GDPR: General Data Protection Regulation
In order to be GDPR compliant, my professional body, the UKCP (UK Council for Psychotherapy) requires counsellors and psychotherapists to update their guidelines related to The General Data Protection Regulation (GDPR). This came into force in the UK on 25th May 2018.
What does this mean for myself and my clients?
I have to update my practice privacy policy to ensure that you are completely clear in all the ways I will (and ways I won’t) manage your confidential data. I’d like to make it clear that:
I regularly have clinical supervision for my professional development and the wellbeing of my clients. My clinical supervisor is bound by the same rules of confidentiality, ethics and rules of GDPR.
Your data is held for the purpose of providing you with appropriate high quality, safe and effective therapy treatment.
These details will never be passed onto third parties. However if data is required to be shared with outside healthcare (or other) professionals who need to be involved in your care, we will first discuss this request, and it will be shared in a secure manner.
You will be required to sign your approval for me to maintain confidentiality of all information relating to you and our work. Your name, contact details and my personal clinical notes, will be kept secure for a total of six years. This period is recommended by my indemnity insurers. After this time, all data will be carefully shredded.
For further details on the UKCP GDPR regulations, please visit:
UKCP/GDPR(UKCP/GDPR)
