For GDPR requirements, this policy refers to written documents, hard copy client notes, database entries, Emails, text messages, visits to the website and social media communication.
Data is collected for the sole purpose of providing an appropriate service for the individual; Legally termed as ‘Legitimate Interests’.
Personal information is provided by you for referral and commencement of the service only.
I am the data processor for all printed/written paperwork. Hard copies of personal information are stored in a locked container, behind a locked door and stored for 5 years.
Emails are processed by Microsoft and are therefore subject to their privacy policies. It is recommended that no sensitive information be shared via Email.
Phone calls are not recorded; however, text messages and voicemail may be stored for up to 90 days. I may use your phone number to return your call, as per standard business practice.
All electronic devices which hold personal data are password protected and stored securely.
A Cookies tool is in use on the website (gedlingtherapy.co.uk). Google Analytics are used to monitor the website’s performance, but all information received is non-identifiable.
No personal/sensitive data will be shared with any 3rd party without the clients’ explicit consent. (Subject to legal requirements)
On occasion, I may ask permission for client feedback to be used for marketing purposes. In this event, all data will be anonymised.
In the unlikely event of a data breach, I will comply with GDPR regulations regarding reporting and action taken.
To ensure uninterrupted client privacy in the event of death or an inability to continue in my role, my clinical supervisor will assume data processing responsibility.