Before working with you for the first time, we will ask you to complete a Health Information form (yoga) or Client Information form (hypnotherapy). We may also periodically ask you to update the information provided, especially if we have not worked together for some time.
All the information submitted through this form will be processed and stored in accordance with General Data Protection Regulations (GDPR).
The personal data we collect about you will include data relating to your name, address, date of birth and wider contact details. Contact details are collected to keep you informed of urgent timetable or schedule changes. Your data will also be used to manage future communications between us including about our products and services. You can opt out from receiving such communications services at any time by emailing us.
We also collect details of your medical history. This is for the purposes of meeting Insurance Company criteria as well as for your own health and safety when we are working together. Heath information is also used to plan/prepare sessions to suit your individual needs and (where relevant) those of the group as a whole.
Blended Therapy is committed to ensuring that your information is secure. In order to prevent unauthorised access or disclosure we have put in place suitable physical, electronic and managerial procedures to safeguard and secure the information collected.
We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, insurance, accounting or reporting requirements. For insurance purposes we are required to keep basic information about our customers (including contact, identity, financial and transaction data) for at least seven years after their last class or treatment.
When deciding the correct period for which we need to keep data we look at its amount, nature and sensitivity, potential risk of harm from unauthorised use or disclosure, the processing purposes, if these can be achieved by other means and legal requirements.
GDPR means that you have extensive rights regarding the collection, storage and use of your data. You have the following rights as an individual regarding your data: the right to request access, correction, erasure, restriction, transfer, to object to processing, to portability of data and (where the lawful ground of processing is consent) to withdraw consent.
You can find out more about these rights here.
If you wish to exercise any of the rights set out above, please email us.