Overview
This Acceptable Use Policy ("AUP") sets out the rules for using the Lola Dispatch platform, including the website, dashboard, mobile application, and API. By using Lola Dispatch, you agree to comply with this policy. Violations may result in account suspension or termination.
1. Scope
This policy applies to all users of the Lola Dispatch platform, including:
- Phlebotomists: Healthcare professionals registered on the platform to perform blood collection services
- Clients: Healthcare businesses and organisations that book phlebotomy services through Lola Dispatch
- API users: Developers and systems integrating with Lola Dispatch via our REST API
- Visitors: Anyone accessing the Lola Dispatch website or public-facing pages
2. Permitted Use
Lola Dispatch is designed exclusively for legitimate healthcare purposes. Permitted uses include:
- Booking and managing phlebotomy appointments for patients
- Accepting and fulfilling blood collection job assignments
- Integrating with Lola Dispatch via the API for healthcare service delivery
- Managing client accounts, invoices, and team members
- Communicating with patients, clients, and phlebotomists about appointments
- Uploading and maintaining professional compliance documents (DBS, certifications)
3. Prohibited Conduct
The following activities are strictly prohibited on the Lola Dispatch platform:
Data Misuse
- Accessing, collecting, or using patient data for any purpose other than fulfilling booked appointments
- Sharing patient personal data or health information with unauthorised third parties
- Retaining patient data outside of the Lola Dispatch platform beyond what is necessary for the appointment
- Using personal data obtained through Lola Dispatch for marketing, profiling, or any non-healthcare purpose
Account and Security
- Sharing login credentials or authentication tokens with other individuals
- Creating multiple accounts for the same person or entity
- Attempting to access another user's account or data without authorisation
- Circumventing, disabling, or interfering with security features of the platform
- Attempting to reverse-engineer, decompile, or extract source code from the platform
Content and Behaviour
- Submitting false, misleading, or fraudulent information (including qualifications, DBS status, or job completion data)
- Harassing, threatening, or intimidating other users, patients, or staff
- Posting offensive, discriminatory, or inappropriate content
- Using the platform for any purpose unrelated to healthcare phlebotomy services
Technical Abuse
- Automated scraping, crawling, or data extraction from the platform (use the API instead)
- Uploading malware, viruses, or malicious code
- Conducting denial-of-service attacks or attempting to overwhelm platform infrastructure
- Exploiting vulnerabilities instead of reporting them responsibly
4. API-Specific Rules
If you are using the Lola Dispatch API, the following additional rules apply:
- Rate limits must be respected: API requests are subject to rate limiting. Exceeding documented rate limits may result in temporary or permanent suspension of API access
- API keys must be kept confidential: Treat your API keys as sensitive credentials. Do not embed them in client-side code, public repositories, or share them with unauthorised parties
- Webhook endpoints must use HTTPS: All webhook URLs must use TLS-encrypted HTTPS connections. HTTP endpoints will be rejected
- Bulk operations must not exceed documented limits: Respect pagination limits and batch size restrictions documented in the API reference
- API usage must be for healthcare purposes: The API is provided exclusively for integrating healthcare services with Lola Dispatch. Non-healthcare use is prohibited
For full API documentation and usage guidelines, visit our Developer Portal.
5. Account Suspension and Termination
Violations of this Acceptable Use Policy may result in one or more of the following actions:
- Warning: A formal notice of the violation with a requirement to cease the prohibited activity immediately
- Temporary suspension: Your account and/or API access may be suspended while the violation is investigated
- Permanent termination: Your account may be permanently terminated and all API keys revoked
- Reporting to authorities:Serious violations will be reported to the relevant authorities, including the Information Commissioner's Office (ICO) for data protection breaches and relevant professional bodies (e.g., NHS, CQC) for professional misconduct
- Legal action: We reserve the right to pursue legal remedies for violations that cause harm to Lola Dispatch, our users, or patients
Lola Dispatch reserves the right to take immediate action, including suspension without prior notice, in cases of serious or ongoing violations that pose a risk to patient safety, data security, or platform integrity.
6. Reporting Violations
If you become aware of any violation of this policy, or suspect that the platform is being misused, please report it immediately. We take all reports seriously and will investigate promptly.
When reporting a violation, please include as much detail as possible, including the nature of the violation, any relevant evidence, and the date and time it occurred.
7. Changes to This Policy
We may update this Acceptable Use Policy from time to time to reflect changes in our practices, legal requirements, or platform capabilities. Material changes will be communicated via email or a prominent notice on the platform. Continued use of Lola Dispatch after changes constitutes acceptance of the updated policy.
8. Contact
If you have questions about this policy or need clarification on permitted use: