Privacy & Confidentiality

1. Privacy & Confidentiality

 

Ilaria : Privacy Policy – [Your Practice Name]

 

I respect your privacy and handle your personal data with care. In this privacy policy, I explain how I process personal data in accordance with the General Data Protection Regulation (GDPR / AVG).

 

1. Who I am

[Your Name / Practice Name]

KvK number: [Your KvK number]

Address: [Your practice address]

Email: [Your email address]

 

---

 

2. What personal data I collect

 

I may process the following personal data:

 

- Name

- Email address

- Phone number

- Information you provide via the contact form

- Information shared during counselling sessions

- Notes from sessions (paper records)

 

This may include sensitive personal data, such as information about your mental health.

 

---

 

3. Purpose of data processing

 

I process your data for the following purposes:

 

- To contact you after you submit a contact request

- To provide counselling services

- To maintain a client file

- To comply with administrative and legal obligations

 

---

 

4. Legal basis

 

I process personal data based on:

 

- Your consent (e.g. when you contact me)

- The agreement between us (counselling services)

- Legal obligations (such as tax administration)

 

Sensitive personal data (health information) is processed only with your explicit consent.

 

---

 

5. How I store your data

 

- Emails and contact requests are stored via Microsoft Outlook

- Website data is processed via Wix

- Administrative data may be stored in Microsoft Excel

- Session notes are stored securely on paper

 

I take appropriate technical and organizational measures to protect your data.

 

---

 

6. Data retention

 

- Client records are retained for up to 15 years after the end of counselling

- Email correspondence is retained for up to 1 year unless it becomes part of a client file

- Administrative data is retained as required by tax law (typically 7 years)

 

---

 

7. Sharing personal data

 

I do not share your data with third parties unless:

 

- It is necessary for the provision of services

- I am legally required to do so

 

I have data processing agreements in place where required (e.g. with service providers such as email or website hosting).

 

---

 

8. Cookies and website use

 

My website is hosted via Wix and may use cookies for basic functionality and analytics.

 

---

 

9. Your rights

 

You have the right to:

 

- Access your personal data

- Correct your data

- Request deletion of your data

- Withdraw your consent

 

You can contact me via [your email address] for such requests.

 

---

 

10. Data security

 

I take appropriate measures to protect your data, including:

 

- Password-protected systems

- Careful handling of paper records

- Limiting access to personal data

 

---

 

11. Contact

 

If you have questions about this privacy policy, you can contact me at:

[your email address]

 

---

 

This privacy policy may be updated if necessary.