I comply with the General Data Protection Regulation (GDPR) which governs the responsible and confidential handling of any information I hold about you.
The purpose of this statement is to explain what personal information I collect and hold, why I collect it, how long it is kept and your rights regarding your personal data.
I need to collect some minimal personal details before and during your initial appointment including your contact details, availability and some personal information. I will take all reasonable precautions to prevent the loss or misuse of your information. I hold any paper records in a locked file and any electronic files are password protected. Once you finish counselling, all data regarding your counselling is stored securely for seven years and then destroyed.
Your personal information will be used only to provide you with my counselling service. I will not share your personal details with any other person or organisation without your knowledge and permission, unless there is a legal requirement, for example if there is a child or adult safeguarding issue, or a perceived risk of harm.
Communications in connection with your counselling may be sent by non-encrypted email. Whilst I endeavour to keep my communications protected against viruses and other malicious agents, I cannot bear responsibility for all communications being cyber-secure.
If you have any concerns about my use of your data and would like to see the information I hold about you, or would like to correct, update or delete any records, please email me at firstname.lastname@example.org. I will make every reasonable effort to resolve your concerns, but if you are not satisfied, you have recourse to the Information Commissioner’s Office where I am registered (Reference ZA553055).