Andreea Stoica Ltd is committed to protecting and respecting your privacy. We will only use information provided to us for specified and lawful purposes as provided under the General Data Protection Regulation and will handle this information both respectfully and responsibly.
Andreea Stoica Ltd provides counselling, psychological therapy, training, coaching and consultancy services directly to individuals. This is provided by Andreea Stoica, counsellor/ psychotherapist, CBT Therapist, Life Coach
This statement tells you what to expect when we collect personal information from you. For the Data Protection Act 1998 (the Act), the data controller is Andreea Stoica Ltd, Kingsbury House, 468 Church Lane, Kingsbury, London, NW9 8UA.
Andreea Stoica Ltd fully complies with the Data Protection Act 1998. The information you provide will be managed as required by the GDPR.
If you have any queries, or want to request that your information held is changed or deleted, please contact me in the first instance by either post (see above) or email: firstname.lastname@example.org
Storage of Personal Data
With your explicit consent, I may hold information about you in order to fulfil the responsibilities of my role as counsellor / psychotherapist / CBT Therapist / Life Coach /Consultant that has been obtained in the following ways:
• By requesting information from you in person
• Via my website hosted by ‘1&1 Webmail’ if you complete a contact form
• Via online directories where I am listed if you complete a contact form
• By receipt of an email you send (I will use the password / encrypted email system provided by ‘Egress Switch’ to communicate with you)
• Via my smartphone if we text, phone or email
• Via a the secure video conferencing platform ‘VSee’
• A record of the personal information you provide, which can include brief factual notes as a record of sessions will be held using the online encrypted recording system provided by ‘BACPAC’;
Paper records are held, these will be transported and stored in a locked document folder and/or held in a locked cabinet before being transferring to the online system provided by BACPAC. I will also hold some brief, factual notes as a record of sessions held.
The Data Processors that I use to help me obtain and hold your information, including 1&1 Webmail, my website host and BACPAC, my online recording system have their own Privacy Notices in place in which they state their commitment to compliance with the GDPR.
We may collect and process the following data about you: Full name including title, Date of Birth, Email address, Mobile / Telephone number/s, Full Address, Name of the GP practice you are registered with, Next of Kin / emergency contact: name, type of relationship and telephone number, Medication past & current (only if relevant to your reason/s for attending counselling), Insurance details if referring for services via AVIVA or BUPA for example
This information may be used to communicate with you directly and/or your insurer about things like appointments and payment. It may be used to identify you with your GP or the emergency services where there is a concern about your safety/well-being. Your medication history is also requested in order to better understand the extent of your physical and/or mental health problems and how these may relate to the reason/s you are attending counselling / psychotherapy.
In order to meet the requirements of The British Association for Counselling and Psychotherapy’s (BACP) and The British Association for Behavioural and Cognitive Psychotherapy (BABCP) to undertake supervision for clinical work, I will share non-identifying information with my supervisor/s.
Ethically I am committed to sharing information in the event that I am concerned about your own or another’s safety (with particular concern for you, children and vulnerable adults).
Legally I am obliged to share information relating to certain crimes including terrorism, and in the event of a court order I may be required to disclose records held.
In the event of my incapacitation or death, an appointed colleague or colleagues will be able to access the information held in order to inform you of such an event and as appropriate offer further sessions to you or refer you to see another counsellor / psychotherapist.
Andreea Stoica Ltd has used all reasonable care in compiling the content of www.andreeastoica.co.uk website but cannot accept liability for any errors or omissions. We will update material errors in the information if we are made aware of such errors, in a timely manner. Please note that the links to other websites on our site will have their privacy policies and that we do not accept any responsibility or liability for these policies.
As part of service provision, Andreea Stoica Ltd may then collect data from additional sources including, but not limited to, professional practitioners providing the service, an employer, and treating practitioners.
Data created by Andreea Stoica Ltd may include, but not be limited to, assessment findings, communication and observation notes, written reports and electronic communications.
Data will only be held and processed where it is necessary to support the legitimate interest and vital interest of our business, except where such action will be overridden by your interests or fundamental rights and freedoms which require protection of personal data.
The referring company may be the data controller and hence may gain their appropriate consent for services to be provided directly by Andreea Stoica Ltd.
Written referral information we receive typically includes, but is not limited to, name, address, phone number, date of birth, occupational/employment and medical information. This information enables Andreea Stoica Ltd to ensure that the service provided is both safe and appropriate for the situation and enable delivery of the service.
Where instruction from a referring party has been received by Andreea Stoica Ltd to provide services, we will seek your explicit consent to share your information at the start of treatment. If we are asked to provide written assessment, update and discharge reports to the referring party, then explicit consent will be sought from you.
Data security breaches.
Andreea Stoica Ltd takes management of your personal data extremely seriously and takes all reasonable steps to appropriately secure your data. In the event that a data security breach occurs, you will be notified at the earliest opportunity (either directly or via a referring party where applicable) and information will be provided regarding the nature of the breach and action being taken. Notification to parties such as the ICO and/or law enforcement agencies will be given as appropriate.
Retention and destruction
Clinical information will be retained for a minimum period of eight years as a regulatory requirement. In the case of a child record, the records will be retained until the 25th birthday (or 26th birthday if the patient was 17 at the conclusion of the treatment).
This policy may be updated as required to ensure its compliance with data protection legislation and to exercise best practice.
You have the right to:
• receive a copy of the information held about you
• request your information be changed or updated so that it is accurate
• request that your information be deleted if you believe it is being kept for longer than necessary
If you have any concerns about the processing of your information, contact the Data Protection Regulator: Information Commissioner's Office, Wycliffe House
Wilmslow, SK9 5AF, Email: www.ico.org.uk/global/contact-us/email, Website: www.ico.org.uk