Privacy Policy

General

This Privacy Policy forms part of RSCPP's agreement with both the Customer and the Therapist under the RSCPP Terms and Conditions. RSCPP takes the privacy of both the Customer's information and the Therapist's information very seriously.

Data Protection Registration

RSCPP is registered with the Data Protection Commissioner and shall comply with this Privacy Policy at all times, taking reasonable steps to protect the confidentiality of both the information collected from the Customer and the information collected form the Therapist and use such information only for the purposes for which the Customer and the Therapist provide it: the receipt or provision of the Website Services and/or the Clinical Services.

About the Data Protection Act: the Data Protection Act 1998 regulates the processing of personal information, setting rules for processing and increasing individual's rights to control how information about them is used. Within the conditions of this Act RSCPP requires both the Customer's consent and the Therapist's consent to hold their individual information within the RSCPP systems. These details will not be given to anyone inside or outside RSCPP without either the Customer's permission or the Therapist's permission except under the circumstances as detailed in 'Sale and Integration of the RSCPP Business' and 'Limitations to Confidentiality' which form part of this Privacy Policy and these Terms and Conditions.

Customer's and Therapist's consents to use information

Both the Customer and the Therapist should note that by submitting any information about themselves via the Website and the Website Services, in the course of either receiving or providing any of the Clinical Services, either face to face, by telephone, or by encrypted email, constitutes both the Customer's consent and the Therapist's consent to the use of that information as set out in these RSCPP Terms and Conditions.

Storage and Transmission

RSCPP Responsibilities

RSCPP takes prudent steps to ensure that the logged-in part of the Website through which the Website Services are provided is truly secure and virus-free, although RSCPP cannot guarantee this absolutely because the internet is not a secure medium and virus-free.

Server security: the server for the Website employs firewall separation from the internet using IPtables.

Password security: the Website uses SHA1 one way encoding for both the Customer's password and the Therapist's password.

Computer security: RSCPP uses password-protected computers and a finger print recognition computer and regularly updated firewall and anti virus software.

Physical security: RSCPP does not make print outs of either the Customer's information or the Therapist's information. RSCPP locks doors where computers are held.

Encryption - Thawte SSL certificate: RSCPP uses a Thawte SSL Certificate to provide secure communications by encrypting all data to and from our Website. Thawte has checked and verified RSCPP's company registration documents and RSCPP's Website's registered domain name. This information is included in the SSL certificate that Thawte issue. This enables either the Customer or the Therapist to verify the Website's validity for themselves.

About SSL: information transferred between both the Customer's browser and the server and the Therapist's browser and the server is transferred using SSL (Secure Socket Layer) 128 Bit Encryption. SSL encryption is activated when the padlock symbol is displayed on the Customer's browser or the Therapist's browser and when the RSCPP Website URL address begins with httpS://. This means the information transfer is protected by SSL with a 128 bit encryption preventing third parties from illegally accessing the Customer's information and the Therapist's information. If the encryption is not activated both the Customer or the Therapist should not send confidential information via the Website.

Encryption - AES: the Website also uses AES encryption to protect the privacy of the information the Customer and the Therapist share with each other on the Website.

Exceptions to encryption: the information the Customer and the Therapist provide via the Website will be encrypted using SSL and AES encryption apart from the information stated under 'Cookies' and 'RSCPP and the Customer will see the following information on the Therapist's web profile subject to which information the Therapist chooses to provide and this information will not be encrypted' and 'Only RSCPP will see the following information subject to which information the Therapist chooses to provide and this information will not be encrypted' which all form part of this Privacy Policy which forms part of the Terms and Conditions. The information as stated under 'Cookies' is not encrypted so that both the Customer's session time and the Therapist's session time can be personalised within the logged-in area at the Website, and identify the Customer with their encrypted information on the server and the Therapist with their encrypted information on the server.

Both the Customer's information and the Therapist's information is only encrypted if in addition to the above the Customer and the Therapist use the Website Services within the logged-in area at the Website, and not if either the Customer or the Therapist use individual standard email accounts, and not if either the Customer or the Therapist use a version of Internet Explorer lower than version 5. Therefore the use of individual standard email accounts is prohibited for any communication between the Customer and the Therapist unless expressly authorised by RSCPP and RSCPP cannot be held responsible by either the Customer or the Therapist or any other person for the either the Customer or the Therapist using the Website Service within a version of Internet Explorer lower than version 5.

Time outs: if the Customer is logged-in at the Website and their browser is inactive for 10 minutes they will automatically be logged-out, and they will need to log-in at the Website to continue. Time outs do not apply to the Therapist when the Therapist is in the process of registering at the Website and does not yet have a web profile accepted by RSCPP live on the Website. When the Therapist does have a web profile accepted by RSCPP live on the Website, if the Therapist is logged-in at the Website and their browser is inactive for 10 minutes they will automatically be logged-out, and they will need to log-in at the Website to continue. Time outs will help to protect both the Customer's and the Therapist's privacy by reducing the risk of others seeing their individual information if they have left their individual computers unattended. How much time is left before an automatic log-out takes place will be indicated by a timer at the top of the logged-in part of the Website. RSCPP cannot guarantee that the timer will operate in all browsers.

