By receiving therapy treatment from James Greenaway, you will be asked to provide information which includes some personal data.
I currently collect and process the following information:
I comply with my obligations under the General Data Protection Regulation (GDPR) by keeping personal data up to date by storing (and destroying it) securely, by not collecting or retaining excessive amounts of data, by protecting personal data from loss, misuse, unauthorized access and disclosure and by ensuring that appropriate technical measures are in place to protect personal data.
To deliver the services that clients have requested.
Individual client data will never be passed to a third party without the express consent of the respective client, always provided that such confidentiality is neither inconsistent with the therapist’s own safety of that of the client., the clients family members or other members of the public, nor in contravention of any legal action or legal requirement.
In accordance with my need to maintain the possibility of access to client data as a result of returning clients or those who may wish to lodge a complaint in respect of my professional services to either my professional body or insurers (i.e. in all cases perhaps after a long period of time has elapsed), I retain client data for a minimum of 7 years. For clients under the age of 16, data will be retained until their 25th birthday.
The client has given clear consent for James Greenaway Complementary Health to process their personal data for a specific purpose. Further, the processing is necessary for both the client’s and James Greenaway Complementary Health legitimate interests.
Unless subject to an exemption under the GDPR, you have the following rights with respect to your personal data:
The client has a right to complain to the Information Commissioners Office (ICO) if they think there is a problem with the way we are handling their data (see https://ico.org.uk/make-a-complaint/