The General Protection Data Regulation (GDPR)

The General Protection Data Regulation (GDPR) sets requirements to those who have a day-to-day responsibility for the protection of data. It also makes it easier for people to control how their data is used.

What information will DJH Counselling hold and how will it be used?

During our initial consultation, I will ask you for your name, date of birth, contact details and GP information.

I may also require background information regarding your medical history and current medications in order to ensure I am able to work with you ethically. Without this information, I will not be able to take you on as a client. 

Any information collected for counselling  sessions will be held in the strictest confidence. No personal details will be passed on to external parties unless ordered by the courts, or if I have reason to believe you are a serious risk to yourself or others. In certain situations I am not obligated inform you I am passing on your personal information (e.g. if there is a child protection issue or you are a harm to yourself or others).

Client cases will be discussed at my monthly supervision meeting with my supervisor, which I am required to do to ensure I am carrying out the best practice possible, and that the standards of my professional and regulatory body (BACP) is being met. However, identifiable information such as your full name or date of birth will not be given.

How is my data kept and how long is it kept for?

In order to remember specific details important to you and your therapy, and to be able to refresh my memory from our previous sessions before each time we meet, I will take notes at the end of every session. Any written records will be locked away when not in use, and those held on computer will be password protected.

Client data is not kept for longer than necessary.

If you send an enquiry by phone or email but decide not to become a client, you have the "Right to be Forgotten" and ask me to delete any data I have for you. You cannot request for certain data to be deleted if you are a current client or have been in the last 7 years, as I am required to keep this in line with my registered bodies' guidelines (i.e. case notes). However, you are entitled to view your data to ensure it is accurate and up-to-date.

What happens if my data is lost or stolen?

In the unlikely event that personal data is breached, the Information Commissioner's Office (ICO) will be notified within 72 hours and the relevant individual(s) will be notified. Action will then be taken by DJH Counselling to ensure the breach does not happen again.

Learn More