Drafts: following a time out, any online assessment form, further assessment information or encrypted email counselling information that the Customer has drafted will be auto-saved; any online assessment response, further assessment response or encrypted email counselling response that the Therapist has drafted will be auto-saved. Please note: for both the Customer and the Therapist, the 'register', 'change details' and 'change password' webpages are not auto-saved following a time out, and for the Therapist, the 'fee arrangement', 'web profile information', 'administration', 'financials' and 'submit registration' webpages are not auto-saved following a time out; all these webpages must be saved by either the Customer or the Therapist as appropriate if either wish to save their information before logging out or being logged out.

Previous drafts will be automatically deleted when either the Customer or the Therapist amend or send any online assessment form or encrypted email counselling information at the Website.

Data retrieval: RSCPP holds daily backup files in the event of data being lost through flood fire or other catastrophe.

Breach of security: RSCPP will work at detecting and investigating any breach of security should one occur.

Storage times: as a standard procedure RSCPP will store the last dates both the Customer and the Therapist accessed the Website, and a copy of both the Customer's personal data and content and the Therapist's personal data and content for three years subject to the following circumstances: when both the Customer and the Therapist have not logged-in for three years RSCPP will use this three year time period as confirmation that both the Customer and the Therapist have ceased to use the Website Services - both the Customer and the Therapist must not have logged-in for three years for deletion of information to take place; when both the Customer and the Therapist have cancelled their individual Website Services registrations and three years have passed since both of the dates on which the Customer and the Therapist cancelled their individual Website Services registrations; and for three years from the dates when for any reason RSCPP cancels both the Customer's and the Therapist's individual Website Services registrations - RSCPP will only delete the information once both the Customer's and the Therapist's individual Website Services registrations have both been cancelled for three years; upon which time RSCPP will delete both the Customer's personal data and content and the Therapist's personal data and content complying with this Privacy Policy at all times. 'Information Required from the Customer in Order to Provide the Website Services and the Clinical Services' and 'Information Required from the Therapist in Order to Provide the Website Services' is detailed in this Privacy Policy which forms part of these Terms and Conditions.

The stated storage times of three years apply to information held on the server. Offline storage will be for up to an additional four years.

Customer and Therapist Responsibilities

It is the sole responsibility of the Customer to maintain the secrecy of the information they use to access the Website Services and any Clinical Services. It is the sole responsibility of the Therapist to maintain the secrecy of the information they use to access the Website Services and any Clinical Services.

Both the Customer and the Therapist must have their own and individual regularly updated firewall and anti virus software installed on any computer either of them use to access the Website: RSCPP cannot be held responsible for either the Customer or the Therapist failing to comply or any problem arising as a result of their failure to comply.

Pasting: for security reasons both the Customer and the Therapist agree not to paste content into any text fields on the Website.

Customer's and Therapist's inboxes: if the Customer deletes a message from their inbox at the Website, the Therapist's copy of that message in their inbox at the Website will not be deleted. If the Therapist deletes a message from their inbox at the Website, the Customer's copy of that message in their inbox at the Website will not be deleted.

Therapist's copy of information: the Therapist is responsible for copying their copy of their information at the Website to a secure environment other than the Website within three years of the last date they logged in, as if they do not their copy of their information will automatically be deleted if both the Therapist and the Customer have not logged-in for three years. The Therapist may wish to do this as they may be required to keep a copy of their information for a period longer than three years by the professional body they are accredited/registered with: the Customer should enquire with the Therapist directly if they wish to establish what this time period is as this is a clinical matter for the Therapist.

Card Transaction Privacy & Security

Cards

RSCPP accepts online payments at the Website from UK cardholders and UK Residents: Visa; Visa Delta; Visa Debit; Visa Electron; MasterCard; and UK Maestro. RSCPP's country of domicle is the UK.

3D Secure

RSCPP uses Verified by Visa (VbV) and MasterCard SecureCode (MSC), collectively known as 3D Secure.

About 3D Secure: 3D Secure is an online equivalent to Chip and PIN. When either the Customer or the Therapist makes an online payment at the Website, they may be re-directed to their card issuer's website during the payment process to enter a password in order to authenticate themselves. This additional security makes it much more difficult for fraudsters to use stolen card numbers.

Cards: 3D Secure may affect online transactions if the either the Customer or the Therapist pay with: Visa; Visa Delta; Visa Electron; MasterCard; and UK Maestro.

