PRIVACY POLICY

Connect & Thrive is a trading name of Bolton Price LLP.

This privacy policy explains how we use any personal information we collect about you.

 Why and what information we collect about you?

 General Data Protection Regulation (GDPR) stipulates that organisations need to have lawful basis for processing personal data. There are six types of lawful basis and organisations need to use the one most appropriate to the service they are offering.

 The lawful reason most appropriate for the majority of our data processing is called 'legitimate interests,' which means that we need to have a legitimate purpose for processing your information. Our legitimate purpose is to ensure we have the necessary information to tailor our services to meet your needs. Therefore, what information we collect will depend on your needs and level of engagement with us.

To enable you to connect with our associate therapists and for online learning, we may need to store personal information such as:

o   First name or given name

o   Family name or surname

o   Address

o   Age & Date of Birth

o   Telephone numbers

o   Email addresses 

If you wish to receive a psychological assessment or engage in treatment, we will connect you with associate therapists who have their own data collection processes and privacy policies. They will need to gather additional information of a more personal and sensitive nature, however, we do not collect or store this data.

 Job applicants, current and former employees and associates

 If you are an individual applying to be an associate with Connect & Thrive, we will only use the information you supply to us to process your application and to monitor recruitment statistics. Where we want to disclose information to a third party, for example, for the purposes of a reference or obtain a ‘disclosure’ from the Disclosure and Barring Service, we will not do so without informing you beforehand, unless the disclosure is required by law. 

Web access collection of information

We collect information about you when you register with us or place any order for services. We also collect information when you voluntarily complete subscribe or contact forms. Without this information you would be unable to engage in particular website activity, as we would not have the contact details to send the requested information.  We alway try to minimise the amount of personal information that we require in order to provide a specific service or feature.

How do we store the information about you?

We take your privacy very seriously.

We are committed to taking reasonable steps to protect any individual identifying information that you provide to us. Once we receive information about you, we make best efforts to ensure its security on our systems. 

All personal information provided is stored in compliance with EU General Data Protection Regulations (GDPR) rules.

How long do we keep your information for?

 We store for no longer than 12 months.

Who do we share your personal information with?

Your information is kept confidential within Connect & Thrive at all times and is only shared with our associates if you have requested this.

If we become aware of your intent to cause harm to another person/group / organisation (e.g. terrorism), the law may require that we inform an authority without seeking your permission. In such a situation, the law may require that we share your personal information without your knowledge.

By contacting our Information Security Officer, by email and/or using the address below you can also get more details on:

●      agreements we have with other organisations for sharing information;

●      circumstances where we can pass on personal data without consent for example, to prevent and detect crime and to produce anonymised statistics;

●      our instructions to staff on how to collect, use and delete personal data; and

●      how we check that the information we hold is accurate and up to date,

How you can access your information, correct it and request information to be deleted, if necessary?

Individuals can find out if we hold any personal information by making a ‘subject access request’ or ‘Right of Access’ under the Data Protection Act and the General Data Protection Regulation. We will then supply to you:

●      A description of all data we hold about you

●      Inform you how it was obtained (if not supplied by you)

●      Inform you why, what purposes, we are holding it

●      What categories of personal data is concerned

●      Inform you who it could be disclosed to

●      Inform you of the retention periods of the data

●      Inform you around any automated decision making including profiling

●      Let you have a copy of the information in an intelligible electronic form unless otherwise requested. 

To make a request to us for any personal information we may hold you need to put the request in writing. We want to make sure that your personal information is accurate and up to date. You may ask us to correct you think is inaccurate or remove information, please address these changes to the Information Security office, via “How to contact us”.

Your rights

You have rights around your personal data and how we handle it. If at any point you believe the information we process on you is incorrect and you want it corrected, you request to see this information, you request the data to be transferred, you object to our processing your Personal Information, or you request to have it deleted. Then please contact the Data Protection Officer.

Complaints or queries

We try to meet the highest standards when collecting and using personal information. For this reason, we take any complaints we receive about this very seriously. We encourage people to bring it to our attention if they think that our collection or use of information is unfair, misleading or inappropriate. We would also welcome any suggestions for improving our procedures. If you do have a complaint, contact the Data Protection Officer who will investigate the matter on your behalf. 

If you are not satisfied with the response from us or believe we are not processing your personal data in accordance with the law you have the right to raise your complaint with the Information Commissioner’s Office (ICO). 

Contact information:

ICO:Website: https://ico.org.uk/concerns/

Email: casework@ico.org.uk

Telephone: +44 (0) 303 123 1113

Other websites

Our website contains links to other websites. Our privacy policy only applies to our website, therefore, we would encourage you to read the privacy statements on the other websites you visit.

Changes to this privacy notice

We keep our privacy notice under regular review and we will place any updates on this web page. This privacy notice was last updated on 15th October 2019.

Who we are and how to contact us

The Data Protection Officer is the company Director (Dr. Jessica Bolton).

We can be contacted via the Contact Us form on this website.