Privacy Policy



Brighton Counselling Collective considers the right to privacy of paramount importance for our clients, the service providers we work in collaboration with, and the associate therapists who are part of our collective.


Following the changes to EU regulations effective from 25th May 2018, we have taken the necessary steps to ensure all our policies and procedures are up to date to reflect the way in which we collect, process, store and safeguard information, classified as personal data and client records. Furthermore, in order to give our potential and existing service users a clearer understanding of how we intend to apply this legislation, below there is some useful information regarding who we are, why we collect data and how this data is stored and protected.  



Who we are:


Brighton Counselling Collective CIC is a registered Community Interest Company (Reg no: 10598468) offering psychological treatment, including counselling and psychotherapy, to all member groups of our community, as well as supporting mental health practitioners develop an ethical and responsible private practice.


We are located at 39 Portland Road, Hove BN3 5DQ and have been in operation since February 2017. At the time this notice has been published, we have 7 associate therapists working within our collective on a self-employed basis. We also have two directors, Caterina Gilardi and Charlotte Almond, who are responsible for the financial and strategic management of the organisation, as well as the day to day running of the business. We currently don’t employ any third party agency or administrator and the work of the directors is done on a voluntary basis to ensure our philanthropic mission is met and promoted. One of our Directors, Ms Charlotte Almond, has also been appointed as our Data Protection Officer (DPO) within our organisation.


is owned, updated and maintained by Brighton Counselling Collective CIC and complies with the best standards within the industry when it comes to ensuring it is safe to navigate. This means it is registered under an https protocol address, which guarantees all data shared within the website is automatically encrypted and protected. website, Within our website we also have a contact form, which requires the sender to share their email address and phone number. This information is necessary to enable us to reply to a service user’s query and offer the required support and remains strictly protected within our organisation alone.


Brighton Counselling Collective is also a registered company with the Information Commissioner’s Office (ICO) and adheres to the ICO’s best practices for safeguarding our service user’s and partners personal data.


Data we collect and why we collect it


As a part of our day to day activity, and to be able to offer the best service to the members of our community, we need to obtain personal data from our service users such as contact details, dates of birth, gender, ethnicity, GP details, availability and issues they might want to discuss in confidence during the initial consultation. We have to collect this data to protect the vital interest of both our service user and, service providers (our associate therapists) as well as ensure we offer the best possible service.


How we store our data


All personal and confidential data is stored, maintained and retained (up to 7 years) in accordance with the principles of the Data Protection Act 1998 and the new EU regulation changes. 


When collected, data is treated strictly confidentially and can only be accessed by the two directors of Brighton Counselling Collective, and the associate therapist who will be working with the client once the client has agreed to have an initial consultation and for us to share their details with the potential therapist. We take diligent steps to keep our service users’ data secure: our client records are electronically stored, coded with numeric and alphabetical codes, encrypted and password protected when shared between BCC and the associate therapist.


How and when we share our data


Data within Brighton Counselling Collective is kept strictly confidential and is not shared with third parties under any circumstances – unless the service user presents with a condition that we consider to be outside of our areas of expertise, for which a referral to a different service provider may be deemed necessary. In the event this occurs, the service user will be asked for their consent to data sharing prior to us taking any further steps.


Consent is also required when we may share your personal data with the appropriate practitioner for start of therapy. Consent is obtained in writing and retained with your personal data. Age restriction for personal consent is 16 in the UK. Parental/Guardian consent will be taken if an individual is below the age of 16.


Due to the nature of work done and official authority vested in Brighton Counselling Collective CIC for Safeguarding Adults and Safeguarding Children, if there is a risk of harm to one’s self or others, we reserve the right to contact relevant authorities (etc. Adult Social Care) and share information.


Service Users Rights


The new regulations include provisions for ensuring the rights of the service users are respected at all times.


Below is how Brighton Counselling Collective (BCC) will enable these provisions:


  1. Brighton Counselling Collective has a privacy notice on the

  1. The right to be informed:website, and a privacy policy page (this page) that aims to explain to all service users and providers how their personal data is collected and stored

  2. Individuals have the right to demand details of any of their data that Brighton Counselling Collective may hold. This is called a Subject Access Request and is done through the Data Protection Officer, Charlotte Almond at The right of . This information must be requested in writing and provided within one month of the request at no charge to the individual.

  3. The right to rectification: If a person’s data is incorrect or incomplete, they have the right to have it corrected.

  4. The right to erasure: A person may request the removal of their personal data in specific circumstances. Individuals must contact the Data Protection Officer, Charlotte Almond, via

  5. The right to restrict processing: Under certain circumstances, an individual can block the processing of their personal data. Individuals must contact the Data Protection Officer via 

  6. The right to data portability: A person can access their data for their own use anywhere they prefer.

  7. The right to object: A person can object to the use of their personal data for most purposes.

  8. The right not to be subject to automated decision-making including profiling


Data breaches and breach reporting


GDPR introduces a duty on all organizations to report certain types of data breach to the ICO, and in some cases, to individuals. Breaches that are likely to result in risk to the rights and freedoms of individuals-if, for example, this would result in discrimination, damage to reputation, financial loss, loss of confidentiality or any other significant economic or social disadvantage, any witness holds the right to report this breach to ICO. In case of high risk, individuals concerned directly must also be informed.


Brighton Counselling Collective have the right procedures in place to detect, investigate and report personal data breaches. Any type of risk identified above must be reported to the DPO immediately for an investigation and it is accepted that failing to report risk will result in liability for our organisation.



For further information regarding pages below:General Data Protection Regulations (GDPR) please visit the