As part of our ongoing therapy relationship, I hold some of your personal information, for example, email address and phone number.
Phone numbers are saved on my phone with initials only, but email addresses may well give your name in more detail. The devices I use to access these different methods of communication are all fingerprint and/or password protected.
I may also hold details of your GP and date of birth if we have decided that this is appropriate. I keep this information on paper only, in a locked cabinet. Unless I was concerned that you or someone you have mentioned were at risk of serious harm, I would only contact your GP with your consent.
If you pay me by bank transfer, your name may appear on my bank statements. If you prefer, we can agree a different way of labelling your payments.
Your details are also kept in a secured sealed envelope by my professional executor (one of my colleagues) so that they would be able to contact you in the event of my death, or if I became ill and was unable to contact you myself.
In line with good practice, I keep a brief note of sessions as required by my professional insurance providers. These are stored securely in a locked cabinet.
I discuss client cases with my professional supervisors to make sure that I am working in the best way possible for you. Your identity is always kept confidential.
You have the right to know about the information I have about you, so please do ask me if you have any questions about any of your personal information I hold.
Further information about the General Data Protection Regulation (GDPR) is available on the Information Commissioners Office website – ico.org.uk
I use email addresses and phone numbers to:
• respond to communications I have received from clients.
• contact clients by email, phone or text about any changes to session times due to unforeseen circumstances
• deal with payments
All the electronic devices I use are password and/or fingerprint secured.
Please note that email and text messages are not entirely secure, because they pass through multiple servers. Whilst a security breach is not likely, it is a possibility. It is best therefore to use text and email only for messages about cancellations/lateness, etc, and not for anything else, which is better discussed face-to-face in our sessions.