Under the changes to Data Protection Law, 25th May 2018 we are obliged to let all clients and students know these facts:
1 Phoenix EFT is registered with the Information Commissioner Office (ICO) and we comply with all of the elements of current Data Protection Law which relate to our business.
2 We record the following types of information electronically:
2.1 For the purpose of maintaining contact and promoting services: Name, Address, Telephone number, Email address
2.2 For the purpose of financial accounting: Details of payments that have been made to us for goods or services and payments that we may make to you – name, amount, date and type of payment only. We do not hold your bank account or card details.
2.3 For training, certification and accreditation purposes: Levels, dates, types of training, assessment records, levels and dates of certification awarded.
All of this information is password protected and is never passed to third parties unless you have given us verbal or written permission to share information.
3 For clients we also record the following information on paper, kept securely in a locked filing cabinet:
3.1 For the purpose of maintaining contact: Name, Address, Telephone number, Email address
3.2 For therapeutic purposes: dates and type of sessions, family details, lifestyle and social circumstances, employment and education details, responses to work done, recommendations for future work.
3.3 Only if relevant to a client`s case we may also record some sensitive classes of information: details of physical, emotional or mental status, religious or other beliefs, sexual life, offences or alleged offences
3.4 For safeguarding purposes: contact details for your GP and your Next of Kin
For Insurance purposes: We are required to maintain your therapeutic records safely and securely for 7 years after your last session with us (or to age 21 in the case of a minor). After that, or on the death or retirement of your therapist, the records will be securely destroyed.
4 Sharing of Information: We sometimes need to share the personal information we process with the individual client or student and also with other individuals or organisations. Where this is necessary we are required to comply with all aspects of the Data Protection Act (DPA). Normally information is not shared unless you have given us written or verbal permission to share information with named third parties. If safeguarding issues are involved for yourself or others we may need to share information without your direct consent.
If necessary or required by law we may sometimes share information with:
- Healthcare professionals
- Social and welfare organisations
- Business associates such as other complementary therapists
- Family, associates and representatives of the person whose personal data we are processing
- Professional organisations and examining bodies
5 You have a right to see copies of information which is held about you if requested in writing. We are obliged to provide that information within 40 days of the request being received.
6 You have a right to ask us to delete or destroy all of the information that we may hold about you. If we are not required by law or for safeguarding purposes to maintain that information we will comply with your request.
92 Castle Lane