Hapus Hypnotherapy is committed to protecting, safeguarding and respecting your privacy.

Our contact details:

FAO Data Controller
Hapus Hypnotherapy
48 Heol Dyfed
Birchgrove
Cardiff
CF14 4PN

Statement of Intent:

This policy sets out how we at Hapus Hypnotherapy use and protect the information that you provide when you use our services and our website.
It is our intention to ensure that any data you provide is managed respectfully, kept secure and only used for the purposes for which it has been provided.
This policy will be updated from time to time in line with prevailing legislation.

When you contact us via our website, phone or email we will collect your:

Name:
Email Address:
Telephone Number:

What we do with this information:

We use this information in order to make contact with you to discuss your treatment and to book a course of therapy sessions if you wish to go ahead.

In the Initial Consultation we will ask for:

Your name, address, telephone and email contact details so that, if necessary, we may contact you during the time we are working together. We also ask questions about your age, occupation, education, health, medication and pastimes. These questions help us to get to know you better and tailor the therapy for your needs.

GDPR:

Under the General Data Protection Regulations which are effective from 25th May 2018, you have the following rights as an individual:

  • The right to be informed (which is why we have produced this policy).
  • The right of access. If you wish to see your file then please make a request in writing to the Data Controller (Contact details at top of page). We will provide you with the information within 30 days of your request.
  • The right to rectification (this is your right to request changes to any information we hold that is factually inaccurate. If you believe any of the information we hold about you is incorrect then please let us know as soon as possible and we will make the appropriate changes.
  • The right to erasure (given the nature of our work we are required to hold our details for a period of 8 years, after this your information will be securely destroyed).
  • The right to restrict processing (we will only use the information for the purposes that we have stated: most standards of confidentiality applied in professional contexts are based upon the Common Law concept of confidentiality where the duty to keep confidence is measured against the concept of “greater good”.
  • The right to data portability: we will not share your information, other than in the situations described above, without your specific consent.
  • The right to object (we will not contact you for marketing purposes unless you have given us specific agreement to do so).
  • The right not to be subject to automated decision-making including profiling (we will not use your information for profiling purposes).

Sharing Data:

We use a data controller for the purposes of administration (including appointment making) and accounts. The data controller is trained for GDPR purposes and fully compliant with the requirements.

Links to other websites:

Our website may contain links to other websites of interest. However, once you use these links please be aware that you have left our website and we do not have any control over other websites. We cannot therefore be held responsible for the protection and privacy of any information which you provide when visiting such sites and these sites are not governed by our privacy policy. We advise therefore that you exercise caution and look at the privacy statement applicable to the website in question.