I am committed to complying with the terms of the General Data Protection Regulation (GDPR) made on 27th April 2016, and to the responsible and secure use of your personal data.  I have a legitimate interest in processing personal data in order to provide psychotherapy and counselling services.  The purpose of this statement is to let you know what personal information I collect and hold, why I collect this data, how long it is kept and your right over your personal data.

 

I am registered with the Information Commissioner’s office (ICO), reference:  A8273706  

 

Information about you: I collect personal information from you when you enquire about my service in order to set up an initial appointment.  This information includes contact details, your availability and other relevant personal information.  Once you finish counselling, all data regarding your counselling is stored securely for seven years and then destroyed.

 

My use of this information: your personal information will be used only to provide you with my services and to give you information relating to the service I offer.  I will not share your personal details with any other person or organisation without your knowledge and permission, unless there is a legal requirement, if there is a child or adult safeguarding issue, or a perceived risk of harm.  A breach of confidentiality is when a person shares information with another in circumstances where it is reasonable to expect that the information will be kept confidential.

 

Security: I will take all reasonable precautions to prevent the loss, misuse or alteration of information you give to me.  I hold your paper information in a locked file and any electronic files are password protected.

 

Communications in connection with your counselling may be sent by email.  For the ease-of-use and compatibility, email communications will not be sent in an encrypted form.  Email, unless encrypted, is not a fully secure means of communication.  Whilst I endeavour to keep my systems and communications protected against viruses and other harmful effect, I cannot bear responsibility for all communications being virus-free.

 

Your rights over your personal data: if you have any concerns about my use of your data and would like to see the information I hold about you, or would like to correct, update or delete any records, please email me cath.muston@gmail.com.

 

I will do my utmost to resolve any concerns you have, but if these are not resolved to your satisfaction you may choose to contact the Information Commissioner’s Office.