I take the privacy of your data seriously. I want to ensure the rights of GDPR, which is about protecting your right to privacy, not just the laws obliging data protection. This includes everyone who comes into contact with Therapydia and I endeavour to update this regularly. Here is a list of what I do to protect your personal information.
Your clinical notes are held safely within files, limited to access by myself.
I require all other parties working with myself (such as a clinical supervisor or an accountant) to sign a confidentiality agreement.
Where possible, any specific files containing your personal details are password protected implementing a two-step authentication.
Emails remain confidential.
I only use software where data security is fully implemented and where their adherence to GDPR compliance is confirmed in their Terms and Conditions. In particular we use Zoom for online therapy sessions: https://support.zoom.us/hc/en-us/articles/360000126326-Official-Statement-EU-GDPR-Compliance
Files of a personal nature are sent using a specific web-based encrypted service, WeTransfer.com. Alternatively, I may send them using a password-protected file attached to an email. If I use this second method we send the password via a different method, either using a mobile phone message or a Signal (Android and apple app) message.
We will never share or sell your information.
If you would like to have your details removed from our system, partially or entirely, we will be happy to do so, providing that there is no adverse reason (such as a complaint or a legal reason) preventing us from doing so.
I will review our data protection policy annually to ensure it is still fit for purpose and complies with current regulations. here.
We work with Healthcode for enhanced GDPR and easy billing for insurance purposes where applicable.