Privacy Policy

As you may be aware, Data Protection laws are changing from May 25th 2018 with the introduction of GDPR (General Data Protection Regulation).

At Tonic Consultancy, we are committed to maintaining the trust and confidence of our clients. As such, we wish to remind you of the control you have over your personal information held by us. We have updated our Privacy Policy which details when and why we collect your personal information, how we use it, the limited conditions under which we may disclose it to others and how we keep it secure.

What is GDPR?

The introduction of GDPR introduces a legal framework that sets guidelines for the collection and processing or personal information of individuals within the European Union. It aims to improve your privacy and give you greater control over your personal data and how it is collected, processed and stored.


Tonic Consultancy Ltd is a company limited by shares and is registered within the Republic of Ireland at the following registered address:

Unit 3,

Site 29/31,

Duleek Business Park,


Co. Meath

We specialise in providing consultancy and business services to pharmacy clients. Further information about us can be found at


Personal data is defined by the General Data Protection Regulation (EU Regulation 2016/679) as ‘any information relating to an identifiable person who can be directly or indirectly identified in particular by reference to an identifier’. This, in turn, covers any data held which may enable a person to be identified.


We use your data where this use is necessary in order to provide a service or because you have requested for something to be done so that you can enter into a contract with us (eg: provide information to us in order to receive a quotation/service proposal).

We also retain data where necessary due to regulatory requirements or in our legitimate business interests.


Compare your Claims Cloud

Epic Learnupon Training Platform

Claims Consultancy

General Consultancy including Investigations


We retain personal data such as names, addresses, phone numbers and email addresses along with details of correspondence in order to maintain customer accounts and manage invoicing and payment transactions.


We may in some instances share data with our carefully selected suppliers and service providers to enable us to carry out our services. Examples of this include our helpdesk/call answering service provider and back up, IT and data extraction service providers. We will only share your details where necessary to carry out our service or legal/regulatory requirements and will only do so to GDPR compliant organisations.

We do not sell or rent customer mailing lists, data or other information we may come into contact with whilst providing a service.

  • We may share your data in the case that we are under a duty to disclose or share information. This may be in order for us to comply with any legal obligations or to protect our rights, property or the safety or our employees, customers or others.



We collect information in order to provide services requested of us.

This information may include:

General Customer Information

  • Customer E-mail
  • Customer name
  • Customer address
  • Customer phone number

Compare your Claims Cloud

  • Financial data for comparison purposes
  • GMS number
    • N.B. We do not extract or store any patient names or addresses.

Epic Learnupon

  • User e-mail address
  • User name
  • User activity necessary for provision of service

Claims Consultancy

  • Financial data relevant to service provided
  • Summary reports of result of service

General Consultancy including Investigations

  • Case file for criminal investigation purposes including:
    • Staff file details
    • CCTV footage
    • Relevant evidentiary documents
  • Sales data for category management or business consultancy services


On visiting, we may use a third party service, such as Google Analytics, to collect standard internet log information and details of visitor behaviour patterns. This is done in order to access information such as the number of visitors to the various parts of the site. This information is only processed in a way which does not identify anyone. We do not make, and do not allow Google to make, any attempt to find out the identities of those visiting our website.


Cookies are only utilised when strictly necessary to provide the agreed contracted services with our customers and only for the duration of a user’s session.

Cookies used

User-input – this allows changes made by users to be saved

Authentication – this allows the identity of a user to be confirmed

Additional cookie usage information:

  • We do not utilise trackers
  • We do not store any personal information inside the cookies
  • We don’t share cookies with any 3rd party
  • Our data extraction agents do not utilise cookies

If a customer wishes to opt out of use of cookies they can do so by request. However cookies are necessary for the smooth running and in some cases the access and operation of our online services.


We will not retain personal data for longer than is necessary for the purposes for which it was collected and in order to meet the legal and business requirements of managing your customer account.

  • We will retain personal data that is necessary for us to provide you with a service for a period of 5 years. This is to allow us to provide follow on services as requested.
  • We will retain records of any financial transactions you enter into with us for a period of 7 years following the end of the year of said transaction.
  • We will retain other personal data as necessary for as long as required in order for us to meet our legal and regulatory requirements.
  • We will retain information in connection to an unsuccessful quotation/proposal for a period of 2 years from the date of quotation/proposal.
  • We will retain recruitment related data for a period of 1 year for unsuccessful candidates.
  • We will retain documentation relevant to services provided to customers for a period of 5 years.


Under the GDPR, you have a number of rights regarding how your personal data is processed. There rights are summarised below:

Right of Access:

You have the right to access and receive a copy of personal information held by Tonic Consultancy. This may be requested via written request or via email, details for which can be found below.

You may have the right to change, restrict or delete personal data that we hold. Exception to this may be where data is required to be held for legal or regulatory reasons.

You may object to the processing of your personal data after providing consent for same. In this case, please contact us in writing or via email and data will be deleted as requested. Exception to this will be instances where data is required to be held for legal or regulatory reasons.

The above requests will be processed within 2 working days of request receipt.

How to contact us:

Tonic Consultancy

Unit 3, Site 29/31,

Duleek Business Park,


Co. Meath.


  • Tonic Consultancy Ltd
  • Unit 3
  • Site 29-31
  • Duleek Business Park
  • Duleek
  • Co.Meath
  • Ireland
  • Company Registration No: 492425

Copyright © 2015 Tonic Consultancy