top of page

Privacy Policy

A Legal Disclaimer

At therapyworksbristol, one of our main priorities is the privacy of our visitors. This Privacy Policy document contains types of information that is collected and recorded by us and how we use it.

If you have additional questions or require more information about our Privacy Policy, do not hesitate to contact us through our contact form available on our main site.

Please note that therapyworksbristol operates under the applicable laws of the United Kingdom. 

General Data Protection Regulations (GDPR)

Our legal basis for collecting and using the information described in this Privacy Policy depends on the information that we collect and the specific context in which we collect the information:

  • Our needs to perform a contract with you

  • You have given us permission to do so

  • Processing your personal information is in our legitimate interests

  • We need to comply with UK law

 

Personal data that we process shall not be kept for longer than is necessary. We will retain and use your information to the extent necessary to comply with our legal obligations, resolve disputes, and enforce our policies.

 

If you are a resident of the European Economic Area (EEA), you have certain data protection rights. If you wish to be informed what information we hold about you and if you want it to be removed from our database, please contact us by email.

Your Rights

In certain circumstances, you have the following data protection rights :

  • The right to access, update or to delete the information we have on you.

  • The right to withdraw consent

 

Contact Form

When you contact us via our website, we will collect your name and email address. By using the Contact Form you consent to us using this information for correspondence purposes, to discuss your interest in hypnotherapy treatment and to book appointments. To have your email deleted from our records, please contact us by email.

Blog Subscription Service

When you sign up to our blog subscription service, we will collect your email address. By using the blog subscription service you consent to us using this information in order to send you by email our blog Posts as and when they are published. To unsubscribe and have your email deleted from this service, either click “Unsubscribe” at the bottom of a blog Post email, or contact us by email.

Testimonials

Subject to your prior consent, we may publish information you provide about treatment you received from us as a testimonial on our website. Such information may be available, via the internet. We cannot prevent the use (or misuse) of such information by others. To have your testimonial deleted from our website please contact us by email.

 

Note: Actual results may vary from those stated as results from therapy cannot be guaranteed. ​

Consent

By using our website, you hereby consent to our Privacy Policy. We may update this Privacy Policy from time to time. You are also agreeing that you understand that the success of therapy is not guaranteed and outcomes may vary.

Privacy Policy FAQs

1. Privacy Notice How will my data be stored? 

In May 2018 the Data Protection Act was replaced by the General Data Protection Regulations (GDPR). The changes to the Data Protection Act are aimed at ensuring that your personal, confidential and sometimes sensitive data, is held privately and securely. 

2. How long will you hold my information for? 

In line with the policy of the National Council for Hypnotherapy (NCH) written records are stored securely for 8 years after the last interaction with an adult client and up to the age of 25 for a child under 16 when last seen or 26yrs for 17-18 years old. 

3. What if I would like my data to be destroyed before this date? 

Due to the sensitive nature of what we do, my insurance company does not allow the deletion of data, before the minimum time for holding said data. 

4. Am I able to see or get a copy of the information held by you? 

In line with GDPR, yes, within 30 days. 

5. What are your reasons for collecting this information? 

Hypnotherapists collect GDPR relevant personal information for specific and legitimate reasons to ensure a safe, effective and professional service while adhering to legal and ethical requirements.

The primary reason for data collection is to fulfil the therapeutic contract between hypnotherapist and client involved with creating a customised treatment plan, ensuring client safeguarding, maintaining session continuity, maintaining effective communication and conducting legitimate business management activities.

All therapy is operated under the applicable laws of the United Kingdom.

 

6. How do I know that you will store my information securely? 

A combination of physical and electronic storage methods are used to securely store information in line with GDPR.

 

Physical Storage

This applies to initial consultation forms, signed consent forms and handwritten session notes.

All physical client files are stored in a locked cabinet (e.g. filing cabinet with a key). This cabinet is located in a secure non-public area of the practice and behind a second locked door.

Where practical information is anonymised thereby separating identifiable client information from sensitive session notes.

Electronic Storage

This applies to electronic notes, emails, contacts forms, text messages and online booking system data.

All devices used to store client data are protected by password, pin or biometric security with full disk encryption.

Sensitive client files are additionally stored in password protected electronic folders using data encryption using secure cloud storage software.

All files are to be permanently deleted and/or securely destroyed at the end of the mandatory retention period.

7. Are our discussions within the hypnotherapy sessions confidential? 

Yes, unless I need support from my supervisor or I believe that you are about to harm yourself or another. 

8. What if I see you outside of a hypnotherapy session? 

In respect of hypnotherapist client privacy I will not directly approach you to engage in conversation. You may approach me for non-session related discussion if you wish, however this is at risk to your own privacy and all therapy based conversation should be avoided.

9. Will you discuss information about me with other health and social care professionals? 

Only with your written consent. 

10. Who is the Data Controller and what is their ICO registration number? 

Organisation Name: CPHT (SOUTH WEST) LIMITED                     

Reference: ZB939780

bottom of page