Privacy notice
The Mindsmith Hypnotherapy is a clinical hypnotherapy practice committed to
protecting your privacy. Our privacy policy explains how your personal information is
collected, used, shared, and your rights regarding the data we hold.
How will my data be stored?
With the implementation of the General Data Protection Regulations (GDPR) in May
2018, replacing the Data Protection Act, the focus has been on ensuring the secure
and private storage of personal, confidential, and sometimes sensitive data.
How long will you hold my information for?
As a member of the NCH, I am bound on their regulations on holding your
information. The NCH specifies that written records should be securely stored for
eight years after the last interaction with an adult client and up to the age of 25 for a
child under 16 when last seen or 26 years for 17-18 year olds.
What if I would like my data to be destroyed before this date?
Under GDPR rules, you have the right to request the deletion of any of your records
at any time. If you wish to do so, please email me on:
mindsmithhypnotherapy@gmail.com and all your paper records will be shredded.
Any electronic data such as emails, text messages and contact forms will be
permanently deleted from the device they are stored on. Please note that I must
save the deletion request you made. It is possible that the legal team of my
insurance company may want me to verify the information sent out.
Can I see or get a copy of the information you hold?
In accordance with GDPR, you have the right to access and obtain a copy of your
information within 30 days.
What are your reasons for collecting this information?
Clearly outline the purposes for collecting the data.
How do I know that you will store my information securely?
Paper session notes- Stored in a locked filling cabinet.
Text face-recognition and password protected.
Emails- Stored on the computer that is password protected.
Electronic documents – Any electronic documents e.g. A letter to your GP, or an
invoice, are password protected and stored on a password protected computer if
they contain personal or sensitive information.
Are our discussions within the hypnotherapy sessions confidential?
Yes, confidentiality is maintained unless there is a need for supervision support or if
there is a belief that you may harm yourself or others.
What if I see you outside of a hypnotherapy session?
I am obliged by GDPR to protect your confidentiality. For this reason, although I will
acknowledge you, it would be appropriate to avoid conversation.
Bare in mind that if you wish to discuss your therapy with other people, you are
welcome to do so.
Will you discuss information about me with other health and social care
professionals?
Information will only be shared with other health and social care professionals with
your written consent.
The only exception would be if I believed that you were about to harm yourself or
others. In this case I would be required to inform the relevant authorities as part of
my ‘Duty of Care’. However, I would make every effort to discuss this with you before
taking any action. Legally. I would also have to provide information to the police as
set out in a warrant or court order, should the situation arise.
Who is the Data Controller, and what is their ICO registration number?
Dr Bianca Santini
Registration reference: ZC038491