top of page

Privacy Policy

​Your privacy is very important to me and you can be confident that your personal information will be kept safe and secure and will only be used for the purpose it was given to me. I adhere to current data protection legislation, General Data Protection Regulation (EU) 2016/679 (GDPR), Directive 2009/136/EC, and Convention 108.

​

This privacy notice tells you what I will do with your personal information from initial point of contact through to after your therapy has ended, including:

  • Why I am able to process your information and what purpose I am processing it for

  • Whether you have to provide it to me

  • How long I store it for

  • Whether there are other recipients of your personal information

  • Whether I intend to transfer it to another country

  • Your data protection rights

  • Whether I do automated decision-making or profiling.

 

I am happy to chat through any questions you might have about my data protection policy.  ‘Data controller’ is the term used to describe the person/ organisation that collects and stores and has responsibility for people’s personal data. In this instance, the data controller is me.

 

What Personal Data I Collect

​

During the course of our work together, I may collect the following personal and sensitive data:

  • Personal information: Your name, gender, and date of birth to identify you.

  • Contact details: Your email, address, and phone number, allowing me to get in touch to arrange our work together.

  • Emergency contact information: In case of a medical emergency.

  • GP contact details: While consent is typically sought before reaching out to a GP, I may need to contact them directly if there is a risk of serious harm to yourself or others.

  • Assessment notes: Information about your physical and psychological well-being, including any medications, diagnoses, or health support you receive. This may also include background history, current levels of social support, past experiences with counseling, and goals for our work together.

  • Payment details: If paying via BACs, these details will be held securely by my bank.

 

If you decide not to proceed I will ensure all your personal data is deleted within the first month. If you would like me to delete this information sooner, just let me know.

​

While you are accessing counselling:

​

Rest assured that everything you discuss with me is confidential. That confidentiality will only be broken if I believe there is a risk of harm to yourself or others. I will always make an effort to discuss this with you first, unless safeguarding concerns prevent me from doing so.

​

This information is collected directly from you, with your full knowledge and consent.

​

Purpose of Data Collection

​

Your personal data is collected for the purpose of:

  • Providing safe and effective counselling services

  • Maintaining accurate records of our sessions

  • Managing administrative tasks (e.g., scheduling, communication)

  • Meeting legal, regulatory, and insurance requirements

 

Your data is not used for marketing or shared with third parties unless legally required or with your explicit written consent.

​

Legal Basis for Processing

 

The legal bases for processing your data include:

  • Consent: You provide clear consent for me to process your personal information.

  • Contractual necessity: To provide you with counselling services as agreed.

  • Legitimate interests: For ethical record-keeping and to ensure the safety and effectiveness of the therapeutic process.

  • Legal obligations: In compliance with applicable laws or court orders.

 

Data Storage and Security

 

All personal and session data are securely stored in encrypted digital documents. I use secure, password-protected systems and ensure that access is limited to myself only.

In addition, I use a data breach monitoring service to detect any unauthorized access to stored data. In the unlikely event of a data breach that may pose a risk to your rights and freedoms, you will be notified without undue delay, in line with GDPR requirements.

​

Data Retention

​

Your data will be securely stored for up to 5 years after the end of your therapy. This is in accordance with professional, legal, and insurance guidelines. After this period, all records will be permanently deleted or securely destroyed.

​

Your Rights

​

Under data protection laws, you have the right to:

  • Access: Request a copy of the personal data I hold about you

  • Rectification: Request corrections to inaccurate or incomplete data

  • Erasure (“right to be forgotten”): Request deletion of your data, where applicable

  • Restriction: Request that I limit how your data is used

  • Data Portability: Request that your data be transferred to another provider

  • Object: Object to processing in certain circumstances

 

To exercise any of these rights, please contact me directly.

 

Confidentiality and Sharing of Information

​

Your information is kept confidential and is not shared without your explicit consent, except in the following situations:

  • If required by law (e.g., court order, safeguarding concerns)

  • If there is a serious risk of harm to yourself or others

  • If disclosure is required by a regulatory or professional body

​

Website and Cookies

 

This website uses cookies. Where applicable, you will be asked to consent to the use of non-essential cookies in accordance with Directive 2009/136/EC.

​

Changes to This Policy

​

This privacy policy is reviewed regularly and may be updated from time to time. The latest version will always be available on request.

​

If you have any questions or concerns about how your data is handled, please don’t hesitate to contact me directly.

bottom of page