GDPR Advanced training for Psychologists, Psychotherapists and Counsellors

About this event

Dr Robert Watson from Become Psychology and Mark Burnett from Hope & May Global Data Protection Professionals present:

"GDPR Advanced Module for Psychologists, Psychotherapists and Counsellors in private practice".

UK Data protection law is being reformed. As a sole trader and therapist in private practice you need to prepare for the new Data Protection and Digital Information Act as this will affect all individuals and organisations that process personal data. 

New obligations will include appointing and registering yourself as the Senior Responsible Individual with the Information Commissioner and creating a Privacy Management Programme. Join us to fully understand your new obligations and plan for future compliance.

UK Data Protection Law that includes the GDPR is an increasingly complex and evolving piece of legislation that therapists in private practice need to understand and follow. 

Therapists deal everyday with what is known as special category data which is the sensitive personal information your clients tell you, and the GDPR requires that extra care and safeguards are in place to protect data subjects (your clients) sensitive personal information.

 

This well rated course will help you to digest the complexities of this legislation so that you have a clear understanding of what is needed to comply with the GDPR, the policies and paperwork that you need to have in place, and how to respond when your clients exercise their rights under the GDPR. 

Previous participants have said:

"Both Robert and Mark were also really down to earth and approachable and made me feel like no question was too silly to ask. It felt like a safe space to share dilemmas relevant to gdpr."

"Really appreciated the applicability of information shared , rather than just cite legislation, the information was relevant and real life examples were offered, welcome d and thought through together".

"Mark and Robert made a very difficult topic interesting and accessible. Delivery was really good. Examples of enforcement action illustrated points well. Opportunity for questions really good."

This course will cover the following:

Part 1:

1. How to make data protection integral to your practice. This will include what documents you need in place and how to ensure clients are properly informed about your intended processing activities.

2. How to demonstrate adherence to the principles of transparency, accountability.

3. Practical considerations around the nuts and bolts: how long do I need to keep records for, where and how do I keep them, what audit trails are needed, and what documentation must I keep.

4. Choosing the appropriate lawful basis. Where you are not using consent, you will need an alternative. This section will include information about safeguarding and appropriate documentation to support you where individuals may be at risk.

Part 2:

1. What rights do my clients have.

2. What if my client:

a) Makes a subject access request. How do I comply, and can I refuse?

b) Makes a subject deletion request. How do I comply, and can I refuse?

c) Makes a data accuracy request. How do I comply, and can I refuse?

d) Makes a request to stop or limit the use of their data. How do I comply, and can I refuse?

The course includes helpful guidance notes and document templates, and there will plenty of opportunity for questions and discussion throughout the day.

For more info and to book, head over to Eventbrite here