Privacy Policy
I comply with the Data Protection Act 2018 and the General Data Protection Regulations (GDPR). This policy explains what personal information I keep, how I use it and how I keep it secure. For the purposes of the General Personal Information Protection Regulations (GDPR) 2018, the personal information “controller” is Natalie Wilson – Natalie Wilson Therapy.
Contact and Session Information
When we begin our work together I will ask you to provide a name, email address and if possible, a phone number as well as an secondary contact if I am unable to reach you for any reason. I will only use your details in order to provide the counselling and therapy service I offer, including contacting you about appointments. I will not contact you for any other reason nor use your information for any other purpose. If we decide not to begin therapy together any data submitted by you will be deleted immediately.
Sharing information
Our work together is confidential and I won’t share any information with a third party without your consent e.g. for any research or academic purposes or if there is a third party referral. Any file transfers of this nature will be carried out securely to protect your privacy. In the case of clinical supervision, I will anonymise all particulars so that the subject/client cannot be identified.
Financial Information
I keep financial information including bank statements for 7 years as advised by HMRC. If you decide to make payments by BACS be aware that your account name and reference may be viewed by employees of the bank.
Data Storage
Any documents that hold data about you (including any session notes, letters, bank statements etc.) will be held securely to protect your privacy. Information held electronically will be stored in protected files held on secure devices that only I have access to and any paper files will be kept in locked storage cabinets. Any diary entries to keep track of appointments will hold only first names against appointment times.
I will keep basic records of our sessions (e.g. name and dates of sessions) and any notes I take for 3 years. Any additional correspondence (e.g. letters to or from other agencies) will be kept for 6 months after the end of therapy, or when I last hear from you.
Website
My website is hosted through Wix and they make minimal use of cookies to enable the use of google analytics. A banner at the bottom of each webpage will ask if you have happy to accept cookies, which you can ignore if you wish to decline. All enquiry messages submitted through Wix are deleted on a regular basis.
Online Video Calls
I use Zoom to carry out therapy video calls. These will not be recorded at any time.
Where using Zoom is difficult or impossible for clients for technical reasons, I am happy to work via Teams at a clients’ request.
Your Rights under GDPR
You have the right to see the information I hold about you on request and you are welcome to discuss how I handle your data at any time. Please be aware that in agreeing to proceed with therapy with me you acknowledge your acceptance of this policy. Whilst we are working together I will make you aware of any changes to my privacy policy via email, and any changes will also be posted to the relevant page of my website.