Privacy Statement and the therapeutic contract will both be discussed in our initial session.
In accordance with the General Data Protection Regulation (GDPR) and Data Protection Act 2018. I take your privacy seriously and I am registered with the Information Commissioners Office (ICO) the following explains what data I keep, why I need to keep this date and how I handle your data:
Name and age – this is basic information that helps me to get to know you
Address, email address, phone number – I use this as a way of contacting you regarding sessions. I will mainly use the method you first contacted me on but if I can’t reach you I will try a different method.
GP details– If I become worried that you are at risk, then I may need to contact your GP or emergency services, I will inform you before doing so.
Session notes – I keep very brief anonymous notes of our sessions, in accordance to my indemnity insurance and professional governing body of the British Association of Counsellors and Psychotherapists (BACP)
Next of Kin – I keep this and it would only be used in case of an emergency.
Will I share your data? If I do need to share your data, who will I share it with and for what purpose?
It is unlikely that I will need to share your data. I will not sell it on or use it for unethical reasons. I may have to share it if my notes are subpoenaed by court, if you or anyone you tell me about is at risk of harm I may have to pass this information on to emergency services, GP or social care.
You have a right to access notes written about yourself. I have regular supervision where I talk about my work but I always keep your identity anonymous.
How will I store your data?
It depends on the data, it’s mainly all stored on paper, this includes the contract, contact details and brief session notes are all locked in a filing cabinet.
Your phone number is stored in my mobile phone with your first name added as a contact and will also be deleted approximately one month after our work ends.
If your main way of contacting me is via email, your email address may be stored on my work email account. Both my mobile and computer are password protected.
How long will I store your data for and how will I dispose of your data?
I keep your brief session notes, your name and unique code for up to 7 years, these are held in a locked filling cabinet. (As recommended by my insurance company and professional governing body of the BACP)
I will shred your personal information ensuring it is illegible approximately 1 month after our work finishes.