and industry standards relating to privacy, healthcare information management, and data protection.

14. Contact Us

Questions regarding this Information Security Policy may be directed to:

JunnieGreen Pharmacy
Email: junniegreenpharm@gmail.com
Phone: +234 708 860 5357