Skip to main content
Taylored Solution Focused Hypnotherapy Logo

Privacy Policy

Last updated: 21 July 2025

1. Introduction

This privacy policy explains how we collect, use, and protect your personal information when you use our hypnotherapy services or interact with our website. We are committed to protecting your privacy and complying with UK GDPR requirements.

2. Information We Collect

2.1 Information You Provide

  • Name and contact details (email, phone number)
  • Health information relevant to hypnotherapy treatment
  • Session notes and treatment progress
  • Payment information (processed securely through third-party providers)

2.2 Information Collected Automatically

  • Website usage data (via analytics)
  • IP address and browser information
  • Cookies (see our Cookie Policy)

3. How We Use Your Information

We use your personal information to:

  • Provide hypnotherapy services
  • Communicate with you about appointments and treatment
  • Process payments
  • Comply with legal and regulatory requirements
  • Improve our services

4. Legal Basis for Processing

We process your personal data based on:

  • Consent: For health data and marketing communications
  • Contract: To provide our services
  • Legal obligation: To maintain records as required by professional bodies
  • Legitimate interests: To improve our services and protect our business

5. Data Sharing

We do not sell or rent your personal information. We may share data with:

  • Professional supervisors (anonymised)
  • Legal authorities when required by law
  • Service providers (e.g., booking systems, with appropriate safeguards)

6. Data Security

We implement appropriate technical and organisational measures to protect your data, including:

  • Encrypted storage of sensitive information
  • Secure session notes kept in locked storage
  • Limited access to personal data
  • Regular security reviews

7. Data Retention

We retain your personal data for:

  • Client records: 7 years after last contact (as required by professional insurance)
  • Financial records: 6 years (UK legal requirement)
  • Marketing data: Until you unsubscribe

8. Your Rights

Under UK GDPR, you have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Request deletion (subject to legal requirements)
  • Restrict processing
  • Data portability
  • Object to processing
  • Withdraw consent

9. Children's Privacy

We do not provide services to children under 16 without parental consent. If you are under 16, please have your parent or guardian contact us.

10. Changes to This Policy

We may update this privacy policy from time to time. We will notify you of any significant changes via email or website notice.

11. Contact Information

For any questions about this privacy policy or to exercise your rights, please contact:

  • Email: privacy@hypnotherapyscotland.com
  • Phone: 07XXX XXXXXX
  • Post: [Business Address], Edinburgh, Scotland

12. Complaints

If you have concerns about how we handle your data, you have the right to complain to the Information Commissioner's Office (ICO) at ico.org.uk.