‘PRIVACY POLICY’

 

Terms [“Data Controller” me] [“Data User” you]  [“the Site”] [“Owner”]

 

The GDPR is a EU Law whose objectives are to protect EU citizen's personal information and to regulates how data is collected, stored or used -  you can find out more about this at  https://ec.europa.eu/info/law/law-topic/data-protection_en.

The ‘Data Protection Act 1998’ was replaced by the ‘European General Data Protection Regulations’ (GDPR) on 25 May 2018. The UK left the EU on the 31 December, 2021 and has its own version UK-GDPR (United Kingdom Data Protection Regulation) which took effect 31 January 2020.

Introduction

This is the Privacy Policy for this website: http://www.carolsuchleycounselling.co.uk (the “Site”) owned by Carol Suchley known as the [“Data Controller"] [“Owner”].

 

“The Site” describes what information is collected from visitors for the normal operation of this website, how this information is held, consent, and information regarding use of data, your rights to access, correction, and deletion of your personal data.

 

The “Data Collector” agrees to comply with the terms of the General Data Protection Regulations (GDPR), Data Protection Act 2018 when collecting storing or using your information. This website operates under the jurisdiction of the United Kingdom.

 

This Privacy Policy applies exclusively to this website in relation to Counselling Services, so if you link to any websites, agencies, directories or any other third-party from this website you are responsible and will need to read their ‘Privacy Policy’.

 

By visiting and using this site you are consenting to the collection, use and disclosure of your personal information in line with this privacy policy. Information relating to this site should not be relied upon as it is not legal advice.

Visitors to my Website

“The Site” known as "Carol Suchley" (“carolsuchleycounselling.co.uk”) uses “Wix analytics” to improve its service to you. “Wix Content Management System” is the content management system for this site. When you visit this site will collect standard internet log information, details of behavior patterns of visitors to this site, to find out the number of visitors to various parts of the site. Information is processed in a way that is not identifiable to anyone and does not attempt or allow to find out the identities of visitors to the site. You can find out more information about this by visiting About Privacy | Wix

This site may also use other third-party services such as “Google Analytics” to track session duration, pages per session, bounce rate of individuals using the site, along with information regarding traffic source activity on this website. To opt out of tracking by “Google Analytics” across websites you can visit http://tools.google.com/dipage/gaoptout-

What is the lawful basis for holding and using personal data?

Legitimate interest is the lawful basis for holding and using personal data when you visit this site. If you fill in a form on this site it will be temporarily stored on the web host before being sent.

 

You can browse this site without disclosing who you are. As you use this site you can enter or send personal information, as an example; via the content form on this site, or by e-mail. You have the choice not to provide information by not making contact through this site or by e-mail.

Cookies

It is important under Data Privacy Law and Regulations that any site visitors are informed about the use of cookies on this site. Visitors to “the Site” must be given the choice whether or not to consent to the use of cookies before the collection or processing of personal data.  GDPR applies to “controllers” and “processors” who determine and are responsible for the processing of personal data.

 

This website uses cookies that help the function of the site, help interaction and provide you with improved and custom user experience. Cookies help identify registered members (registered users if any to this site), monitor and analyse performance, effectiveness and operation of this website and ensure the safety and security of this platform.

 

“The site” may use cookies from third-party apps or third-party processes that enhance and work with this site that may place additional cookies on this site. You can read more about how cookies are used by visiting www.allaboutcookies.org

 

A cookie compliancy banner is used on this site for visitors cookie preferences and consent. This allows visitors to “the Site” the opportunity to agree or decline non-essential cookies on this site.

 

You can set your browser to not accept cookies and the above website also tells you how to remove cookies from your browser. However, doing so may interfere with website features and may not function as a result, and is entirely at your own discretion.

Data Security

The ‘Data Controller’ will take all reasonable steps to prevent any incompatibility or breach when communicating with you via e-mail or text message. This means that any systems or devices be kept free from harm, virus; although the ‘Data Controller’ cannot be held responsible for all communications being free from virus or harm.

 

This website uses (TLS) Transport Layer Security protocols which encrypts information that is sent electronically. This website comes with HTTPS security protocol validated with an SSL certificate. Types of personally identifying information (PII) collected on this website, as defined by the GDPR. IP address, name, address, email address (should you choose to contact the “Data Controller”). The protection of your data is of the utmost importance, however, the ‘Data Controller’ cannot be held fully responsible or completely guarantee the security of any information provided electronically through this site.

How is information used?

Information is used from current or past visits to this site to provide you with services offered by this site, resolve any service disputes, troubleshoot problems, measure consumer interest, this could be via a counter or via products and services, and to inform you of the products, services, events, offered and/or any updates, to customize the experience you receive, detect and protect against fraudulent activity, error, criminal activity within the system, administrative purposes for the service provided. Your privacy is important therefore steps have been taken to ensure this site does not use cookies (text files) that unnecessarily track your activity on this site.

Data Retention

Information may be retained for as long as is necessary in order to provide you with a good service unless you request the deletion of your data. Information will kept or used when necessary to comply with any legal, or other obligation, or to resolve disputes, enforce agreements and may go past the date you request the deletion of your data.

GDPR Statement

The ‘Data Controller’ gathers data solely for the purpose of “counselling services” and in compliance with the General Data Protection Regulations (GDPR) 2018 which means this site will be transparent about how data is collected and used.

 

Under the GDPR you have a right to:

  • request to see your notes

  • ask the ‘Data Controller’ to amend your records

  • to delete personal information

  • limit how the ‘Data Controller’ uses your personal information

  • stop processing your personal information

You can read about your rights at www.ico.org.uk/your-data-matters.

What happens if I want my information destroyed?

It is possible that some information such as ‘sensitive category information’ may need to be retained for lawful purposes. The ‘Data Subject’ must put a ‘subject access request’ in writing to contact@carolsuchleycounselling,co.uk stipulating what information they are asking for.

One month’s notice must be given. The ‘Data Subject’ will need to provide two forms of ID, one form of ID must be proof of current residential address. This service is free (however, in my opinion should a request be manifestly unfounded or excessive, I have the right to refuse or decide to charge for subject access requests).

What happens if my subject access request is refused?

You will be told why your subject access request is refused.

‘Data Subject’s’ have the right to complain to the supervisory authority and to a judicial remedy. This must be done within one month.

 

If you wish to make a formal complaint about the processing of your information you can contact the ICO who is the statutory body that oversees data protection law in the UK. Further information can be found at www.ico.org.uk/make-a-complaint.

Wycliffe House

Water Lane

Wilmslow

Cheshire

SK9 5AF

0303 123 1113 (local rate)

 

This Privacy Policy is reviewed on a regular basis and any updates will be shown on this webpage so please check back regularly.

 

Last updated: October 2021