Privacy Policy

Last updated: [04 February 2026]

1. Who we are

This website is operated by [Alison Burgess / Trading name] (“we”, “us”, “our”). We provide counselling services and related information.

Contact details

• Telephone: 07746 120590
• Contact form: Contact me
• Email (recommended for data protection queries): alisonburgesscounselling@gmail.com

2. What this policy covers

This Privacy Policy explains how we collect, use, store and share your personal information when you:

• visit this website
• contact us by phone, email or contact form
• book a free exploratory call or counselling session
• become a client

3. The personal data we may collect

Depending on how you interact with us, we may collect:

• Identity and contact details: name, email address, phone number
• Enquiry information: what you choose to share via the contact form, email or phone
• Booking information: appointment details (date/time) and any details you provide to the booking tool
• Website usage data: limited technical information such as IP address, device/browser details and pages viewed (only where analytics are enabled and you consent, if required)
• Client notes and records (if you become a client): relevant information you share in sessions

4. Special category data (important)

Counselling can involve information about mental health and wellbeing, which may be special category data under UK GDPR. We only process this information where it is necessary for providing counselling services and/or where you have provided the appropriate consent (for example, explicit consent where required).

5. How we use your information

We use your personal data to:

• respond to enquiries and provide requested information
• arrange and manage appointments (including exploratory calls)
• provide counselling services
• maintain appropriate records for professional practice
• keep the website secure and functioning
• (if enabled with consent where required) understand how the website is used and improve it

6. Our lawful bases for processing

We rely on one or more of the following lawful bases, depending on the context:

• Legitimate interests: replying to enquiries, running and protecting the website, and managing our services in ways you would reasonably expect
• Contract: where processing is necessary to provide a paid service you’ve requested (e.g., counselling sessions)
• Consent: where you ask us to do something optional, or where consent is required (for example, certain cookies/analytics; or explicit consent for particular special category processing)
• Legal obligation: where we must comply with a legal or regulatory requirement (rare in this context, but possible)

7. Where your data comes from

• Directly from you (contact form, email, phone, booking, sessions)
• Automatically from your device when you browse the website (limited technical data; and only additional analytics where enabled and consented)

8. Who we share data with

We may share personal data with trusted third parties that help us run the website and deliver services, for example:

• Website hosting provider: Hostinger
• Email provider: Google
• Contact form/spam protection: Google reCaptcha
• Booking platform (if used): Calendly (when you book an exploratory call/session)
• Professional advisers (as needed): accountant, insurer, legal adviser

We only share what’s necessary and expect appropriate confidentiality and security.

9. International transfers

Some providers (for example, booking or analytics platforms) may process data outside the UK. Where this happens, we rely on appropriate safeguards (such as contractual protections) as required.

10. How long we keep your information

We keep personal data only for as long as necessary:

• Enquiries: typically up to 12 months after last contact (unless you become a client)
• Client records/notes: typically up to 7 years after the end of therapy, or longer if required by our insurer/professional obligations or law
• Booking records: in line with the booking platform’s retention plus our own records where necessary

(We can adjust these once Alison confirms her professional/insurance retention preference.)

11. Your rights

You have rights under UK GDPR, including the right to:

• access your data
• correct inaccurate data
• request deletion (where applicable)
• restrict or object to processing (including some legitimate interests processing)
• withdraw consent (where consent is the basis)
• data portability (in certain circumstances)

If you have concerns, you also have the right to complain to the Information Commissioner’s Office (ICO).

12. Security

We take appropriate technical and organisational measures to protect your data from loss, misuse and unauthorised access.

13. Changes to this policy

We may update this policy from time to time. The latest version will always be published on this page.