Aim

Chrysalis Renewal Therapy need to keep certain information on their clients to carry out their day to day activities to meet

its objectives and regulatory requirements and legal obligations. The organisation is committed to ensuring all data is

processed in line with GDPR legislation. To comply with the law, personal information will be collected and used fairly,

stored safely and not disclosed to any other person unlawfully.

​

Data Protection Principles

Article 5 of the GDPR requires that personal data shall be:

​

processed lawfully, fairly and in a transparent manner in relation to individuals;

​

collected for specified, explicit and legitimate purposes and not further processed in a manner that is incompatible with

those purposes; further processing for archiving purposes in the public interest, scientific or historical research

purposes or statistical purposes shall not be considered to be incompatible with the initial purposes;

​

adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed;

​

accurate and, where necessary, kept up to date; every reasonable step must be taken to ensure that personal data that

are inaccurate, having regard to the purposes for which they are processed, are erased or rectified without delay;

​

kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which

the personal data are processed; personal data may be stored for longer periods insofar as the personal data will be

processed solely for archiving purposes in the public interest, scientific or historical research purposes or statistical

purposes subject to implementation of the appropriate technical and organisational measures required by the GDPR in

order to safeguard the rights and freedoms of individuals; and

​

processed in a manner that ensures appropriate security of the personal data, including protection against unauthorised

or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organisational

measures.”

​

Lawful, fair and transparent processing

To ensure its processing of data is lawful, fair and transparent, the organisation shall maintain a secure database which

only can be accessed by one person.

Individuals have the right to access their personal data and any such requests made to the organisation shall be dealt

with in a timely manner. Requests must be made in writing and proof of ID will be required.

Certain data held by the organisation is considered privileged and outside the remit of data requests and will only be

released under a court mandated order.

​

Types of information processed

Due to the nature of our work, we process sensitive information which can includes personal and family details, lifestyle

choices, education and employment details, financial details, physical and mental health, race or religious beliefs, or any

other information that may be disclosed or provided voluntarily through our work with clients and their families.

​

Who the information may be shared with

We may need to share the information with the individuals themselves, parents or legal guardians and with other

organisations. Where necessary we fully comply with GDPR principles as well as guidance set by other organisations such as

the BACP. If a client is Gillick competent they also have a right to protect their personal information.

When necessary we may need to share information with parents or legal guardians, healthcare, social and welfare

organisations, schools and other voluntary or charitable organisations, police or crime prevention agencies.

​

CCTV recording

Sessions are provided in a private room in a public space. In public areas, CCTV may be recording for crime prevention or

recording of a crime. Information will show visual images, behaviours. This data is handled and controlled by the owners of

the building, not Chrysalis Renewal Therapy.

​

Data Handler

Except in relation to CCTV, the data handler for Chrysalis Renewal Therapy is Sarah Thompson and questions in relation to

this policy should be addressed in person, via phone or email.