Privacy NoticeWhen you trust me with your personal data, I take my responsibility to protect it very seriously. I respect privacy and your rights to control your personal data. With that in mind, I want to be clear about the data I collect and why. I am committed to complying with the terms of the General Data Protection Regulation (GDPR), regarding the responsible and secure use of your personal data.
I have a legitimate interest in processing personal data in order to provide psychosocial services. The purpose of this statement is to let you know what personal information I collect and hold and why this data is collected, how long it is kept for and your rights over your personal data. I am registered with the Information Commissioners Office (ICO).
I do not and will not sell your data to third parties.
Please read this Privacy Notice carefully to understand my views and practices regarding your personal data, and make sure you understand it. Your acceptance of my Privacy Notice is deemed to occur upon your first use of my Site, so if you do not accept and agree with it you must stop using my Site immediately.
Please be aware that my Site and Services may contain links to third party websites that are not covered by this Privacy Notice. With that in mind, I ask you to review the privacy statements of other websites and applications to make sure you understand their information practices.
What information do I collect?
- The information you give me may include your name, address, e-mail address, phone number, date of birth, gender, GP or medical practitioner details, etc. I may also collect any data you give me regarding personal and family background, data in relation to medical and mental health conditions.
What do I use the information for?
- To provide clients with psychosocial services.
- To notify you about changes to your appointments and other changes to my service.
- To fulfil any administrative, legal, ethical and contractual obligations.
- On occasion I may provide information on trainings, workshops, blogs, electronic mailings or newsletters specific to my services only.
What information do I share?
I will not share any information about you with other organisations or people, except in the following situations:
- Consent – I may share information with relevant medical professionals or others whom you have requested or agreed I need to contact.
- Serious harm – I may share your information with the relevant authorities if I have reason to believe that this may prevent serious harm being caused to you or another person.
- Compliance with law – I may share information when the law requires us to - i.e. safeguarding, terrorism, drug trafficking and serious crime.
- Clinical Will– I have a clinical will which means in the event of sudden death or a serious accident or illness, a named colleague will be able to access the contact details so we can notify clients.
- Supervision– It is an ethical requirement for any clinician offering psychosocial services to have regular supervision. Any supervisor used is an accredited member of the relevant accrediting body and works within their ethical framework.
How do I keep your information safe?
• All information you provide to me is stored as securely as possible. I will take all reasonable precautions to prevent the loss, misuse or alteration of information given.
• All paper forms and correspondence are kept in locked filing cabinets. All electronic files are kept on password-protected devices with virus protection software. Backups are stored on Cloud-based services and remote backup devices are kept in locked cabinets.
• Formal reports are password protected and/or they are sent through a secure encrypted service.
• If process notes are made they are kept separate from any identifiable personal information.
• Whilst I endeavour to keep my systems and communications protected against viruses and other harmful effects, I cannot bear responsibility for all communications being virus free.
• Client notes and other documentation are destroyed seven years after the end of the psychosocial services offered.
• Any known data breaches will be reported to the ICO within 72 hours.
• Any requests for personal data need to be made through a data subject access request and will be supplied within one month. • My website is maintained by WebGenie. Your details are not stored on their systems for any contact requests made through them. The website does not require cookies to function properly.
Under the GDPR, you have the right to control how your personal information is used in the following ways:
• Access your personal data - Rectify, erase or restrict your data - Object to the processing of your data - Request transfer of data (data portability).
• You may withdraw your consent for me to hold and process your data at any time. However, if you do this while actively receiving psychosocial services, the services would have to end. You can withdraw your consent by stating this on an email to firstname.lastname@example.org
• If you have any concerns about the way I handle your data please contact email@example.com. If you feel this has not been resolved effectively you have the right to contact the Information Commissioners Office (www.ico.org.uk)
Links to other sites
Please note that the terms and conditions and my policies will not apply to other websites that you get to via a link from my site. I have no control over how your data is collected, stored or used by other websites and I advise you to check the privacy policies of any such websites before providing data to them.
This document is a work in progress and may be modified from time to time.