GPDR - Privacy Policy


What to expect from PBcounselling and Psychotherapy  privacy document


This Privacy Policy lets you know how your personal information is being collected, stored, and shared and this is line with EU General Data Protection Regulations. I am registered with the ICO.

 

Secure Storage

I make every effort to keep all information confidential. Your personal information is stored securely and confidentially.

Your personal Information is gathered to support a Duty Of Care towards you.

Personal details DOB, Address, GP and history are kept secure and on paper for use in any future correspondence, will be destroyed at the end of our Contracted sessions together.

Sessional notes are kept supporting progression in your therapy and are stored in an encrypted professional service with no personal connections to you these will be kept for 7 years post end of therapy then will be deleted.

I will have information of your email address and your messages etc- which I will clear and remove at the ending of our therapy together. If we are using video conferencing nothing will be recorded. The platform I use is Zoom.

 Sharing information

Information is not shared with any external agency or persons unless:

 Legal exceptions

The information disclosed during the course of counselling is confidential. However there are legal exceptions. For example, if you reveal a threat of harm, or there is a threat of harm to self or to others, or if a court order is received and a legal obligation arises. Also in the interest of safeguarding someone who is a vulnerable person or young person up to 18.

 Right to Access

You have the right to ask for a copy of your personal information, free of charge, in an electronic or paper format. You also have the right to ask me to amend or change any incorrect information about you.

 Right to be Forgotten

You have the right to ask me to erase any information that I hold about you. This includes your personal information that is no longer relevant to original purposes, or if you wish to withdraw consent. In all cases and when considering such requests, these rights are obligatory unless it’s information that I have a legal obligation to retain. ( Client notes required to be kept for  7 years for insurance purposes)

Data Portability

As the client, you have the right to receive your personal information which you previously provided and also have the right to transfer that information to another party. For the purposes of the General Data Protection Regulations (GDPR) 2018, the data “controller” is Paul Bowley.


 “Any data protection complaints will be acknowledged within 30 days of receipt prior to being investigated under the Data (Use and Access) Act 2025” send to pabowley@outlook.com, if i have further questions regarding your Subject access questions i will come back to you under the new legislation for clarification.