Privacy Policy and Client Data Protection

Tick

Part A: Daisy Vision Privacy Policy and Data Protection on our Website

Who we are

Daisy Vision provides online and telephone counselling, and we are based in Derbyshire.
Our website address is: http://daisyvision.co.uk.
You can contact us:
  • by phone: 07726 465229
  • by email: [email protected]
  • by website contact form: https://daisyvision.co.uk/contact-us/

 

What personal data we collect and why we collect it:

Comments

When visitors leave comments on the site we collect the data shown in the comments form, and the visitor’s IP address and browser user-agent string to help spam detection.
An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture (if added by you) is visible to the public in the context of your comment.
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

 

Contact forms

When you submit a contact form, your first name, last name, email address and comment are sent via email to Daisy Vision. We make every effort to ensure the security of your data by using a secure email server. The content of these emails is kept for one year for customer service purposes, but will the information supplied will not be used for marketing purposes.

 

Registration forms, Login Forms and Profile Forms

When you fill in the forms to register, login or your profile, we have access to the following data: your Username, First name, Last name, Email address. We collect this data as a record of your interest in our counselling service and once a registration form is received we send you a link to our Online and Telephone Agreement and specific information about our therapy, which you can download and complete.
On receipt of your signed Agreement we carry out on Assessment of your needs and if we are able to offer you therapy, 'approve' your registration. This gives you access to our booking facility, enabling you to choose a date, time and means of delivery (Zoom video, audio, phone or email) for your first counselling session.
When you login the details you enter are protected by encryption and two-factor authentication provides a layer of security that protects you from password guessing and attacks.
To prevent unauthorized access, maintain data accuracy, and ensure the correct use of information, the software uses appropriate physical, electronic, and managerial procedures to safeguard and secure the information we collect online.
Your registration data is retained in our website's database indefinitely but can be removed if you make a request for us to do so.

Cookies

Like many websites, we use "cookie" technology to collect additional website usage data and to improve the site. A cookie is a small data file that we transfer to your computer's hard disk. We do not use cookies to collect personally identifiable information.
If you leave a comment on our website you may opt-in to saving your name, email address and website cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for a year.
When you visit our log in page, a temporary cookie is set to determine whether your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, several cookies are set up save your login information and your screen display choices. Login cookies last for two days, and screen options cookies for a year. If you select "Remember Me", your login will remain for two weeks. If you log out of your account, the login cookies will be removed.

 

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

 

Analytics - Who we share your data with

If you request a password reset, your IP address will be included in the reset email.
We share website usage data with Google Analytics, Rank Math and Cloudflare to enable us to monitor our websites performance, Zoom to enable us to connect with you on a conference call, with PayPal when making payments and with Google Calendar to enable us to keep a diary of our appointments.

 

How long we retain your data for

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see or edit information at any time (except they cannot change their username). Website administrators can also see and edit that information.

 

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

 

Where we send your data

If you make a comment, it may be checked through an automated spam detection service.

 

What third parties we receive data from

Currently, we do not receive information about you from third parties.

 

What automated decision making and/or profiling we do with user data

This does not take place on the personal data held on this website, either on an individual or an aggregated level.

 

What data breach procedures we have in place

Upon becoming aware of a breach, a risk assessment will take place immediately if a personal data breach has taken place it will be reported to the ICO within 72 hours, as required.
In case of a data breach, our system administrators will go through affected users and will attempt to reset passwords if needed after informing the user. We will create a fresh backup, scan the site for malware and attempt to identify the breach, removing any associated code and means of access. Subsequently we will look at preventative measures that will prevent a similar breach from happening again, and implement.

Part B - Counselling Practice

Confidentiality

The information shared with us is held in strict confidence, from the point on contact, including your personal details given in the Online Agreement and Contract with Daisy Vision.
Everything you discuss with your therapist, verbally and in writing, is confidential. You are under no obligation to discuss anything you do not wish to.
There are exceptions and limitations to confidentiality. Confidentiality may be broken if:
  • You or others are, in the opinion of the therapist, seen to be in danger or at serious risk of being harmed (including neglect to children and vulnerable adults)
  • The therapist is required to do so by subpoena (a court order or instructions from a coroner)
  • The client infers involvement in or knowledge of an act of terrorism or money laundering
  • The client infers knowledge of or involvement in drugs trafficking
  • The therapist became ill or incapacitated (in which case another professional at Daisy Vision would be given access to enable them to contact the client)

 

Supervision and confidentiality

Your therapist's practice is monitored and enhanced by attending regular supervision. There are times when aspects of therapy given may be monitored. However, individual identification of the client will not be used, and the supervisor will also be committed to confidentiality.

 

Clinical notes/Records of sessions

Your therapist will make brief notes during and following sessions, some handwritten, some on my computer. These will be stored in a locked filing cabinet or be password-protected.
Occasionally, sessions may be recorded as part of the therapist's self-evaluation and supervision. The client will be asked for consent before any recording takes place, and has the right to refuse.

 

Under the General Data Protection Regulations 2018 (GDPR) you have rights and should be aware of the following:
  • you can make a formal request to see your notes
  • records are kept for 5 years after termination of therapy, then destroyed
  • in the case of children under 18, are kept for 5 years after their 18th birthday

 

Email correspondence

Any email correspondence we have with you is through a secure mail server is encouraged to prevent interception by a third party. We encourage you, the client, to also ensure use of encrypted emails.
The content of your emails will not be communicated with anyone except for the purpose of supervision of counselling practice, in which case no identifying information will be used. The supervisor also follows the same procedures for confidentiality as already outlined.

 

Video or audio therapy

Video or audio counselling takes advantage of the encrypted services offered by Zoom, should you choose this method of counselling.

 

Telephone counselling

Your therapist will ensure that your conversations cannot be overheard, in order to ensure your privacy. You, the client should ensure you also speak on the telephone in private, without being overheard.

 

Social media policy

Your therapist does not accept personal 'friend' requests, from clients, past or present, in order to protect your privacy.
However, you are welcome to follow "Daisy Vision" on social media although you need to be aware that your confidentiality could be at risk as other users may guess you are a client.

 

After termination of therapy

All client material is removed from my computer at the end of our work together, and stored electronically on a password protected memory stick or drive and locked in a filing cabinet. Any hand-written notes will be securely stored in a locked filing cabinet; your personal contact details being stored separately to notes made during sessions on which client number is used to replace identification.

 

Consent in case of an emergency or referral

If at any point during the counselling you should need emergency support, your therapist may need to contact your GP, and another emergency contact. You will be asked for your consent to contact your doctor and an emergency contact before beginning therapy.
It is also possible for a doctor to request information on a client. Should this happen the request will be discussed with you and you will be asked for your consent before any information is shared.
During counselling, or as an alternative, you may be referred to other alternative means of support. Again should this be necessary you will be asked for your consent before any referal is made or information shared.

 

Compliance with GDPR

Daisy Vision is registered with the Information Commissioner's Office under the Data Protection Act 2018, Registration Reference: ZB320631.
About Us
Take a small step
Get in touch