The General Data Protection Regulation act came into effect on 25th May 2018. It replaces the EU Data Protection Directive 95/46/EC and in the UK the Data Protection Act 1998. GDPR brings the same Data Privacy Rules for all EU Member states. By law, all businesses and organisations that process data must comply to the GDPR rules.
At the first point of contact with Suzanne Gardner-Cuthbert Hypnotherapy, we collect and process data via our website online form, by email and text. We usr the data so that we can reply and contact you about the service that we provide. Our legal basis for processing this information is legitimate interest.
We comply with the regulation by keeping personal data up-to-date, by storing and destroying it securely, by not collecting or retraining excessive amounts of data, by protecting personal data from loss, misue, unauthorised access and disclosure and by ensuring that appropriate technical measures are in place to protect personal data.