Psych Associates is committed to upholding the highest standards of data protection and confidentiality. This policy outlines how we safeguard personal and sensitive data in compliance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
What Data We Collect
Personal and professional information (e.g., name, contact details).
Health-related data necessary for medico-legal assessments.
Financial and payment details (if applicable).
How We Protect Data
We employ strict security measures, including:
Encryption: Secure storage of sensitive data.
Access Control: Only authorized personnel have access to personal data.
Data Minimization: We only collect and retain necessary information.
Confidentiality & Disclosure
All client information is treated as strictly confidential. We only disclose data:
When legally required (e.g., court order).
With explicit client consent.
To relevant medical or legal professionals involved in the case.
Retention & Deletion of Data
We retain data for six (6) years after the last contact unless legally required to keep it longer. After this period, data is securely deleted.
Breach Notification
In the event of a data breach, affected individuals will be notified within 72 hours, and we will report to the Information Commissioner’s Office (ICO).
Contact Us for Data Concerns
If you have any concerns about data protection, email us at [email protected]
