Privacy Policy (GDPR)

The General Data Protection Regulation (GDPR) is concerned with how I (the therapist) collectstore, and share your (the clients’) personal information.

This page details my GDPR policy.

Personal Information we will collect:

  • Name.
  • Gender (or preferred identity).
  • DOB.
  • Date of Birth.
  • Relationships & Progeny.
  • Occupation.
  • Address.
  • General Practitioners details.
  • Telephone/SMS number (plus permission to send SMS & leave voice message).
  • Email address.
  • Therapeutic History.
  • Medical conditions relevant to therapy.
  • Family Medical conditions relevant to therapy.
  • Prescribed medication.
  • Non-prescribed medication.
  • Alcohol and recreational drug usage.
  • Reason for therapy (difficulties/problems).
  • Session summary.


How I will store your Personal Information (storage methods):

  • Paper – written notes (described below).
  • Smartphone – I will store your contact information in a plain-text note app that backs up to my private Onedrive cloud storage. This allows me to contact you in-case of emergencies, but keeps from revealing this information to other applications (i.e. not using a Contacts app).
  • Email/SMS – your email address and correspondence will be stored in my following email accounts (GMail and company specific private webmail) by nature of you contacting me. Your telephone number will be stored in my SMS should we exchange messages this way. Electronic correspondence will also be held by the corresponding app (Gmail, company specific private webmail, Phones’ SMS).
  • Website – none of your personal information is stored on my website.

 Documents held may include:

Paper – 

  • General Assessment (including GDPR Privacy Policy and Confidentiality Agreement)
  • Session Notes
  • Session exercises
  • Homework documents


Electronic –

  • General Assessment (including GDPR Privacy Policy and Confidentiality Agreement)
  • Session Notes
  • Session exercises
  • Homework documents


How I may Process/Share your Personal Information:

We do not share any form of information or data unless agreed, as per below ‘Confidentiality Agreement’.


Confidentiality agreement

 This confidentiality agreement is set out in line with the 1998 Data Protection Act Code of Conduct.

All discussed, written and recorded data/information is considered confidential and will not be passed onto third parties unless agreed by client and therapist excluding the following circumstances:

Confidentiality may be broken without consent if –

1) Legal action; if a court order is issued demanding disclosure of information.

2) If in my professional opinion, I believe that harm may occur to you the client or others if I do not disclose relevant information. This includes the right to disclose or inform other healthcare/social care providers for the ‘greater good’ of the client or others.

As the client you are entitled to request access to any written or recorded data that is kept, in full. As client you maintain the right to request for changes to be made in agreement with the therapist. Any changes will not be erased and must remain visible.

 Erasing your Information:

I will hold onto both paper and electronic data for a minimum of six years past the end of our working together. This is inline with standard practice law and insurance requirements. After this time has passed, I will shred the written records/information and delete digital data/records/information.


Client (your) Rights:

You have the following rights:

  • To be informed what information I hold (i.e. this document).
  • To see the information I hold about you (free of charge for the initial request).
  • To rectify any inaccurate or incomplete personal information.
  • To withdraw consent to me using your personal information.
  • To request your personal information be erased (though I can decline whilst the information is needed for me to practice lawfully & competently).
  • Request your data be transferred to an alternative provider (ex. therapist)