GDPR Policy
Last updated: 12/02/2020
The General Data Protection Regulation, or GDPR, is a European privacy law which came into effect May 25, 2018. The GDPR regulates how individuals and organisations may collect, use, and retain personal data.
Personal data intentionally given by user
Under the GDPR, personal data is any information that can reasonably identify a specific living person, either alone or with other information. This broad definition includes not only traditional personal data—e.g., dates of birth, names, physical addresses, email addresses—but location data, biometric data, financial information, and much more.
Personal data collected by emmamyrtletherapy.com is collected through the contact form. Required personal data is a full name and a phone number optional data is an email address and a message block. Optional data is clearly marked on the contact form.
Personal data submitted through the contact form is held by emmamyrtletherapy.com in electronic format for the purpose of arranging an initial consultation. If a consultation converts into a client, this data is held continuously until client sessions cease, as per our deletion policy. Else this data is deleted as per our deletion policy.
GDPR and Squarespace
This website is hosted by Squarespace. Click here to learn more about how Squarespace satisfies the requirements of GDPR.
Click here to read our privacy policy, which includes information about Squarespace’s use of cookies.
Third-party plug-ins and services
emmamyrtletherapy.com does not use any third party plug-in or services outside of the Squarespace SAAS defaults.
Deletion policy
Personal information submitted through the contact form will be deleted within 30 days of the following conditions being met:
phone call consultation cannot be arranged within 30 days of form submission
user confirms they do not wish to continue with sessions, whether after initial consultation or some period of sessions
user requests deletion in line with their GDPR rights