In order to run a safe and effective clinical practice, I gather and hold certain information about you and your treatment. It is important for you to know what this information is, your rights in relation to your data, how it is used, and how it is stored safely. I am registered as a data controller with the Information Commissioner’s Office (www.ico.org.uk) and keep your data in accordance with the new data protection laws under the General Data Protection Regulation (GDPR).
The information I hold includes:
Personal information: your name, date of birth, and address. Emergency contact details, and details of other professionals involved in your care.
Notes from therapy sessions and other contacts. This may include audio or image files depending on the work we are doing.
Correspondence relating to your care from you or other professionals.
Information about fees and payments invoiced and paid.
Appointment dates and times.
HOW YOUR DATA IS USED
Your information is used to make contact, arrange appointments and gather payment for treatment. It may also be used in the case of an emergency.
Session notes and correspondence are used to plan and coordinate your care.
This is further detailed in the client policy that I will ask you to review and consent to at the start of any treatment.
Keeping your data safe
All of the information relating to you and your treatment will be held securely on the clinic’s computer system. This is only accessed by your therapist and is backed up regularly.
Information will be held for seven years following the end of your treatment. You have a right to access this information, request its transfer, or to delete it.
Any email correspondence will be regularly deleted and any important information saved as above.