Your privacy is of the highest importance to us and we treat all your personal data as confidential. Mackie Eyecare Ltd of 48 Main Street, Bothwell, G71 8EX are the controller of all personal data collected.
Customer contact commitment
Our simple customer contact commitment is to only ever use your personal data to help you make the most of the products and services we have to offer. The law on data protection sets out a number of different reasons for which Mackie Eyecare and Mackie Specstore t/a Mackie Opticians may collect and process your personal data, including:

  • Contractual obligations: For example, if you order spectacles or contact lenses from us for collection or home delivery we’ll collect your address details to deliver your purchaseand pass them to our courier.
  • Legitimate interest: For example, we will use your personal data to send you our Eyecare reminders and Eyecare newsletter each year, this includes updates on the products and services that we think might be relevant as well as clinical articles. 

When and how we collect your personal data

  • When you visit our website and book in for appointments online.
  • When you become a patient with us.
  • When you buy a product or service from us.
  • When you contact us by any means with queries, complaints etc.
  • When you ask us to email you information about a product or service.
  • When you enter prize draws or competitions. 

What sort of personal data we collect
If you have an online account with us: your name, billing/delivery address, orders and receipts, email, telephone number and payment information.  If you have made an enquiry we may have your name, email address, telephone number and postal address.
How we protect your personal data
We realise how important it is to securely store any information that you provide, and we maintain the highest levels of security. Our site uses high-level SSL encryption technology, the most advanced security software currently available for online transactions.
Who we might share your personal data with
To serve you most efficiently, we may on occasions share your personal data with a trusted third party such as a mailing house in order to issue communications such as our Eyecare newsletter, the NHS where there is a requirement to refer you to a hospital for further treatment, or a courier so that we can deliver an order to you. When someone visits we use a third-party service called XeyeX to collect internet log information for booking eye examinations.
As part of the registration process for our emails, we collect personal data. We use that data for a couple of reasons: to tell you about products and services you’ve asked us to tell you about; to contact you if we need to obtain or provide additional information; to check our records are accurate and to check every now and then that you’re happy and satisfied.
We use a third-party provider, XeyeX, to deliver communications via email and SMS; including reminders and marketing communications.  You can unsubscribe to marketing communications at any time  by clicking the unsubscribe link at the bottom of any of our emails or by emailing
We use a third-party provider, Paymentsense, to manage all electronic payments.
Assignment Clause: If at any point the business is sold there will be a clause to protect your personal data. The sale of the business would include the sale of your personal data on the terms that it could only be used for the same purpose as it is used now.
International transfers
We do not transfer personal data to any third-party outside of the European Economic Area (EEA).
Data retention
We will retain your patient record for 5 years in accordance with our legal obligations. If you are under 16, we have a legal obligation to retain your record until your 21st birthday, after which your record will be securely destroyed. Any direct debit mandates are only retained for 2 years.
Your rights

Right of access You have the right to obtain confirmation from us as to whether or not personal data concerning you are being processed, and, where that is the case, access to that personal data.
Right to rectification You have the right to oblige us to rectify inaccurate personal data concerning you. Taking into account the purposes of the processing, you have the right to have incomplete personal data completed by providing a supplementary statement.
Right to erasure (right to be forgotten) You have the right (under certain circumstances, but not all) to oblige us to erase personal data concerning you.
Right to restriction of processing You have the right (under certain circumstances, but not all) to oblige us to restrict processing of your personal data. For example, you may request this if you are contesting the accuracy of personal data held about you.
Right to data portability You have the right (under certain circumstances, but not all) to oblige us to provide you with the personal data about you which you have provided to us in a structured, commonly used and machine-readable format.
You also have the right to oblige us to transmit those data to another controller.
Right to withdraw consent If the lawful basis for processing is consent, you have the right to withdraw that consent.
Right to object to direct marketing Where your personal data are processed for direct marketing purposes, you have the right to object at any time to processing of your personal data for marketing, which includes profiling to the extent that it is related to such direct marketing.

Any of these rights can be exercised at any time by contacting us at the above postal address or emailing: Additionally, you have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO) and can do so by contacting them on 0303 123 1113 or at the following postal address:
Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF.
Your security online 
We realise how important it is to securely store any information that you provide. We maintain the highest levels of security. Our site uses high-level SSL encryption technology, the most advanced security software currently available for online transactions. You can therefore rest assured that we take the privacy and security of your payment and personal data very seriously.
You can tell whether a page is secure as ‘https’ will replace the ‘http’ at the front of the in your browser address window. A small locked padlock will also appear in the bottom bar of your browser window.
Phishing is the practice of tricking someone into giving confidential information. Examples include falsely claiming to be a legitimate company when sending an e-mail to a user in an attempt to get the user to send private information that will be used for identity theft and fraud.
We’ll never ask you to send any personal data via email. If we require such details, for security reasons we’ll ask you to contact us by phone.
Cookies are small text files stored on your computer when you visit certain web pages.  You can browse and use our website for research purposes without the use of cookies.
Updates to this Privacy Policy
We may update this Privacy Policy from time to time, when we do, any updates will be made on our website. We encourage you to check back regularly to review any updates that may have been made, however, we will inform you of any significant updates that change the way in which we process personal data.
This Privacy Policy was last updated on 11/06/2018.