What Information Do We Collect?
We will collect personal information such as your name and contact information (address, email address, phone number). Depending on the service you are accessing, we may also ask you to provide information relating to personal circumstances, professional or educational experience where relevant. You will be asked at the point of assessment to consent to the gathering and storage of your data.
Surrey Counselling and Psychotherapy Partnership will:
What this will mean for you as a Surrey Counselling and Psychotherapy Partnership Client:
Before the commencement of your assessment session here at Surrey CPP you will be asked to consent to the following: Your data (contact information and assessment information) will be shared in the first instance clinical manager, operations director with the administration team for scanning and safe, password protected storage. From there this data will be shared with the therapist or trainee therapist to whom you have been allocated. In the event that the allocated therapist (or trainee) cannot find a mutually suitable time for therapy the data will be transferred back to reception and allocated to another therapist. The data is usually shared in hard copy but there will be some cases where the information needs to be shared electronically, for example where you, the client, have elected to see a therapist who is not based at The Surrey Centre. In these cases, the data will be password protected. This information will be held by Surrey CPP for 7 years from the date of your assessment.
Subject Access Requests
Anyone whose personal information we process has the right to know:
Individuals have a right under the Act to access certain personal data being kept about them on computer and certain files. Any person wishing to exercise this right should apply in writing to:
The Operation’s Director
Surrey Counselling and Psychotherapy Partnership
Tillow Barn, Roothill Lane, Brockham, Betchworth, Surrey, RH3 7AS
The following information will be required before access is granted:
We may also require proof of identity before access is granted. The following forms of ID will be required:
Queries about handling personal information will be dealt with swiftly and politely.
We will aim to comply with requests for access to personal information as soon as possible but will ensure it is provided within the 30 days required by the GDPR from receiving the written request and relevant fee.