Contact Me

GDPR Privacy Policy for Linda Banting (Orion Counselling)

Introduction

Orion Counselling is committed to protecting the privacy and personal data of all clients. This policy outlines how your personal data is collected, used, stored, and protected in accordance with the General Data Protection Regulation (GDPR).

Data Collection

I collect and process the following personal data to provide counselling services:

  • Personal Information: Name, address, phone number, email address.
  • Sensitive Data: Health information, mental health history, and any other information relevant to providing counselling services.

Purpose of Data Collection

The data is collected for:

  • Delivering professional counselling services.
  • Maintaining accurate client records.
  • Complying with legal and regulatory requirements.

Legal Basis for Processing

Data is processed based on:

  1. Consent: Explicit consent is obtained before collecting and processing sensitive data.
  2. Contractual Obligation: To provide services agreed upon in the counselling contract.

Data Storage and Retention

  • Paper based data is stored securely in locked metal filing storage. No personal data will be recorded or stored electronically.  Unidentifiable contact numbers will only be used on a mobile phone which is locked at all times except in use and will be erased as soon as therapy concludes.
  • Personal data is retained for 7 years following the end of services, as required by professional guidelines, legal obligations and insurers.
  • After the retention period, data is securely destroyed.

Security

  • Reasonable measures are taken to protect your personal information from unauthorised access, disclosure, alteration, and destruction. However, please be aware that no method of transmission over the internet or electronic storage is completely secure. I therefore cannot guarantee the security of your information.

Data Sharing

  • Personal data is not shared with third parties unless required by law (e.g., court orders) or in cases of significant risk to the client or others such as below:-
  • In order to protect a child, vulnerable adult, yourself or the public from harm or abuse.
  • For the prevention and detection of a crime.
  • If it is a legal requirement of a court of law.
  • If there is disclosure about an act of terrorism.

Your Rights

Under GDPR, you have the following rights regarding your personal data:

  1. Access: You can request a copy of your data. An admin fee of £15 will be charged for any request of data.
  2. Rectification: You can request corrections to inaccurate data.
  3. Erasure: You can request data to be deleted under certain conditions.
  4. Data Portability: You can request your data in a portable format.
  5. Objection: You can object to data processing under certain conditions.

Contact Information

If you have questions or concerns about how your data is handled, or if you wish to exercise your rights, please contact the Data Controller. For the purposes of the Data Protection Act (GDPR) Linda Banting is a Data Controller.

  • Name: Linda Banting
  • Email: Lindabantingtherapy@gmail.com

Updates to this Policy

This policy may be updated periodically. Any changes will be communicated to current clients.