The Platform will collect and process information relating to you in accordance with the privacy policies which are regulated by the Information Commissioner and abide by the Data Protection Legislation.
Data Protection Legislation includes the General Data Protection Regulation (EU) 2016/679) (GDPR) which applies across the European Union (including in the United Kingdom) and any national implementing laws, regulations and secondary legislation including the UK Data Protection Act 2018 (DPA 2018) relating to data protection and privacy, as amended or updated from time to time, in the UK, as well as any successor legislation to the GDPR and DPA 2018.
To let us operate the Platform effectively and to let you use the Platform, including the Practitioner Services, we may have to collect your personally identifiable information (such as, but not limited to, your name, phone number, email address, and address), billing and payment information, profile information, log data (information such as your computer, Internet Protocol address (“IP”), pages that you visit and the amount of time spent on those pages, actions you take and other statistics), information related to the Practitioner Services or your need for Practitioner Services, and any information which is exchanged between you and your Practitioner (collectively the "Information").
The Information may be used for the following purposes:
It is in our legitimate interest or a third party's legitimate interest to use personal information in such a way to ensure that we provide the Services in the best way that we can.
It is our legal obligation to use your personal information to comply with any legal obligations imposed upon us.
You can view and edit any personal data that you have provided to us using this website. Automated processing of your Personal Information is necessary to operate the Platform effectively and to provide counselling and related services.
You can exercise any of the rights the law confers to you, like for example: opt-out of all data processing, or request erasure of your data by following the instructions on our opt-out page. In some cases, we may be required to retain personal data to comply with applicable medical record retention laws.
Online identity theft and account hacking, including the practice currently known as "phishing", are of great concern. You should always be diligent when you are being asked for your account information and you must always make sure you do that in our secure system. We will never request your login information or your credit card information in any non-secure or unsolicited communication.
While using any Internet-based service carries inherent security risks that cannot be 100% prevented, our systems, infrastructure, encryption technology, operation and processes are all designed, built and maintained with your security and privacy in mind. We apply industry standards and best practices to prevent any unauthorised access, use, and disclosure. We comply with or exceed all applicable federal laws, state laws, and regulations regarding data privacy.
We may employ third party companies and individuals to facilitate our Platform, to perform certain tasks which are related to the Platform, or to provide audit, legal, operational or other services for us. These tasks include, but not limited to, customer service, technical maintenance, monitoring, email management and communication, database management, billing and payment processing, reporting and analytics. We will share with them only the minimum necessary information to perform their task for us and only after entering into appropriate confidentiality agreements.
We do not knowingly collect or solicit any information from anyone under the age of 18 or knowingly allow such persons to become our user. The Platform is not directed and not intended to be used by anyone under the age of 18. If you're aware that we have collected Personal Information from anyone under the age of 18 please let us know by contacting us and we will delete that information.
The privacy and the security of your personal data is our utmost priority. We recognise that you trust us to keep it secure and private. We have in place appropriate security measures to prevent your personal data from being accidentally lost or used or accessed unlawfully. We protect your personal data at all times with strong encryption in our secure data centres. We limit access to personal data to those who have a genuine business need to access it and are subject to strict obligations of confidence.
goodtalk is the Controller with respect to your Personal Data. You can contact our Data Protection Officer with questions, concerns or objections about this policy, or about your data by writing to DPO@goodtalk.uk
Last Updated: June 29, 2020