Privacy Statement and Data Protection
I am registered with the ICO (Information Commissioners Office) under registration reference ZA166196 which means I need to tell you what data I am collecting from you and what I intend to do with it.
What data do I keep and why do I need it?
- Name, address, email address, phone number: I use this as a way of contacting you regarding your sessions. I will mainly use the method you first contacted me on but if I can’t reach you I will try a different method.
- Emergency contact details: This is so I could contact someone if you were taken ill during the session.
- Doctors details: If I was worried that you were at risk then I may need to contact your doctor, if I could I would tell you I was going to do this.
Will I share your data and if I do who will I share it with and for what purpose?
It is very unlikely I will share your data. I will not sell it or use it for unethical reasons. I may have to share it if my notes are subpoenaed by court, if you or anyone you tell me about, is at harm or at risk of harm I may have to pass this information on to your GP or the police. I have also appointed a clinical executor. In the unfortunate event I can no longer work, due to death, serious illness or overwhelming personal circumstances, they will have access to your details and will get in touch with you.
You have the right to request to see, have amended or have destroyed any data I may keep about you. I will respond to any such request made within 14 days.
How will I store your data?
The data on paper is kept in a locked filing cabinet. Your phone number and email address may be kept in my business mobile phone which is passcode protected. Any emails or text messages you send me may remain on my phone and/or laptop computer - also passcode protected.
If we are working together via email. I will store the password protected emails on my password protected laptop only while our work is in progress. Once we finish, I will store the word documents sent as my responses to you on a memory stick that is kept in a locked filing cabinet. I will delete all of these files from the memory stick after 3 years. All of your details and words from you will be removed from my laptop and email account one month after our work ends.
How long will I store your data for and how will I dispose of it?
I will keep any brief session notes I may make for up to 3 years (as this is the requirement of my insurance company). These are filed under initials only. I will destroy this privacy statement and your contract form with your personal information on 1 month after our work finishes. I will also delete your phone number and email address from my mobile phone. All email and text messages will be deleted within 1 month of us finishing work together.
If you are not happy with the way I use your data you can complain to the ICO at www.ico.org.uk or phone them on 0303 123 1113