This is the Privacy and Data Protection policy for Curative Hypnotherapy – Emily Fennell. This policy sets out how the General Data Protection Regulations (GDPR), my insurance policy and my professional body’s code of ethics affect the way I handle your personal information.
Your privacy is of the utmost importance and all users of Curative Hypnotherapy can expect their details to be protected.
What information might I need from you?
When you initially contact me (via telephone, email or by the contact form on my website) you are consenting to me holding any information that you provide in this way, such as your name and contact details. This obviously enables me to return your call/email/message and to discuss if treatment might be suitable with you.
At this stage of first contact, it may not be necessary for you to give me lots of detail about what it is you are seeking hypnotherapy treatment for. I appreciate that providing such personal details over the phone or email can be difficult – so all I need to know is enough information to establish if I am able to offer you an appointment and potentially provide you with treatment.
During a face-to-face appointment I will ask for further details about the symptom/s that you would like treating with hypnotherapy. We may also discuss information about your family background and your medical history. There is no legal requirement for you to offer this information and you do not have to discuss with me anything that you don’t feel comfortable sharing, but without this information I may not be able to proceed effectively with treatment.
How information is stored:
Information shared with Emily Fennell at the initial consultation (and also in subsequent conversations or therapy sessions) is noted in a handwritten file that is kept safe, secure and confidential by the hypnotherapist at all times. In accordance with the requirements of my insurers (Balens) and regulatory body (The General Hypnotherapy Register) all handwritten treatment records are retained in a secure location for seven years (or three years after the age of 18, whichever is the later). After this time, all information is securely destroyed.
I do not keep any electronic records of client notes. However, I do keep an electronic database of anonymised data which includes (but is not limited to) age, gender, method of referral, type of symptom(s) treated, number and outcome of therapy sessions. This data is used for practice management and to ensure treatment standards are maintained. To reiterate, no identifiable data (e.g. names, contact details or symptom details) is kept electronically.
I have a mobile phone line dedicated solely for my business. This phone rarely leaves my consulting room, no numbers are stored on it and messages are deleted once read/listened to.
Sharing of information:
I do not share personally identifiable information with any third party, except where required to do so to comply with any applicable law, to process transactions (e.g. payments), to enforce our site policies, or protect ours or others’ rights, property, or safety.
I may share and discuss anonymised case histories in supervision or in private hypnotherapist peer support groups for the purpose of continued professional development, supervision or training. This enable me to continually improve and develop my practice, with a view to providing the best possible care to clients. Such usage of case histories does not breach professional confidentiality as any personal details or information that could be used to identify you are not included.
When you visit this website, a third party service called Google Analytics collects standard internet log information and details of visitor behaviour patterns. I do this to identify things such as the number of visitors to my site and which pages are looked at. This information is only processed in a way which does not reveal your identity.
In an attempt to provide you with additional information, third party links may be included on this site (e.g. links to hypnotherapy organisations to which Emily Fennell belongs). These linked sites have separate and independent privacy policies. I therefore have no responsibility or liability for the content and activities of these linked sites.
Working with children:
In collecting information from persons under the age of 16, consent must be provided by their parent or guardian in order for me to process their data lawfully.
If you have any query or concern regarding the processing of your personal data, please contact Emily Fennell using the contact details at the top of this policy notice. You can also contact the ICO directly.
You have a right to complain to the ICO if you have any problem with the way I store or use your data, or if you do not think your rights are being respected.