This privacy policy is a statement of legal and ethical requirements of practice regarding data protection, transparency of information storage and usage. It sets out how I manage information about clients and how I comply with my obligations under the General Data Protection Regulation (GDPR) 2018 and as a registered, accredited member of the National Council for Hypnotherapy (NCH).
All personal information is provided by you (and/or whoever referred you) when you are initially referred and when your support starts. You have the right to withhold or restrict any information relating to you or your children, and this will be respected. You can amend your information if it changes and you have the right to request to have the information we keep relating to support for you deleted from our records.
When I ask for your personal data, I only ask for what I need and is relevant. Make sure you know and understand why I need it, and who I share it with. Hold it securely and make sure nobody had access to it who shouldn’t. Make sure Idon’t keep it longer than necessary; andnot make your personal i do nformation available for any other use (other than stated in this notice) without your permission unless I am required by law or you or your child is at risk.
Information I collect
I will collect and store your assessment information including your name, address, and contact details, medical information and GP Surgery. Beyond that the information I hold on you will be brief process notes a summary of my recollections and reflections following each of our sessions. This information may include personal sensitive information, for example about your physical and mental health, sexual life, racial or ethnic origin, religious or other beliefs, offences and alleged offences perpetrated by you or upon you.
Secure Storage
Any written notes I take during a therapy session to support with my process and formulation will be securely stored using double layered protections in a GPDR compliant way. In a locked desk cabinet in a lock building. So you have complete peace of mind that your personal information is stored safely and securely.
Your contact details are held securely for up to 1 year after the therapeutic process has ended and session notes will be held securely and confidentially for 5 years after the therapeutic process has ended, at which point they will be destroyed.
As the client, you have the right to receive your personal information which you previously provided, and also have the right to transfer that information to another party. For the purposes of the General Data Protection Regulations (GDPR) May 2018, the data “controller” is Laura Hawthorn - amethyst-hypnotherapy
If you ask me to provide a third party with information about you and our work together I will discuss that with you and if I agree to do so will provide you with a draft of what I propose to send, before I pass it on.
Your rights under GDPR 2018
Under this legislation you currently have the following rights: To be informed about what information I hold (this document). To see the information, I hold on you (free of charge for the initial request). To rectify/correct any inaccurate or incomplete personal information. To request that your personal information is erased/deleted/shredded. I can decline this request if the information is needed for me to practice lawfully or competently, or if there is another reason (for example a complaint or legal reason).
Data Controller
Laura Hawthorn
Collected Personal Data
Purpose of collecting data
For the purpose planning the best Therapeutic intervention for the client.
We need your consent to load the translations
We use a third-party service to translate the website content that may collect data about your activity. Please review the details in the privacy policy and accept the service to view the translations.