Privacy Notice

1.  General

We are Caroline Feldon Therapy and our registered address is at Burton Road, Overseal, South Derbyshire, DE12 6JL. We take the privacy of your information very seriously and this Privacy Notice is designed to tell you about our practices regarding the collection, use and disclosure of personal data which may be obtained via our website or other means including online forms, email, or phone.

In this notice “you” refers to any individual whose personal data we hold or process (but it does not relate to personal data relating to our employees or staff).

In general, we provide counselling and psychotherapy services. If we do provide such services to you, please note a separate “Privacy Policy for Clients” will apply and will be provided to you. We do not process personal data on a large scale, but we will hold and process personal data in order to supply our services and this privacy notice explains how we do so.

This notice is governed by the EU General Data Protection Regulation (the “GDPR”), UK GDPR, Data Protection Act 2018 and any other applicable data or privacy legislation.

2.  Categories of Personal Data and Legal Basis

Below we have set out the categories of data we collect and how we process the data (for information about legal basis, please see below):

We will hold contact information for our users who have registered with us, such as name, email address and telephone number (for authentication) (“Contact Information”) which we will use to provide our services and communicate with you.

We may hold GP and emergency contact details for our users who have registered with us, which we will only use with your consent or in case of emergency.

All personal information disclosed will be kept confidential and not used for any purposes other than a counselling record.   This agreement shall be construed and governed in all respects in accordance with the laws of England and Wales and any dispute or differences in relation to this agreement shall be subject to the exclusive jurisdiction of the English Courts. 

3.  Data retention

Our current data retention policy is to delete or destroy (to the extent we are able to) personal data in accordance with the following retention periods:

Information relating to our website users

We will hold information for registered and non-registered users for Caroline Feldon Therapy for 7 years from the date on which we collect the data, or as required by my professional insurance; or if later, from the date on which you cease to be a registered user.

The retention periods stated in this notice can be prolonged or shortened as may be required.

We review the personal data (and the categories of personal data) we hold on a regular basis to ensure the data we are holding is still relevant to our business and is accurate. If we discover that certain data we are holding is no longer necessary or accurate, we will take reasonable steps to correct or securely delete this data as may be required.

If you wish to request that data we hold about you is amended or deleted, please see Section 7 below, which explains your privacy rights.

4.  Sharing your information

We do not disclose any information you provide to any third parties other than as follows:

From time to time we will transfer personal data to our sub-processors; we may be required to disclose certain data to regulators or other lawful authorities; if we are under a duty to disclose or share your personal data in order to comply with any legal obligation (for example for the purposes of prevention of fraud or other crime); in order to enforce any terms and conditions or agreements for our services that may apply.

Other than as set out above, we shall not disclose any of your personal data unless you give us permission to do so. If we do supply your personal data to a third party, we will take reasonable steps to ensure that your privacy rights are protected and that third party complies with the terms of this notice.

5.  Security

We will take all reasonable steps to ensure that appropriate technical and organisational measures are carried out in order to safeguard the information we collect from you and protect against unlawful access and accidental loss or damage. We will take reasonable steps to ensure that our employees are aware of their privacy and data security obligations.

6.  Cookies

Like most websites, we use cookies to help provide you with the best experience whilst using our service. Cookies are used to retain user preferences, store information for things like shopping carts, and provide anonymised tracking data to third party applications.

If you choose not to accept or disable certain cookies, this will not affect your access to the majority of information available on our website however certain online services may not be available.

7.  Your privacy rights

With respect to your personal data, you have the right to:

request that your personal data will not be processed; ask for a copy of any personal data that we have about you; request the correction of any errors in or update of the personal data that we have about you; request that your personal data will not be used to contact you for direct marketing purposes; request that your personal data will not be used for profiling purposes; request that your personal data will not be used to contact you at all; request that your personal data be transferred or exported to another organisation, or deleted from our records; or at any time, withdraw any permission you have given us to process your personal data.

All requests or notifications in respect of your above rights may be sent to us in writing at the contact details listed below.

We will endeavour to comply with such requests as soon as reasonably possible but in any event, we will comply within one month of receipt (unless a longer period of time to respond is reasonable by virtue of the complexity or number of your requests).

8. Data breaches

If personal data we hold about you is subject to a breach or unauthorised disclosure or access, we will report this to our data protection manager and/or the ICO as is deemed necessary.

If a breach is likely to result in a high risk to your data rights and freedoms, we will notify you as soon as reasonably possible.

9. Transferring your information outside the UK or EEA

We will not transfer your personal data in a systematic way outside of the European Economic Area or UK but there may be circumstances in which certain personal information is transferred outside of the European Economic Area or UK.

If we transfer your information outside of the European Economic Area or UK, and the third country or international organisation in question has not been deemed by the EU Commission or Secretary of State (as the case may be) to have adequate data protection laws, we will provide appropriate safeguards and we will be responsible for ensuring your privacy rights continue to be protected as outlined in this notice.

10. Notification of changes

We will post details of any changes to our privacy notice on our website. Please ensure you check the website regularly for any updates.Have a means of contacting you outside session times when necessary

11. Contact us

If at any time you would like to contact us with your views about our privacy practices, or with any enquiry or complaint relating to your personal information or how it is handled, you can do so by contacting us at

12. Complaints

If we are unable to resolve any issues you may have or you would like to make a complaint, you can contact the ICO at or on 0303 123 1113.


This wording was purchased from Private Practice Paperwork Ltd. and no part of it may be copied, shared or published elsewhere without direct purchase and authorisation from their website.