Privacy Notice

Last updated: 9th August 2025

Let's talk about your data like adults

I'm legally required to have this page, so here we are. But unlike most privacy notices that read like they were written by robots having a breakdown, I'll explain what I actually do with your information in plain English.

The short version: I keep your details secure, I don't sell them to anyone, and I only share what I legally have to. Everything else stays between us.

The long version: Because the law loves detail, here's everything you need to know.

What information I collect

This is pretty straightforward:

  • Basic contact stuff: Name, email, phone number, age
  • Health information: Medical conditions, medications, relevant history
  • Session notes: What we talk about (but anonymised)
  • Your consent: That you're okay with me processing this data

Why I need this: Because therapy without context isn't therapy, it's just expensive conversation.

How I store your information

I take security seriously, but I won't bore you with technical jargon. Here's what happens:

Email: Stored with iCloud - Apple's security is robust, with encryption and two-step verification enabled.

Text messages: Via iMessage or WhatsApp - both encrypted.

My computer: Password-protected, encrypted Mac. Session notes are stored separately from your personal details and anonymised.

Scheduling: Acuity Scheduling handles first appointments. They get your name, email, phone number, and appointment history for initial bookings.

Payments: UK clients pay by bank transfer after the first session (which is booked and paid for through the booking system). International clients use Stripe for secure card processing.

Online sessions: Zoom for video calls. They only see appointment names from the scheduling system.

When I have to share your information

Supervision: I meet with my supervisor twice monthly to discuss my work (it's an ethical requirement). They don't know who you are - I use first names only and they have no access to your personal data.

Emergencies: If you're at serious risk of harm and consent, I might need to contact your GP or crisis services. If you're planning to harm others, I may be legally required to inform authorities without your consent.

If I die or become incapacitated: My therapeutic executor will contact current clients to let them know. These contact details are stored securely with clinicalwill.app.

When I delete your information

Personal details: Deleted one month after we finish working together.

Session notes: Kept for up to seven years in case you return to therapy, then deleted. This is standard practice and helps if we work together again in future.

Your rights

You can:

  • Ask what data I hold about you (free for the first request)
  • Correct any mistakes
  • Withdraw consent
  • Request deletion (though I might refuse if I need the information for ethical practice)

The bottom line: I treat your information the way I'd want mine treated - securely, respectfully, and with the minimum fuss necessary.

This privacy notice forms part of our contract when we begin working together.

Questions? Just ask. I'd rather explain something clearly than hide behind legal jargon.