1. Introduction
This Privacy and GDPR Policy explains how I collect, use, and protect your personal data when you access and use my services. I am committed to protecting and respecting your privacy in compliance with the General Data Protection Regulation (GDPR) and the Data Protection Act 2018.
2. Data I Collect
I collect and process the following types of personal data:
· Contact Information: Name, email address, phone number.
· Health Information: Information about your mental health, any medical conditions relevant to your counselling, and personal history related to your therapeutic needs.
· Communication Data: Records of any communication between us, including emails, messages, and phone calls.
· Payment Information (if applicable): Details of payments for therapy sessions.
3. How I Use Your Data
Your personal data will be used for the following purposes:
· Providing Counselling Services: To tailor our sessions to your needs, maintain records, and track progress.
· Communication: To contact you regarding your appointments, follow-ups, and other necessary communications.
· Payment Processing: If you are paying for sessions, to process payments and issue invoices.
· Legal and Ethical Requirements: To comply with legal obligations and ethical guidelines in counselling.
4. Lawful Basis for Processing Your Data
I process your personal data under the following lawful bases:
· Consent: You provide explicit consent when you engage in counselling services.
· Contractual Necessity: To deliver the services you have requested, including scheduling sessions and processing payments.
· Legal Obligation: If required to fulfill legal obligations or if there are safeguarding concerns.
5. Data Retention
I will retain your personal data for the duration of our professional relationship and for a period afterwards, in line with legal and ethical requirements (typically 7 years for adults, 7 years after a child’s 18th birthday for minors).
6. Data Sharing
I do not share your personal data with third parties, except:
· Supervision: If I need to discuss cases in supervision, I will anonymize and ensure confidentiality. Any identifiable information will be kept to a minimum.
· Legal Obligations: If required by law, such as in cases of safeguarding, serious harm, or other legal matters.
· Payment Processors: If you are paying for sessions, your payment details may be processed through third-party payment providers (e.g., Stripe or PayPal), but I will not store payment details myself.
7. Your Rights
Under the GDPR, you have the following rights concerning your personal data:
· Access: You can request a copy of the personal data I hold about you.
· Rectification: You can request correction of any inaccurate or incomplete data.
· Erasure: You can request the deletion of your personal data, subject to certain legal exceptions.
· Restriction of Processing: You can ask me to restrict the processing of your personal data in certain circumstances.
· Data Portability: You can request that I provide your personal data in a machine-readable format.
· Objection: You can object to processing your data in certain situations, particularly when processing is based on legitimate interests.
8. Security of Your Data
I take your privacy seriously and implement appropriate technical and organizational measures to safeguard your personal data. These include secure storage, encrypted communication, and ensuring access is limited to only those who need to see it.
9. Cookies
This website may use cookies to enhance your experience. Cookies help track your preferences and provide a better browsing experience. You can disable cookies through your browser settings, but this may affect some features of the site.
10. Third-Party Links
My website may contain links to third-party websites. Please note that I am not responsible for the content or privacy practices of these external sites.
11. Complaints
If you believe your data has been mishandled or you wish to make a complaint about how your personal data is being used, you have the right to contact the Information
Commissioner’s Office (ICO). You can find more details about your rights and how to file a complaint at the ICO website (https://www.ico.org.uk).
12. Changes to This Policy
I may update this Privacy and GDPR Policy from time to time. Any changes will be posted on this page, and the updated policy will apply from the date of publication.
13. Contact Information
If you have any questions or concerns regarding your data or this policy, please contact me directly at dorottyanagy47@gmail.com