Privacy and Data Protection Policy

Data Protection Policy and GDPR

Under the European General Data Protection Regulation (GDPR) and Data Protection Act you have rights over Personal Data.This Privacy Policy describes how Take Note Healing collects, uses and protects your data and how you can control the ways your data is used. You can request for specific data to be removed, however, this may affect our ability to offer you an appropriate service.

The legal basis for collecting your data

When you use the website or provide data informally, the data is collected and processed based on you giving Consent to this data being used. You have the right to withdraw your consent at any time, and once your request is processed your data will be deleted.

Data is processed and collected at the point of booking a service in order to deliver that service under a contractual obligation. 

The types of data collected

Personal Data

While using any Taken Note Healing service, you may be asked to provide Personal Data. Personal Data is any information that can be used to identify a living person.

Usage Data

We also collect data about how our Service is accessed and used. This autogenerated Usage Data includes information such as your IP address, browser type and version, device type, operating system and version.

Analytics

We use Squarespace analytics to understand how our users interact with the Service. Squarespace tracks your route to and through our website and does so using cookies.

Cookies

Cookies store small amounts of data on your device. We do not use or store any cookies without your consent. You can also control how your browser processes cookies in your browser settings. However, if you do not accept cookies, some of our Service might be unavailable or might not work as designed. 

How we collect and process your data

In most instances, Take note healing collects data from you directly, unless it is provided on your behalf, for example, a referral which includes your name, contact details and relationship to the referrer, however we do not have any control over the information a referrer supplies. When you use our website, we may receive information about its usage. 

Take Note Healing currently collects and processes Personal Data in the following places, operated by third party services on our behalf:

  • Gsuite - email address, name, contact number, and confidential information documented with consent during the necessary arrangement and delivery of a service

  • Squarespace - IP address, browser data and cookies for necessary website functionality, and to monitor and optimise website performance 

  • Mailchimp - email address, name, the date your information was collected or changed, and purchase history. This information is collected and processed for the purpose of sending you information about the services you have purchased, or information related to memberships, or those of legitimate interest

  • Stripe - bank or credit card details, billing address for the purpose of completing a transaction and invoicing

  • Apple Pay - bank or credit card details for the purpose of completing a transaction and invoicing

  • Zoom - on occasion, and only with your explicit consent, recordings of sessions for future reference or for your personal use as a take home resource 

Sharing data

We will only share your data as required with the third party services as outlined above, or as requested by law. We will not sell your data, or use it beyond the purposes agreed.

We might share your information:

  • If you disclose information related to terror or terrorist activities

  • If you or someone you identify is at significant risk or harm

  • If explicitly ordered by court or a coroner

  • If you explicitly request in writing

Where possible, we will get your explicit consent to share your data beforehand.

How long data is stored and disposing your data

  • Your data, including any video or audio recorded sessions, or notes, are stored in electronic records within an encrypted cloud computing system.

  • Your data is stored for 12 months after our last contact, unless you request your data to be deleted before this date.

  • We use secure digital destruction methods provided by our third party services to dispose of personal data.

Protecting your data and managing breaches

  • Our website and third party services use industry-standard software that auto-updates to protect data breaches. 

  • You have the right under the Data Protection Act to complain to the Information Commissioner's Office about the manner in which we process your personal data.

Accessing and correcting your information

  • You may request access to data stored about you, or request your data to be updated to Patrice@takenotehealing.com the designated data controller.

  • We will respond to all valid requests with 30 days of receipt.

Changes to this policy

From time to time, we will update our privacy policy to reflect our terms of service. We will inform you of any significant policy updates directly or on our website. 

Last update: May 2021