Privacy Policy
C3 Psychology Services Ltd
Last updated: 11 February 2026
Introduction
C3 Psychology Services Ltd is committed to protecting your privacy and handling your personal
information in a safe, secure, and lawful manner.
This Privacy Policy explains how your personal information is collected, used, stored, and
protected in accordance with:
- UK General Data Protection Regulation (UK GDPR)
- Data Protection Act 2018
- HCPC professional standards
- British Psychological Society (BPS) guidance
1. Who Is Responsible for Your Data?
Data Controller:
C3 Psychology Services Ltd
Email: info@psychologyservice.com
As a HCPC-registered Clinical Psychologist, I am legally responsible for how your personal data is handled.
2. What Information May Be Collected?
Personal Details
- Name
- Address
- Email address
- Telephone number
- Date of birth
- GP details
- Emergency contact information
Sensitive Health Information (Special Category Data)
- Psychological and medical history
- Trauma history
- Session notes
- Risk assessments
- Correspondence relating to your care
Health information is classified as special category data under UK GDPR and receives additional legal protection.
3. How Your Information Is Collected
- When you contact the service via email or website form
- When you arrange a free introductory call
- When you attend assessment or therapy sessions
- When you provide relevant documentation
- When other professionals share information with your consent
4. Lawful Basis for Processing
- Contract – To provide psychological assessment and therapy
- Legal Obligation – To meet professional and regulatory standards
- Legitimate Interest – For administration and safe service provision
- Vital Interests – In situations involving serious risk of harm
- Provision of Health Care (Special Category Processing)
5. How Your Information Is Used
- Provide psychological assessment and therapy
- Maintain accurate clinical records
- Communicate regarding appointments
- Liaise with other professionals (with your consent)
- Manage billing and administration
- Meet safeguarding and legal obligations
Your information is never used for marketing purposes.
6. Confidentiality
Everything shared in therapy is treated as confidential and will not be disclosed without your
consent except where there is a legal or ethical duty to act, including:
- Risk of serious harm to yourself
- Risk of serious harm to others
- Safeguarding concerns involving children or vulnerable adults
- Legal requirements (e.g., court order)
7. How Your Information Is Stored
- Electronic records are stored securely using encrypted systems
- Paper records (if used) are stored in locked filing systems
- Access is restricted and password protected
- Secure communication platforms are used for online work
8. Retention of Records
Clinical records are retained for 7 years after the end of therapy
in line with professional guidance. After this period, records are securely destroyed.
9. Sharing of Information
- With your GP or other professionals (where agreed)
- For safeguarding purposes
- Where legally required
- For insurance reimbursement (if applicable)
10. Your Rights Under UK GDPR
- Access your personal data
- Request correction of inaccurate data
- Request restriction of processing
- Request erasure (where legally applicable)
- Object to processing
- Request data portability
- Lodge a complaint with the Information Commissioner’s Office (ICO)
ICO website: https://www.ico.org.uk
Contact Regarding Data Protection
If you have questions about how your information is handled, please contact:
Email: info@psychologyservice.com