1Data Controller
Giancarlo Cristea, UK-registered psychotherapist. Email: contact@giancarlocristea.com. Address: United Kingdom.
2What Data I Collect
I collect the following personal data: name, email address, content of messages sent through the contact form, session notes (stored securely and encrypted). I do not collect financial data — payments are processed directly.
3Purpose of Collection
Your data is collected solely for: delivering psychotherapy services, communication related to appointments and consultations, and fulfilling legal and ethical obligations as a therapist.
4Storage and Security
Session notes are stored securely and encrypted. Email communication is encrypted. I do not store data on unsecured devices. I do not sell, rent or transfer your data to third parties for marketing purposes.
5Data Retention
Under UK law and BACP ethical standards, therapeutic records are kept for 7 years after therapy ends (or 7 years from age 18 for clients who began therapy as minors).
6Your Rights (UK GDPR)
You have the right to: access your personal data, rectification of inaccurate data, erasure (subject to legal obligations), data portability, and to object to processing. To exercise these rights, contact me at contact@giancarlocristea.com.
7Confidentiality in Therapy
Session content is strictly confidential, except in cases provided for by ethical standards: imminent risk to yourself or others, abuse of a minor, or legal obligations imposed by a court. I will discuss any exceptions with you, where possible, before acting.
8Professional Insurance
Covered by Holistic Insurance Services, policy HIS99423, FCA 475577. Valid August 2025 – August 2026. £100,000 per claim, £500,000 aggregate.
9Professional Membership
BACP (British Association for Counselling and Psychotherapy) member. Complaints can be directed to BACP via their official website: bacp.co.uk.
10Policy Changes
This policy may be updated periodically. The current version is always available on this page. Last updated: April 2026.