Definitions and interpretation
Data: collectively all information that you submit to Spring Psychology via the Website. This definition incorporates, where applicable, the definitions provided in the UK GDPR;
Cookies: a small text file placed on your computer by this Website when you visit certain parts of the Website and/or when you use certain features of the Website. Details of the cookies used by this Website are set out in the clause below (Cookies);
UK GDPR: means Regulation (EU) 2016/679 General Data Protection Regulation as it forms part of the law of England and Wales, Scotland, and Northern Ireland by virtue of section 3 of the European Union (Withdrawal) Act 2018 and amended by the Data Protection, Privacy and Electronic Communications (Amendments etc.) (EU Exit) Regulations 2019.
“We” and “Us”: means Spring Psychology
UK and EU Cookie Law: the Privacy and Electronic Communications (EC Directive) Regulations 2003 as amended by the Privacy and Electronic Communications (EC Directive) (Amendment) Regulations 2011;
User or you: any third party that accesses our services, or the Website and is not either (i) employed by Spring Psychology and acting in the course of their employment or (ii) engaged as a consultant or otherwise providing services to SpringPsychology and accessing the Website in connection with the provision of such services;
“Our Site”: the website that you are currently using, https://www.springpsychology.co.uk/
a. the singular includes the plural and vice versa.
c. a reference to a person includes firms, companies, government entities, trusts and partnerships.
d. “including” is understood to mean “including without limitation”.
e. reference to any statutory provision includes any modification or amendment of it.
5. For purposes of UK GDPR, NAME is the “data controller”. This means that Spring Psychology determines the purposes for which and the way your Data is processed.
6. We may collect the following Data, which includes personal Data, from you:
a. Contact details including, postal address, telephone number, mobile phone number, email address.
b. Identity details including your full name
c. Profile details including your date of birth, relationship to the patient (if a parent/guardian)
d. Case notes data relevant to assessing and treating your presenting psychological difficulties.
e. GP Details including GP name, GP practice address
f. Health data including details relating to any road traffic accidents you may have been in.
g. Technical data including IP address, browser details, and MAC address.
How we collect Data
8. We collect Data in the following ways:
a. data is given to us by you.
b. data is given to us by third parties
c. data is collected automatically.
Data that is given to us by you
9. Spring Psychology will collect your Data in several ways, for example:
a. When you make an enquiry via the website, email, or telephone.
b. When you complete our registration form.
c. When you attend a therapy session.
d. When you pay for your appointment.
e. When you use our website.
10. Data that is given to us by third parties
a. When a solicitor request, we conduct a medico/legal assessment of your case.
b. Referrals from other therapists.
Data that is collected automatically
11. To the extent that you access the Website, we will collect your Data automatically, for example:
a. we automatically collect some information about your visit to the Website. This information helps us to make improvements to Website content and navigation and includes your IP address, the date, times and frequency with which you access the Website and the way you use and interact with its content.
b. we will collect your Data automatically via cookies, in line with the cookie settings on your browser. For more information about cookies, and how we use them on the Website, see the section below, headed “Cookies”.
Our use of Data
12. Any or all of the above Data may be required by us from time to time in order to provide you with the best possible service and experience when using our Website. Specifically, Data may be used by us for the following reasons:
a. To respond to your initial enquiry.
b. To register you as a patient.
c. To conduct a thorough psychological assessment.
d. To devise and implement an effective treatment plan
e. To invoice you for services rendered.
f. To communicate (when necessary and agreed with you) with relevant third parties to support your treatment and manage risks.
g. To provide a medico/legal assessment of your case.
14. We may use your Data for the above purposes if we deem it necessary to do so for our legitimate interests. If you are not satisfied with this, you have the right to object in certain circumstances (see the section headed “Your rights” below).
15. When you register with us to receive our services, the legal basis for this processing is the performance of a contract between you and us and/or taking steps, at your request, to enter such a contract.
Who we share Data with
16. We may share your Data with:
a. WriteUPP: our practice management system to record details of your appointments, treatment plan and payment schedule.
b. Solicitors: when providing a report relating to a medico/legal assessment.
c. GP: when providing information back to your GP based upon a clinical indication.
Keeping Data secure
18. We will use technical and organisational measures to safeguard your Data, for example:
a. All patient files are stored on secure servers.
b. Any information relating to your case sent by email is password protected.
c. Access to your personal data is restricted on a ‘need to know’ basis.
19. Technical and organisational measures include measures to deal with any suspected data breach. If you suspect any misuse or loss or unauthorised access to your Data, please let us know immediately by contacting us via this e-mail address: email@example.com.
20. Patient records are kept securely for a period of 10 years following discharge in accordance with good practice guidelines for health records (General Medical Council, 2000).
21. Patient records will be securely deleted once the retention period has been reached.
22. You have the following rights in relation to your Data:
a. Right to access– the right to request (i) copies of the information we hold about you at any time, or (ii) that we modify, update or delete such information. If we provide you with access to the information we hold about you, we will not charge you for this, unless your request is “manifestly unfounded or excessive.” Where we are legally permitted to do so, we may refuse your request. If we refuse your request, we will tell you the reasons why.
b. Right to correct– the right to have your Data rectified if it is inaccurate or incomplete.
c. Right to erase– the right to request that we delete or remove your Data from our systems.
d. Right to restrict our use of your Data– the right to “block” us from using your Data or limit the way in which we can use it.
e. Right to data portability– the right to request that we move, copy or transfer your Data.
f. Right to object– the right to object to our use of your Data including where we use it for our legitimate interests.
23. To make enquiries, exercise any of your rights set out above, or withdraw your consent to the processing of your Data (where consent is our legal basis for processing your Data), please contact us via this e-mail address: firstname.lastname@example.org
24. If you are not satisfied with the way a complaint you make in relation to your Data is handled by us, you may be able to refer your complaint to the relevant data protection authority. For the UK, this is the Information Commissioner’s Office (ICO). The ICO’s contact details can be found on their website at https://ico.org.uk/.
25. It is important that the Data we hold about you is accurate and current. Please keep us informed if your Data changes during the period for which we hold it.
Changes of business ownership and control
27. In the above instances, we will take steps with the aim of ensuring your privacy is protected.
29. All Cookies used by this Website are used in accordance with current UK and EU Cookie Law.
30. Before the Website places Cookies on your computer, you will be presented with a message bar requesting your consent to set those Cookies. By giving your consent to the placing of Cookies, you are enabling Our Site to provide a better experience and service to you. You may, if you wish, deny consent to the placing of Cookies; however certain features of the Website may not function fully or as intended.
31. This Website may place the following Cookies:
Strictly necessary cookies: These are cookies that are required for the operation of our website. They include, for example, cookies that enable you to log into secure areas of our website, use a shopping cart or make use of e-billing services.
Analytical/performance cookies: They allow us to recognise and count the number of visitors and to see how visitors move around our website when they are using it. This helps us to improve the way our website works, for example, by ensuring that users are finding what they are looking for easily.
32. You can choose to enable or disable Cookies in your internet browser. By default, most internet browsers accept Cookies, but this can be changed. For further details, please consult the help menu in your internet browser.
33. You can choose to delete Cookies at any time; however, you may lose any information that enables you to access the Website more quickly and efficiently including, but not limited to, personalisation settings.
34. It is recommended that you ensure that your internet browser is up-to-date and that you consult the help and guidance provided by the developer of your internet browser if you are unsure about adjusting your privacy settings.
35. For more information generally on cookies, including how to disable them, please refer to aboutcookies.org. You will also find details on how to delete cookies from your computer.
37. Last Updated: 23 September 2022.