GDPR Statement

As a student hypnotherapist, I may need to gather certain personal information from my clients to develop the best treatment plan to cater for their precise needs.

In managing and storing this data, I adhere to the General Data Protection Regulation (GDPR) legislation as well as the Code of Ethics set by the National Council for Hypnotherapy (NCH).

The Hypnotherapy Lounge is part of the limited company Amber365 Limited, which is registered with the ICO. You can learn more about this at https://ico.org.uk

Ingrid Radford is a director of Amber365 Limited and is the Data Controller and Data Protection Officer for the Hypnotherapy Lounge.

GDPR Privacy Notice

The EU General Data Protection Regulation (GDPR) is a privacy and data protection regulation in the European Union effective from May 25 2018.

GDPR imposes new obligations on organisations that control or process personal data and introduces new rights and protections for EU citizens.

Student Hypnotherapist Ingrid Radford is committed to ensuring that your privacy is protected and we strictly adhere to the provisions of all relevant Data Protection Legislation, including GDPR, ensuring all personal data is handled in line with the principles outlined in the regulation:

GDPR Personal Data Overview

Personal data shall be:

  1. Processed lawfully, fairly and in a transparent manner in relation to the data subject
  2. Collected for specified, explicit and legitimate purposes and not further processed in a manner that is incompatible with those purposes
  3. Adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed
  4. Accurate and, where necessary, kept up to date
  5. Kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed
  6. Processed in a manner that ensures appropriate security of the personal data, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organisational measures

Ingrid Radford respects our customer and learner’s rights to data privacy and protection, and as such we have revised our internal policies, procedures, and working practices in order to meet the requirements of the GDPR.

Ingrid Radford places a high priority on protecting and managing data in accordance with accepted standards and, indeed, helping our customers utilise our products and services to the same end.

Ingrid Radford is committed to compliance with the GDPR to ensure GDPR implementation is reviewed on an ongoing basis.

How Long Will You Hold My Information For?

The National Council for Hypnotherapy (NCH), with whom Ingrid Radford is registered, requires client data to be securely stored for 8 years after the last interaction for an adult and up to the age of 25 for a child.

What If I Want My Data Destroyed Before this Date?

Due to the sensitive nature of what we do, my insurance company and the National Council for Hypnotherapy (NCH) do not allow the deletion of client data before the above timeline defined.

Am I Able To Get A Copy Of The Information Of Me That You Hold On Record?

Yes, In line with GDPR, I will provide all the data I hold within 30 days via email or signed-for post.

What Are The Reasons You Hold My Information?

I hold your information to provide personalised hypnotherapy services, ensure continuity of care, maintain accurate records, and comply with legal and regulatory obligations. 

Your data allows me to tailor sessions to your needs, communicate effectively, and manage appointments securely in accordance with GDPR and ethical confidentiality practices.

How Do I Know You Will Store My Data Securely?

I store your data securely by using encrypted digital systems and password-protected devices, and use 2FA where possible, fully complying with GDPR standards. 

Any physical records are kept in locked storage accessible only to me. Regular security reviews and strict confidentiality measures ensure your information is protected against unauthorised access, ensuring your privacy and peace of mind.

Are Our Discussions Within The Hypnotherapy Sessions Confidential?

Yes, all discussions during hypnotherapy sessions are confidential and protected under GDPR and professional ethical guidelines. 

I will not share your information without your explicit consent, except in cases of legal obligation, such as safeguarding concerns. Your trust and privacy are my top priorities, ensuring a safe and secure environment.

I am permitted to request support from my supervisor should I believe you are about to harm yourself or another person.

What If I See You Outside Of A Hypnotherapy Session?

If we meet outside of a hypnotherapy session, I will respect your privacy and not acknowledge our professional relationship unless you initiate contact. This ensures your confidentiality and comfort. You are welcome to engage as you feel appropriate, with no obligation to interact or discuss our sessions in public settings.

Will You Discuss Information About Me With Other Health Care Professionals?

I will only discuss your information with other healthcare professionals if it is necessary for your care and with your explicit consent. This ensures continuity of support while maintaining your confidentiality. 

How Can I Contact You Regarding GDPR?

Further information is available within our Privacy Policy and Patient Privacy Policy. If you have any further questions, please contact [email protected]