Eating Disorders, OCD and cPTSD specialist therapy

agi@foodforthoughttherapy.co.uk

Privacy Policy

Last updated: 8 June 2026

1. Introduction

Food for Thought Therapy (“I”, “me”, “my”, or “the Practice”) is committed to protecting your privacy and handling your personal information in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and other applicable laws.

This Privacy Policy explains how I collect, use, store, and protect your personal information when you visit my website, make an enquiry, or engage in therapy services.

2. Data Controller

Food for Thought Therapy

Therapist: Agnieszka Sikorska

Address: 8 Bridge Street, Menai Bridge, LL545DW

Email: agi@foodforthoughttherapy.co.uk

Telephone: 07918558297

ICO Registration Number: ZB847163

I am the Data Controller responsible for your personal information.

3. Information I Collect

Website Enquiries

When you contact me through the website, email, telephone, or contact form, I may collect:

  • Name
  • Email address
  • Telephone number
  • Information you choose to provide about your circumstances or reasons for seeking therapy

Therapy Clients

If you become a client, I may collect:

  • Contact details
  • Date of birth
  • GP details
  • Emergency contact information
  • Assessment information
  • Therapy notes
  • Appointment records
  • Payment information
  • Relevant health and mental health information

Health information is classified as Special Category Data under UK GDPR and receives additional protection.

Website Usage Data

The website may automatically collect technical information such as:

  • IP address
  • Browser type
  • Device information
  • Website usage information
  • Cookies and similar technologies

Please see the Cookie Policy for further information.

4. Why I Process Your Information

I process personal information for the following purposes:

To Respond to Enquiries

  • Responding to requests for information
  • Arranging initial consultations
  • Communicating with prospective clients

To Provide Therapy Services

  • Assessing suitability for therapy
  • Delivering therapeutic support
  • Maintaining professional records
  • Managing appointments and payments

Legal and Professional Obligations

  • Maintaining professional standards
  • Meeting insurance requirements
  • Complying with safeguarding obligations
  • Meeting legal and regulatory requirements

5. Lawful Bases for Processing

Under UK GDPR, I rely on the following lawful bases:

Contract

Processing necessary to provide therapy services and manage appointments.

Legitimate Interests

Responding to enquiries, administering the practice, and maintaining records.

Legal Obligation

Where processing is required by law.

Special Category Data

For health and therapy-related information, I rely on:

  • Article 9(2)(h): Provision of health or social care
  • Article 9(2)(a): Explicit consent where appropriate

6. Confidentiality

Everything discussed in therapy is treated as confidential.

However, confidentiality may be broken where:

  • There is a serious risk of harm to you or another person
  • Safeguarding concerns arise involving a child or vulnerable adult
  • I am legally required to disclose information by a court or statutory authority
  • Disclosure is necessary to prevent serious crime

Where possible, I will discuss any disclosure with you before taking action.

7. Clinical Notes and Record Keeping

I keep professional records to support safe and effective therapy.

Records may include:

  • Assessment notes
  • Session notes
  • Risk assessments
  • Correspondence
  • Administrative records

These records are stored securely and access is restricted.

8. How Long Information Is Kept

Enquiries

If therapy does not proceed, enquiry information is normally retained for up to 12 months.

Therapy Records

Clinical records are generally retained for 7 years after therapy ends, unless legal, insurance, safeguarding, or professional requirements justify a longer period.

Records are securely deleted when no longer required.

9. Sharing Information

Your information will not be sold or shared for marketing purposes.

Information may be shared with:

  • Clinical supervisors (anonymised where possible)
  • Professional indemnity insurers
  • Legal advisers
  • Regulatory or safeguarding authorities where required
  • Secure technology providers used to operate the practice

Examples may include:

  • Website hosting provider
  • Email provider
  • Video conferencing provider
  • Practice management software

All providers are expected to handle data securely and lawfully.

10. Online Therapy

If online sessions are offered, reasonable steps are taken to use secure platforms and protect confidentiality.

While every effort is made to maintain security, no online communication system can be guaranteed completely secure.

Clients are encouraged to participate from a private location and use secure internet connections.

11. International Transfers

Where any service provider stores information outside the United Kingdom, appropriate safeguards will be used in accordance with UK GDPR.

12. Data Security

I take appropriate technical and organisational measures to protect personal information, including:

  • Password protection
  • Secure devices
  • Encryption where appropriate
  • Restricted access to records
  • Secure storage systems

13. Your Rights

Under UK GDPR, you have the right to:

  • Access your personal information
  • Request correction of inaccurate information
  • Request erasure in certain circumstances
  • Restrict processing
  • Object to processing
  • Data portability where applicable
  • Withdraw consent where consent is relied upon

Some rights may be limited where professional, legal, safeguarding, or record-keeping obligations apply.

14. Making a Complaint

If you have concerns about how your information is handled, please contact me first so that I can try to resolve the issue.

You also have the right to complain to the Information Commissioner’s Office (ICO):

Information Commissioner’s Office

Wycliffe House

Water Lane

Wilmslow

Cheshire

SK9 5AF

Website: www.ico.org.uk

Telephone: 0303 123 1113

15. Changes to This Policy

This Privacy Policy may be updated from time to time.

The latest version will always be available on this website and the date of the most recent revision will be shown at the top of the page.hecked through an automated spam detection service.

Cookies and Website Technologies

What Are Cookies?

Cookies are small text files placed on your device when you visit a website. They help websites function properly, improve user experience, and provide information about how visitors use the site.

Cookies Used on This Website

This website may use the following categories of cookies:

Essential Cookies

These cookies are necessary for the website to function correctly and cannot be switched off. They may be used for:

  • Security purposes
  • Website functionality
  • Form submissions
  • Session management

These cookies do not require consent.

Analytics Cookies

Analytics cookies help us understand how visitors use the website so that we can improve its performance and content.

These cookies may collect information such as:

  • Pages visited
  • Time spent on the website
  • Device type
  • General geographic location
  • Referral source

Where analytics cookies are used, they will only be activated after you have given your consent.

Marketing and Third-Party Cookies

If this website uses services such as Google Maps, YouTube videos, social media integrations, or advertising tools, these services may place cookies on your device.

These cookies will only be activated where required and, where applicable, after obtaining your consent.

Managing Cookies

When you first visit the website, you may be presented with a cookie banner allowing you to:

  • Accept all cookies
  • Reject non-essential cookies
  • Choose your cookie preferences

You can also control cookies through your browser settings. Most browsers allow you to:

  • View stored cookies
  • Delete cookies
  • Block cookies
  • Set preferences for particular websites

Please note that disabling essential cookies may affect website functionality.

Cookie Consent

In accordance with the Privacy and Electronic Communications Regulations (PECR) and UK GDPR, non-essential cookies are only placed on your device after you have provided your consent.

You may withdraw or change your cookie preferences at any time through the cookie settings available on this website.

Third-Party Services

This website may use third-party services such as:

  • Website hosting providers
  • Website security services
  • Analytics providers
  • Video conferencing providers
  • Embedded content providers

These third parties may process technical information in accordance with their own privacy policies.

Further information can be provided upon request.