Privacy Policy

1. Introduction

We are committed to protecting and respecting any personal information you share with us. This statement describes what types of information we collect from you, how it is used by us, how we share it with others, how you can manage the information we hold and how you can contact us.

2. What data do we collect about you?

Personal data means any information capable of identifying an individual. It does not include anonymised data. We may process the following categories of personal data about you:

a. Communication Data that includes any communication that you send to us whether that be

through the contact form on our website, through email, text, social media messaging, social

media posting or any other communication that you send us.

b. For people who apply for taster sessions, practice days and 8-week mindfulness courses we

may collect more sensitive information about any health needs, G.P and /or emergency

contact details.

c. Feedback forms from our courses and events.

3. What is our lawful basis for collecting personal data?

a. Southsea Mindfulness has a legitimate interest in using the personal data and sensitive personal data we collect to ensure that the mindfulness courses/events are suitable for you, and so we are aware of any factors that may make mindfulness meditation more difficult for you.

b. We may also ask for information on how you found our service for the purpose of our own marketing research.

c. We may add your details to our email mailing list to let you know of future courses/events and you have the right to opt-out of this at any time.

 

4. How we use this information and for what purposes?

a. To provide you with 8-week mindfulness courses and/or events if you have requested these.

b. To process payment for our services.

c. By using your feedback to assess the efficacy of what we offer and to make improvements to our services.

d. By adding your details to our database to let you know of our services and events but only with your consent.

e. We take your privacy seriously. We will only use your personal information to provide the services you have requested from us.

5. How do we share this information?

a. We do not share any of your information with third parties except for in exceptional circumstances e.g.:

  • With our Professional Indemnity Insurers or legal advisers in the event of a claim (see 5b).

  • If you request us to share information with other professionals involved in your care or your employer we will only do so with your written consent.

  • When disclosure is in the public interest, to prevent a miscarriage of justice, or where there is a legal duty, for example a Court Order.

  • When the information concerns risk of harm to the client, or risk of harm to another adult or child. We will discuss such a proposed disclosure with you unless we believe that to do so could increase the level of risk to you or to someone else.

b. We will never sell your information or share it for marketing purposes.

6. How long do we keep your information for?

We are required by our Professional Indemnity Insurers to retain records of anyone who has been on a mindfulness course or practice session run by us for 6 years from the completion of the course. This is part of our legal contract with you.

7. Data security

a. We have put in place security measures to prevent your personal data from being accidentally lost, used, altered, disclosed, or accessed.

b. Our laptops, iPads and phones are password protected.

c. We use a secure cloud based data storage to store your data. It is password protected, its servers are based in the EU and it states that it is GDPR compliant.

d. Our email providers state that they are GDPR compliant.

e. Our digital media provider states that it is GDPR compliant.

f. Our website provider states that it is GDPR compliant.

g. Electronic registration forms and feedback forms are kept on an password protected cloud based data storage system which states that it is GDPR compliant. Paper registration forms and feedback forms are kept in a locked filing cabinet.

 

8. Your legal rights

Under data protection laws you have rights in relation to your personal data that include the right to request access, correction, erasure, restriction, transfer, to object to processing, to withdraw consent.

 

You can see more about these rights at:

https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/individual-rights/.

 

If you wish to exercise any of the rights set out above, please email us at:

southseamindfulness@gmail.com.

 

If you are not happy with any aspect of how we collect and use your data, you have the right to complain to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk). We should be grateful if you would contact us first if you do have a complaint so that we can try to resolve it for you.

 

9.Third-party links

Southsea Mindfulness website may include links to third-party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our website, we encourage you to read the privacy notice of every

website you visit.