Privacy Policy
On 25 May 2018 the law changed with regard to how organisations have to protect your ‘data’ (personal details and records) and this is called the General Data Protection Regulation or GDPR. I take your privacy seriously and take care of your personal information complying with all applicable laws and regulations, including GDPR. In particular, I have the appropriate safeguards in place to hold your personal information safely and securely. Keeping records is an essential component of healthcare, which helps in understanding how best to help and forms the basis of any reports needed. It is assumed that by engaging with the service you are consenting to records being kept
Information I may hold about you includes: Name, Date of birth, Contact details, Family information, Health/medical information, Other information as disclosed by you. I obtain personal information from you for the purposes of providing services to you. I may also obtain information by liaising with other healthcare professionals responsible for your care as required or permitted by you.
Confidentiality is maintained at all times (i.e. your information is not shared) unless there are exceptional circumstances such as risk to yourself or others, when other services such as your GP or police may be contacted without your consent as this is a professional obligation. I may disclose personal information to third parties such as healthcare professionals and supervisors who I may be required to consult in connection with my services to you or as required by law. I will inform you before I do so and under conditions of strict confidentiality.
I use your personal information solely for purposes that are compatible with the purposes for which you provided the information to me. I may use and disclose the information on the basis of: your consent (which you may withdraw at any time), or if it is necessary to provide services to you. I may also use or disclose your information for our legitimate interests (e.g. to manage payments), or if it is necessary for us to comply with a legal obligation.
I will retain your personal information for so long as I provide services to you or as permitted or required by law (e.g. Mental health records are subject to special legislation - children’s records are kept until age 26 and adult records for 8 years after the last contact with the service. Some records may be held indefinitely if there were any issues of concern that could lead to police investigation in the future).
All information recorded on paper will be securely stored in a locked filing cabinet. Letters sent to professionals such as GP’s, by surface mail, will be clearly marked Confidential. Confidential digital information will be stored in a secure cloud service offering high levels of security. Confidential information sent by the psychologist via the internet will be encrypted and password protected, with this sent separately by text. All electronic devices (e.g. computer, laptop and phone) and used to access stored information will themselves be password protected.
You have the following rights in connection with the personal information I hold about you:
In the event of death or incapacity of the therapist, arrangements have been made for records to be held by a named individual who will continue with the above obligations.
Katherine O’Hanlon is a controller within the meaning of GDPR. Please contact me if you have any question about this Statement or the personal information we hold about you.
You have the right to complain to the Data Protection Commission, Canal House, Station Road, Portarlington, Co. Laois R32 AP23. Tel: 0761 104800/1890 252231. Email: [email protected]
Dr Katherine O’Hanlon, March 2019
On 25 May 2018 the law changed with regard to how organisations have to protect your ‘data’ (personal details and records) and this is called the General Data Protection Regulation or GDPR. I take your privacy seriously and take care of your personal information complying with all applicable laws and regulations, including GDPR. In particular, I have the appropriate safeguards in place to hold your personal information safely and securely. Keeping records is an essential component of healthcare, which helps in understanding how best to help and forms the basis of any reports needed. It is assumed that by engaging with the service you are consenting to records being kept
Information I may hold about you includes: Name, Date of birth, Contact details, Family information, Health/medical information, Other information as disclosed by you. I obtain personal information from you for the purposes of providing services to you. I may also obtain information by liaising with other healthcare professionals responsible for your care as required or permitted by you.
Confidentiality is maintained at all times (i.e. your information is not shared) unless there are exceptional circumstances such as risk to yourself or others, when other services such as your GP or police may be contacted without your consent as this is a professional obligation. I may disclose personal information to third parties such as healthcare professionals and supervisors who I may be required to consult in connection with my services to you or as required by law. I will inform you before I do so and under conditions of strict confidentiality.
I use your personal information solely for purposes that are compatible with the purposes for which you provided the information to me. I may use and disclose the information on the basis of: your consent (which you may withdraw at any time), or if it is necessary to provide services to you. I may also use or disclose your information for our legitimate interests (e.g. to manage payments), or if it is necessary for us to comply with a legal obligation.
I will retain your personal information for so long as I provide services to you or as permitted or required by law (e.g. Mental health records are subject to special legislation - children’s records are kept until age 26 and adult records for 8 years after the last contact with the service. Some records may be held indefinitely if there were any issues of concern that could lead to police investigation in the future).
All information recorded on paper will be securely stored in a locked filing cabinet. Letters sent to professionals such as GP’s, by surface mail, will be clearly marked Confidential. Confidential digital information will be stored in a secure cloud service offering high levels of security. Confidential information sent by the psychologist via the internet will be encrypted and password protected, with this sent separately by text. All electronic devices (e.g. computer, laptop and phone) and used to access stored information will themselves be password protected.
You have the following rights in connection with the personal information I hold about you:
- To require access to the information I hold;
- To require rectification of any inaccurate or incomplete information;
- To require the erasure of any information, or restriction of its use, in certain circumstances;
- To object to our use of the information, in certain circumstances; and
- To require porting or transfer of the information to a third party
In the event of death or incapacity of the therapist, arrangements have been made for records to be held by a named individual who will continue with the above obligations.
Katherine O’Hanlon is a controller within the meaning of GDPR. Please contact me if you have any question about this Statement or the personal information we hold about you.
You have the right to complain to the Data Protection Commission, Canal House, Station Road, Portarlington, Co. Laois R32 AP23. Tel: 0761 104800/1890 252231. Email: [email protected]
Dr Katherine O’Hanlon, March 2019