Privacy Statement and Personal Information
On 25th May 2018 it became a legal requirement under the GDPR (General Data Protection Regulation) for your counsellor/psychotherapist/coach to make clear to you their data processing procedure. Most importantly the GDPR made it a legal requirement for you to actively opt in and consent to these arrangements and the handling of your data.
I abide by the General Data Protection Regulation (GDPR) and am the data controller and processor for www.lindakeen.com. You can find out more about the GDPR from the ICO (Information Commissioner’s Office – https://ico.org.uk/). Under the GDPR the practitioner needs to make clients aware of the following:
Reason for collecting Personal Data/Information
I collect relevant personal information from clients to enable a working record of contact information, in case of emergencies (explained below) and for the ongoing work in the therapeutic relationship.
Confidentiality – Will my Counsellor/Psychotherapist/Coach or Supervisor share my Data?
I am bound by the BACP Ethical Framework for the Counselling Professions, and also the BACP Ethical Framework for the Counselling Professions Supplementary Guidance: Working Online (GPiA 047). and provide confidentiality within these guidelines.
Our sessions are strictly confidential, and the contents will not be disclosed beyond good practice guidelines. These guidelines dictate the following exceptions to the confidentiality rule:
- As a Registered Member of the British Association for Counselling and Psychotherapy (BACP) I am required to engage in regular supervision, which is a minimum of 1.5 hours per month. You may be discussed during the supervision; however, your identity will remain anonymous. Clinical supervision is in place to ensure that your counsellor/psychotherapist is working ethically and safely, and to ensure that you receive the best practice. I abide by the BACP Ethical Framework for the Counselling Professions and Working Online. More details about this can be found at the BACP Ethical Framework for the Counselling Professions, and also the BACP Ethical Framework for the Counselling Professions Supplementary Guidance: Working Online (GPiA 047).
- Counsellors/psychotherapists/supervisors are required to break confidentiality if they assess you are a risk of harm to yourself or to others. If at all possible they would always discuss a potential breach of confidentiality with you in advance. They would break confidentiality only to the relevant persons or authorities for the purpose of assisting your wellbeing or the safety of others – If at any point during the counselling you were in need of emergency, medical, or additional support, I may ask for your consent to contact your GP or other appropriate services. If at any point during counselling you reveal intent to cause risk of harm to others all counsellors are then legally bound to make disclosure to authorities.
- Under the GDPR the counsellor/psychotherapist/coach/supervisor also has a legal requirement to disclose data if you are involved in drug money laundering, planning terrorist’s offences or if a Court Order has been made.
- With regard to online counselling via email, text/message, and webcam, the police and other authorities can ask for access to an individual’s email account or synchronous messaging account where there is suspicion of illegal or terrorist activities. They can also ask counsellors/psychotherapists/coaches for access to stored records. Counsellors/psychotherapists are not able to guarantee confidentiality in these circumstances.
How will my Counsellor/Psychotherapist/Coach or Supervisor store personal data and for how long?
- Personal data pertaining to our sessions and work together will be as minimal as is possible and will be stored under a client ID, under lock and key and/or password protected. Any personal data/records of our sessions will be kept for up to 7 years after our work together has ended. Your personal data will be disposed of by wiping any electronic files and shredding any handwritten information. You can also request (in writing) that all data is destroyed during our contact, once our work together ends, or at anytime thereafter.
Your telephone number ID will be coded by initials and ID numbers/letters plus an icon to indicate purpose of contact (ie, client). Your telephone number will be stored only for contact purposes, until such time as our contact ceases. Then it will be completely deleted.
Your rights under GDPR
You have the right to request access to your client record and receive an explanation of what is held within it.
You have the right to request erasure or correction of your client record, or to object to or restrict collection and processing of your data.
You have the right to know the source/s of personal data not originating from yourself.
You have the right to be made aware of any automatic decision-making processes (e.g, profiling) and any significance and consequence for yourself.
You will be made aware of any data breaches within 72 hours. You will be compensated for any damage or distress caused by the data breach.
You have the right to complain to the ICO (Information Commissioners Office) if you are unhappy with the data processing arrangements, and to engage representation from a not-for-profit body in doing so.