Privacy Policy

Data Privacy Policy I keep records about you

​

This info sheet explains why I keep your info, where I keep it, how I keep it safe, and what your rights are.

 

The basics

​

• I keep information about you in order to provide you with a service, and to process payments.

• I cannot work with you unless you allow me to keep records.

• I follow the law, and the codes of practice set down by the HCPC and the BPS

• I have systems in place to protect your data.

• You are entitled to request a copy of your data free-of-charge, and to have inaccurate information corrected.

• I aspire to the highest data privacy standards. If you have questions, concerns or feedback then please let me know so that I can address them.

• You can complain to the Information Commissioners Office (ICO) if you think that I am acting unlawfully: visit ico.org.uk/concerns or phone 0303 123 1113.

 

Why I keep information

​

My professional registration requires me to keep information about my clients and the work that I do. I cannot offer you services unless you allow me to keep data about you and our work together. The legal basis I have what is known as a legitimate interest for keeping data. I am registered with the Information Commissioners Office (ICO) to do so.

 

I follow the rules set down by my professional regulator (the Health and Care Professions Council; HCPC), and the British Psychological Society (BPS). The information that I keep I keep personal data e.g. your name, address, phone number. I also keep sensitive data e.g. notes about our meetings, your gender, social history.

 

What I do with the information

 

I use the data I collect for three reasons: (1) to provide you with services, (2) for billing and processing payments (3) to help prevent serious harm.

 

How long I keep data

 

I keep client data throughout the time I work with my clients and, in line with professional guidance, for 7 years after the work has ended.

 

Where I keep data

​

• In my file storage cloud: Google Drive

• On my laptop

• In a paper file

• In my mobile phone

• In my email systems

• My website uses cookies so that I can see how many people have visited and which pages are most popular. Google may send additional cookies if you use the google map links on the site. Cookies are anonymous and contain no personal data. You can turn cookies off in your website browser if you wish to.

​

How I keep data safe

​

• My accounts are locked with a strong password and two-step verification.

• My laptop is encrypted using Apple’s full-disk FireVault; I use Apple’s Firewall to prevent others gaining access to my computer.

• My paper notes are stored in a locked cabinet. I bring them to the clinic for our meetings, and return them to the cabinet after the meeting.

• My mobile phone is encrypted, and must be opened with a password or fingerprint each time I use it.

• My email systems are secured with a password and two-step verification.

• Access to the analytics on my website are secured with a strong password.

• All my passwords are stored in a password manager on my phone.

• I use Google Authenticator on my phone to generate two-step verification codes.

 

You have the right to:

• request details of all the information that I keep and to receive it within one month at no fee.

• have information corrected if you consider it inaccurate or incomplete.

• complain if you think that I am acting unlawfully (see The basics, above).

​

​

Updated May 2021

​

​