I, Ursula Ambrose-Simpson (trading as Mathan Counselling), am committed to protecting the privacy and confidentiality of the personal information you share with me. I am the “Data Controller” for the information you provide through this website.
Information I Collect
When you use the consultation form on this website, I collect:
Identity Data: Your name and age.
Contact Data: Your email address and phone number.
Consultation Data: Any brief details about your reasons for seeking counselling that you choose to provide in the comment box.
Why I Collect This Information (Lawful Basis)
I collect this data to:
- Respond to your inquiry and schedule a consultation (Basis: Contractual Necessity – taking steps at your request before entering into a contract).
- Ensure I am providing age-appropriate care (Basis: Legitimate Interest).
- Special Category Data: Information regarding your mental health is considered “Special Category Data” under UK GDPR. I process this under the condition that it is necessary for the provision of health or social care.
Confidentiality and Data Sharing
Your data is treated with the highest level of professional confidentiality. I do not sell or share your data with third parties for marketing. I will only share your information:
- If I am required to do so by law or a court order.
- If I believe there is a serious risk of harm to yourself or others (Safeguarding).
- With my professional supervisor (who is also bound by confidentiality) as required by professional ethics.
Data Retention
- Inquiries: If we do not proceed to work together, I will delete your form submission data within 6 months.
- Clients: If we begin a therapeutic relationship, I am required by my professional insurance and UK law to keep clinical records for 7 years after our work ends, after which they are securely destroyed.
Security
I use Forminator, a secure WordPress form plugin, to collect your inquiry details.
Safety: While I take all reasonable technical and organisational precautions to prevent the loss or misuse of your personal information, please be aware that sending information over the internet is inherently never 100% secure.
Encryption: My website uses SSL (HTTPS) encryption to ensure that the data you submit via the form is encrypted as it travels from your computer to my server.
Storage: When you submit a form, the data is stored securely within my website’s database and is also sent to me via Gmail so I can respond to you.
Data Minimisation: I only collect the minimum information necessary to arrange a consultation.
Your Rights
Under the UK GDPR, you have the right to access the data I hold about you, to request corrections, or to ask for your data to be deleted (where it does not conflict with my legal obligations to keep clinical records).
ICO Registration
I am registered with the Information Commissioner’s Office (ICO), the UK’s independent body set up to uphold information rights.