Privacy policy.

We are committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you visit our website or engage with our psychotherapy and consulting services. This policy is in compliance with the General Data Protection Regulation (GDPR) and other applicable laws in the United Kingdom. By using our website and services, you agree to the practices described in this policy.

Information We Collect

Personal Data

We may collect and process the following personal data that you provide directly to us:

  • Identity Data: Name, date of birth, and gender.

  • Contact Data: Email address, phone number, and postal address.

  • Financial Data: Payment card details, billing address.

  • Health Data: Information about your mental and physical health, as necessary for providing our services.

  • Usage Data: Information about how you use our website, products, and services.

  • Technical Data: IP address, browser type and version, time zone setting, and location data.

Special Categories of Data

Given the nature of our services, we may collect special categories of data (e.g., health information) in accordance with GDPR. We will only process this data with your explicit consent or where it is necessary for the provision of care.

How We Use Your Information

Service Provision

We use your personal data to provide our psychotherapy and consulting services. This includes scheduling appointments, conducting therapy sessions, and managing client records.

Communication

We may use your contact details to communicate with you regarding your appointments, send you updates, or provide information about our services. You can opt out of marketing communications at any time.

Legal and Regulatory Compliance

We may process your personal data to comply with legal obligations, including maintaining accurate records for regulatory requirements.

Website Improvement

We analyse non-personal data to improve our website’s functionality, user experience, and to understand user behavior.

Legal Basis for Processing

We rely on the following legal bases under GDPR for processing your personal data:

  • Consent: Where you have provided explicit consent for processing special categories of data.

  • Contractual Necessity: Where processing is necessary for the performance of a contract with you, such as providing therapy services.

  • Legal Obligation: Where we need to process your data to comply with legal and regulatory obligations.

  • Legitimate Interests: Where processing is necessary for our legitimate interests, such as improving our services, provided your rights and freedoms do not override these interests.

Data Sharing

Third-Party Service Providers

We may share your data with third-party service providers who assist us in operating our website, processing payments, or delivering our services. These providers are contractually obligated to protect your data and use it only for the purposes we specify.

Legal Obligations

We may disclose your data if required by law or in response to valid requests by public authorities (e.g., a court or government agency).

Business Transfers

If SP&C is involved in a merger, acquisition, or asset sale, your personal data may be transferred as part of that transaction. We will notify you before your data is transferred and becomes subject to a different privacy policy.

Data Security

We take the security of your personal data seriously and implement appropriate technical and organisational measures to protect it from unauthorised access, disclosure, alteration, or destruction. These measures include secure servers, encryption, and regular security assessments. However, no method of transmission over the internet is completely secure, and we cannot guarantee absolute security.

Data Retention

We will retain your personal data only for as long as necessary to fulfil the purposes for which we collected it, including for the purposes of satisfying any legal, accounting, or reporting requirements. We determine the appropriate retention period based on the nature and sensitivity of the data, and the potential risk of harm from unauthorised use or disclosure.

Your Rights Under GDPR

Under GDPR, you have the following rights regarding your personal data:

  • Access: You have the right to request access to the personal data we hold about you.

  • Correction: You can request correction of any inaccurate or incomplete data.

  • Erasure: You can request that we delete your personal data where there is no good reason for us to continue processing it.

  • Restriction: You can request that we restrict the processing of your personal data under certain conditions.

  • Objection: You have the right to object to the processing of your data where we are relying on legitimate interests as the legal basis.

  • Data Portability: You can request the transfer of your personal data to another service provider.

  • Withdrawal of Consent: Where we rely on your consent to process your personal data, you have the right to withdraw that consent at any time.

To exercise any of these rights, please contact us using the details provided below.

Cookies

We use cookies and similar technologies to collect information about your browsing activities on our website. You can set your browser to refuse all or some browser cookies or to alert you when websites set or access cookies. However, if you disable or refuse cookies, some parts of our website may become inaccessible or not function properly.

Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices of these sites. We encourage you to read the privacy policies of any third-party websites you visit.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. Any changes will be posted on this page, and where appropriate, we will notify you by email. The date of the latest update will be indicated at the top of this policy.

Contact Us

If you have any questions or concerns about this Privacy Policy or how we handle your personal data, please contact us at:

enquiry@systemicpsychotherapyandconsulting.com

You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO) if you believe that your data protection rights have been violated.