This privacy policy explains how your personal information is collected, stored, and shared by me in line with General Data Protection Regulations (GDPR) (2018). When I work with you, we will discuss GDPR and our counselling contract in our first session which we will sign to agree how we will be working together.
What information do I collect and why?
I will be collecting information such as, your name, address, date of birth, telephone number, email address, GP details or emergency contact and medical information relevant to counselling, as well a brief summary of your problems. This is to provide you counselling service. Your telephone and email address are collected so I can contact you regarding your sessions, forward you a contract or invoice you for a session. Your name, address, GP, or emergency contact details are in case of emergency (see emergencies below).
What information do I store and how do I keep it secure?
~ My computer is password protected.
~ Client notes and outcome measures are separated from assessment details and locked securely away.
~ E-mail messages and text messages are regularly deleted unless relevant to sessions.
Therapeutic Will
Your name and contact details shall be shared with my Therapeutic Executor. This is so that in the event of my death you can be contacted if you are still having sessions with me.
Emergencies.
If your health is at risk and with consent, I may share your contact details with your GP or emergency services.
The right to access and be forgotten.
You have the right to ask to see the information that I hold about you and rectify any inaccurate or incomplete personal information held as well as to withdraw consent to me using your personal information at any time. You have the right to request that any information I hold be erased. (exceptions are if the information is needed to be retained for insurance or legal obligation).
Erasing your data
Once we finish our work together, I shall erase the electronic copies of the data and correspondence that I hold within 4 weeks. Written and printed data will be kept for up to seven years as recommended by my professional body and insurers. After this time all data will be securely destroyed.
Complaints
Any complaints should be addressed to the BACP; however, I hope that to prevent escalation we are able to establish open communication so that you feel able to raise any concerns within our sessions.