General Data Protection Regulations (GDPR) for Clients of Priscilla Bacon-Wilson: As a psychotherapist and parenting coach I am required by law to tell you about how I store and what I do with the information and personal data that you give me. I am required to ask for your consent to be able to keep and to use the information and data in certain ways. As a Child Psychotherapist, I take my clients’ confidentiality and privacy very seriously and I follow a set of rules to help me keep information safe whilst also making sure that I can be the best therapist possible. You can withdraw your permission at any time, and I will remove your information and data from my records following the correct procedures. However, if you would still like to continue working with me then I may have to seek legal advice. What client information and data will I hold? I need to keep information and data so that I can work safely and professionally. This is advised by professional organisations that I belong to, including BACP (British Association for Counselling and Psychotherapy) and IATE (Institute for Art in Therapy and Education). The information and data may include: - 1. You and your child’s name and address 2. You and your child’s phone number and email address 3. An emergency contact’s name and phone number 4. Your child’s GP name and contact details 5. Relevant medical information 6. Artwork created during sessions 7. Session notes 8. Payment information 9. My emails to you, and yours to me 10. Invoices You have the right to view the information I hold and change any information; however, client artwork and session notes are private and confidential. This means they are private between myself and my client unless I have reason to believe that my client or someone they tell me about is in danger and when this happens I must legally pass on information to the relevant person in order to keep my client or someone they tell me about safe. When sensitive information and data is finished with by me, I will shred paper information and delete electronic information and data. If I find there has been a data breach of your personal information I will tell you as soon as possible. How, why, and for how long do I keep your information and data? How I keep this information All paper information and data I keep is in a locked filing cabinet or cupboard. All electronic data is password protected. Neither my computer nor my phone is shared with anyone else unless it is required by a technician for maintenance. All labelled paperwork and session notes are coded, rather than labelled by name. My supervisor has your first name and the code I use to identify you as well as your phone number and email in paper form in their locked filing cabinet. Why I keep this information I have been asked to keep some personal information by my professional liability insurer and by my professional organisations (BACP and IATE). I keep session notes to help me keep a record of themes and explorations over a period of time which means I can reflect on my client’s therapy journey. This helps my work as a therapist and allows me to carry out my practice to the best of my ability. As a small business owner, I am required by law to retain certain financial information, primarily for tax purposes. How long I keep this information My professional liability insurer advises that I keep personal data such as your name for seven years after the end of your therapy time with me. After that time, it is destroyed. I will remove any contact details when we have finished our work, unless you tell me that you would like me to retain it in case we work together again in the future My supervisor will destroy any data they hold when you and I finish our work together. When our work together ends, you may take some or all of your artworks away with you. If you choose not to take them, I will dispose of them securely after 1 term. My current policy is to destroy session records three years after our work finishes. If you would like me to retain them for a longer period, please discuss this with me. I keep financial information for 7 years as advised by HMRC. Who sees the information Banking transactions may be viewed by employees of the bank, my accountant, and tax officers (HMRC). My supervisor has your first name and the code I use to identify you as well as your phone number and email. All other information is seen only by me.