Privacy and Confidentiality 1.Introduction In line with the BABCP (British Association for Behavioural and Cognitive Psychotherapies) standards of conduct, performance and ethics and GDPR (General Data Protection Regulation) your personal information and health records are kept confidential and are stored securely or are encrypted. 2.What Data do I Collect? •I collect personal information, including your name, contact details, GP details and information on the presenting challenges we discuss. •The information is collected through forms, emails, calls, consultations and note taking. 3.How I use your Data The information is collected for administrative purposes and for the purposes of delivering treatment. Your data will remain confidential. The only exception to this is if I feel you are at risk of harm. In such circumstances I would contact your GP to share any risk concerns with them, to effectively manage any risk concerns. 4. Data Storage and Retention •Your personal data is stored securely in digital files or is encrypted to protect sensitive information and maintain confidentiality. Therapy notes are also stored in a protected locked cabinet. •In line with GDPR principles I retain your data for 7 years, these include treatment notes and treatment records. 5.User Rights •You have the right to access, correct, delete, or limit the use of your personal data. •You have the right to exercise these rights and can contact the ICO (Information Commissioner’s Office) for data protection queries. 6. Changes to the Privacy Policy •The privacy policy may be updated from time to time. Any updates or changes to the privacy policy will be updated here. 7. Contact Information •For any privacy-related concerns, or data protection inquiries you can contact me at rosannakramertherapy@gmail.com