Use of personal data policy
If you decide to use my service, I shall ask you to sign a privacy statement setting out what personal data I collect, store and how I use it.
Some or all of the following personal details may be collected:
name, age and date of birth
contact details: postal address, telephone number(s), email address(es)
details of your NHS GP
Additional personal data may include
information discussed during sessions
your initial desired therapeutic goal
past clinical history and history of current presentation
Reason for collecting and storing personal data
I shall only record and store personal data that is relevant, expressly and solely for the purposes of delivering hypnotherapy and working in a safe and effective manner with you.
Sharing your personal data
I have no mandatory obligation to share your personal data with other agencies, except for information relating to terrorism and money laundering. I will however share it, in the context of supervision, as any work I take on is supervised by a qualified practitioner.
I may chose to share information with other agencies if I have concerns for your safeguarding and welfare, or if I have concerns for the welfare and safeguarding of vulnerable individuals governed by statutory obligations. In any event I will let you know about my intention and seek your consent to do so. Any information will be shared electronically, encrypted and password protected.
Storing personal data
Your personal data will be anonymised and held separately from other information that could identify you (name, age, etc.) and stored electronically on a computer that is password protected.
Duration of storage
I shall keep your personal data for 7 years from the date we complete our work together.
Deleting personal data
I shall delete electronic records and any device used to store records securely, once the device comes to the end of its useful life.
By signing your treatment agreement, you will give me permission to record personal data as outlined above. You can withdraw your consent at any time in writing, by letter or email. If so, I shall destroy all personal data securely, except in cases where doing so would compromise any ongoing statutory process. If you have any questions about my data policy, please ask me.