Privacy Policy

Sarah O’Neill Hypnotherapy is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, store and protect your personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

By booking an appointment or course, using our website, or providing your information to us, you agree to the terms of this Privacy Policy.

Who We Are

Sarah O’Neill Hypnotherapy provides Hypnotherapy appointments and Hypnobirthing Courses to clients aged 18 and over.
We act as the Data Controller for the personal data we collect.

Information We Collect

We may collect and process the following types of personal data:

Personal & Contact Information

  • Full name

  • Date of birth

  • Address

  • Email address

  • Telephone number

  • Emergency contact details

Medical & Treatment Information

  • Medical history and health declarations

  • Consultation notes and treatment plans

  • Consent forms

  • Appointment history

  • Deposit and payment records

  • Transaction details (processed securely by third-party providers)

Technical Information

  • IP address

  • Browser type and device information

  • Website usage data

  • Cookies (where applicable)

How Your Information Is Collected

Your data may be collected when you:

  • Book an appointment online or in clinic

  • Complete consultation, medical, or consent forms

  • Contact us via email, phone, social media, or messaging services

  • Attend appointments or treatments

  • Visit our website

Where Your Information Is Stored

All client records and personal data are securely stored using GDPR-compliant systems, including:

  • Google Suite

  • Eventbrite

We do not store sensitive client information on personal devices.

How We Use Your Information

We use your personal data to:

  • Provide safe, effective, and appropriate treatments

  • Assess medical suitability and maintain clinical records

  • Manage bookings, deposits, cancellations, and payments

  • Communicate with you regarding appointments, aftercare, or important updates

  • Meet legal, regulatory, insurance, and professional obligations

  • Improve our services and client experience

Marketing Communications

With your consent, we may contact you via email, SMS, or messaging services with:

  • Appointment reminders

  • Treatment updates

  • Special offers or promotions

You can withdraw consent at any time by:

  • Unsubscribing from communications

  • Contacting us directly

Please note: essential communications relating to appointments or medical care may still be sent where necessary.

Disclosure of Your Information

We do not sell your personal data.

Your information may be shared only when necessary with:

  • Secure booking and medical record systems

  • Payment processors

  • Insurance providers

  • Regulatory bodies or legal authorities when required by law

All third parties are required to handle your data securely and lawfully.

International Data Transfers

Some third-party systems we use may process data outside the UK or EU.
Where this occurs, appropriate safeguards are in place to ensure your data remains protected in accordance with GDPR standards.

Data Retention

We retain personal and medical information only for as long as necessary to:

  • Comply with legal and insurance requirements

  • Maintain accurate medical records

Data is securely deleted or anonymised when no longer required.

Your Rights Under GDPR

You have the right to:

  • Access the personal data we hold about you

  • Request correction of inaccurate or incomplete data

  • Request erasure of your data (where legally permitted)

  • Restrict or object to processing

  • Withdraw consent at any time

  • Request data portability

  • Lodge a complaint with the Information Commissioner’s Office (ICO)

To exercise any of these rights, please contact us directly.

Cookies & Website Data

Our website may use cookies to improve functionality and analyse usage.
You can manage or disable cookies via your browser settings.

Security

We take appropriate technical and organisational measures to protect your data from loss, misuse, unauthorised access, or disclosure.
While no system can be guaranteed 100% secure, we use trusted platforms and strict procedures to minimise risk.

Children’s Privacy

Our services are not intended for individuals under the age of 18.
We do not knowingly collect personal data from children.

Third-Party Links

Our website or communications may contain links to third-party websites. We are not responsible for the privacy practices or content of those sites. Please review their privacy policies separately.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time.
Any changes will be posted on this page and will take effect immediately.

Contact Us

If you have any questions, requests, or concerns regarding this Privacy Policy or your personal data, please contact:

Sarah O’Neill Hypnotherapy at sohypnotherapy@gmail.com