Privacy Policy
This Privacy Policy explains how your personal information is collected, used, and protected when you visit this website or get in touch about therapy.
I am committed to handling your information with care, confidentiality, and in line with UK GDPR and data protection standards.
Who I am
(Data Controller)
I am Dr Laura Wijnberg, a HCPC-registered Clinical Psychologist providing online therapy to adults.
For the purposes of data protection law, I am the “data controller” of your personal information. This means I am responsible for how your information is collected, used, and stored when you visit this website or get in touch about therapy.
If you have any questions about how your information is handled, you can contact me at: laurawijnberg.psychology@gmail.com
What information I collect
I may collect and store the following information:
• Your name, date of birth, and contact details
• GP details and emergency contact information (where provided)
• Information you choose to share during therapy sessions
• Clinical notes and records
• Administrative information, such as appointment history and correspondence
I may also collect limited technical information when you use this website (such as cookies), which is explained further in the Cookie Policy.
How your information is used
Your information may be used for the following purposes:
• To provide psychological therapy and support
• To maintain accurate clinical records
• To communicate with you about appointments and therapy
• To support safe, ethical, and appropriate care
Legal basis for processing
Your information is processed on the following legal bases:
• Legitimate interests – to provide psychological therapy and manage the service I offer
• Consent – where required, for example if I need to contact your GP or share information with other professionals
How your data is stored
Your information is stored securely using password-protected and encrypted systems.
This may include secure platforms used for communication, document storage, and administrative purposes (such as email and secure document services).
Access to your information is limited to what is necessary for the provision of your care.
Data retention
Your records are kept in line with professional and legal guidelines.
In most cases, this means they are retained for up to 7 years after the end of therapy.
Sharing of information
Your information will be kept confidential and will only be shared in the following situations:
• With your consent (for example, with your GP or another professional involved in your care)
• Where there is a risk of serious harm to you or someone else
• Where there are safeguarding concerns
• Where disclosure is required by law
Wherever possible, this would be discussed with you in advance.
As part of maintaining safe and effective practice, I also engage in regular clinical supervision. This involves discussing aspects of my work with an experienced supervisor, while taking care to protect your identity.
Your rights
Under data protection law, you have the right to:
• Request access to your personal information
• Request correction of inaccurate or incomplete information
• Request erasure of your data (where applicable)
• Restrict or object to how your information is used
• Withdraw consent where processing is based on consent
If you would like to exercise any of these rights, you are welcome to contact me.
Data security
Appropriate measures are in place to help protect your information from unauthorised access, loss, or misuse.
These include the use of password-protected devices, secure systems, and additional safeguards such as two-factor authentication where appropriate.
Contact and complaints
If you have any questions about how your information is handled, you are welcome to contact me directly.
If you have concerns about how your data has been managed, you also have the right to contact the Information Commissioner’s Office (ICO), the UK’s data protection regulator.