top of page

Privacy Policy

Your privacy is important to me. This policy explains how I collect, use, and protect your personal information, in line with:

  • General Data Protection Regulation (GDPR, EU/2016/679)

  • Data Protection Act 2018

  • Privacy and Electronic Communications (EC Directive) Regulations 2003

I am registered with the Information Commissioner’s Office (ICO), registration number ZB906075.

Who I Am

I’m a qualified therapist offering a safe, confidential, and respectful space to explore whatever brings you to therapy. I understand how important it is to feel safe and supported when sharing personal experiences. As such, I take data protection and confidentiality very seriously.

What Information I Collect

When you get in touch or begin therapy, I may collect:

  • Your name and contact details (email address and phone number)

  • Brief anonymised session notes (non-identifiable factual notes about our work)

  • Administrative details, such as appointment dates and payment records

I do not record sessions or collect unnecessary information beyond what’s needed to provide therapy safely and professionally.

Why I Collect Your Data

I collect this information in order to:

  • Arrange and manage therapy sessions

  • Provide a safe, ethical, and effective service

  • Meet professional and legal standards

  • Maintain accurate records for supervision and insurance purposes

I do not use your data for marketing or share it with third parties.

Confidentiality

Everything discussed in therapy is treated with strict confidentiality. In accordance with the BACP’s Ethical Framework, and as per our therapy agreement, there are the following limitations-

To maintain professional standards, I am required to engage in supervision. In supervision:

  • I discuss aspects of our work to ensure best practice

  • I never share any identifying details

  • The supervisor is also bound by professional confidentiality

There are rare situations where I may need to break confidentiality, including:

  • If there is a serious risk of harm to you or someone else

  • If there is disclosure of serious criminal activity (e.g. terrorism, money laundering)

  • If required by law or court order

Wherever possible, I will discuss this with you before taking action. 

How Your Data Is Stored

  • All records are anonymised and stored digitally in secure, password-protected files

  • Your name and contact details are kept separately from session notes

  • My email and scheduling systems are password protected and accessible only to me

Online Sessions (Zoom & Google Meet)

I primarily use Zoom for online sessions. If needed, I may use Google Meet as a secure backup platform.

  • Sessions are never recorded

  • Both platforms use encryption to help protect your privacy

  • You’re encouraged to join sessions from a private, quiet space with a secure internet connection

How Long I Keep Your Data

  • If you make an enquiry about therapy but choose not to proceed, I will delete your contact information (name, email, phone number) after three months. Please get in touch if you would like it deleted sooner.

  • If you begin therapy, your anonymised notes and admin information will be securely stored for five years after your final session, in line with professional standards. They will then be permanently deleted.

Your Rights

Under GDPR, you have the right to:

  • Request a copy of the personal data I hold about you

  • Have inaccurate information corrected

  • Withdraw your consent at any time (where applicable)

  • Request deletion of your data (unless I have a legal or ethical reason to retain it)

To make a request or ask any questions about your data, you can contact me directly at isabelwoodtherapy@gmail.com.

 

You also have the right to raise concerns with the Information Commissioner’s Office: www.ico.org.uk.

bottom of page