Registering for 3D Secure: 3D Secure transactions requires the Customer and the Therapist to register for Verified by Visa or MasterCard SecureCode with their individual card issuers: if they have not already registered they will be able to during the transaction process. Alternatively they can register or find out more information from:

http://www.visaeurope.com/personal/onlineshopping/verifiedbyvisa/main.jsp

http://www.mastercard.com/us/personal/en/cardholderservices/securecode/index.html

If either the Customer or the Therapist register for Verified by Visa or MasterCard SecureCode at their individual card issuer's websites either may receive a confirmation email at the email address each use to register: the email may state that registration took place at 'RSCPP Ltd'.

Encryption - Thawte SSL certificate

RSCPP uses a Thawte SSL Certificate to provide secure communications by encrypting all data to and from our Website. Thawte has checked and verified RSCPP's company registration documents and RSCPP's Website's registered domain name. This information is included in the SSL certificate that Thawte issue. This enables either the Customer or the Therapist to verify the Website's validity for themselves.

Verifying certificate: either the Customer or the Therapist can verify RSCPP's Thawte SSL certificate before entering any sensitive information by clicking on the padlock symbol in their browsers once they are logged-in, or by clicking on the 'secured by thawte' padlock logo on the payment webpage in the logged-in area at the Website.

About SSL: when either the Customer or the Therapist enters their individual card numbers at the Website the details are sent from the Customer's or the Therapist's browser to the RSCPP server, then to the Protx and Lloyds TSB Cardnet servers for payment processing. This transfer takes place using SSL (Secure Socket Layer) 128 Bit Encryption. SSL encryption is activated when the padlock symbol is displayed on the Customer's browser or the Therapist's browser and when the RSCPP Website URL address begins with httpS://. This means the information transfer is protected by SSL with a 128 bit encryption preventing third parties from illegally accessing the Customer's information and the Therapist's information. If the encryption is not activated both the Customer or the Therapist should not send confidential information via the Website.

Protx Payment System

The Protx payment system uses a combination of established and innovative techniques to ensure the security and integrity of all sensitive data. The internet facing web servers are certified by Verisign, this ensures that no third parties can impersonate Protx to obtain secure information.

The transfer of the sensitive transaction details from the RSCPP Website to Protx is encrypted and digitally-signed. This ensures that the information passed is secure and tamper-proof.

Any communication between the Customer and Protx or the Therapist and Protx is encrypted up to a maximum strength of 128 Bit. Both the Customer and the Therapist are also protected from fraudulent use of their individual cards in a "card not present" environment, by their individual card issuers.

All data stored on Protx systems is held on encrypted and highly secured databases. Protx are regularly audited by Visa and MasterCard to ensure that their systems conform to the latest security standards.

Statements

Transactions will appear on the cardholder's statements when either the Customer or the Therapist make an online payment at the Website as

'www.rscpp.co.uk 0800 5345 305'.

To protect the privacy of the cardholder RSCPP advises the Customer to not use cards which are shared with someone else who may see the statements, and to not let others see the card statements.

Customer Payment Confirmation

Whenever the Customer makes an online payment in the logged-in area at the Website in order to confirm a Clinical Service a webpage containing a transaction receipt/confirmation of service will be displayed. The webpage will include the following information in accordance with Protx and Lloyds TSB Cardnet standard procedures; an instruction to print or keep the receipt for any future query; payment query contact information including the RSCPP trading name; the RSCPP address; the RSCPP telephone number; an RSCPP email address, the RSCPP Website URL address; the RSCPP country of merchant domicile (UK); the total cost of the Customer's purchase in the transaction currency of pounds sterling; the transaction date and type (sale or refund); a RSCPP Transaction ID which is a unique transaction order reference number; details of what will appear on the cardholder's statement; the Customer's name, an authorisation code; a description of the services the Customer purchased; a statement that nothing will be delivered to the cardholder's address; a link to the RSCPP Terms and Conditions; and a link to RSCPP's policy on Cancellations Refunds or Re-scheduling of Clinical Services.

To protect the privacy of the Customer RSCPP advises the Customer that if they chooses to print paste or copy a transaction receipt/confirmation of service webpage that they should do so to secure location: it is the sole responsibility of the Customer to maintain the privacy and security of their information.

A record of RSCPP Transaction ID for any payment the Customer makes online in the logged-in area of the Website will be available on the Customer's 'confirmation page/receipt' webpage and 'view transactions' webpage and if the Clinical Services are refundable, on their 'cancel services' webpage. The Customer should quote this ID in the event of any payment query.

Storage

Whenever the cardholder (Customer or Therapist) makes an online payment in the logged-in area at the Website, RSCPP will not see or store the entire card number of the cardholder: RSCPP will store the last four digits of the card number, and a copy of the Customer's financial transactions including the cardholder's name and billing address, contact telephone number, card type, and the RSCPP Transaction ID. The card type and the last four digits of the card number will be stored encrypted. Refunds will be made via the RSCPP Transaction ID. This information will be stored for 18 months in compliance with Protx & Lloyds TSB Cardnet standard procedures and the RSCPP Privacy Policy at all times.

Third Parties

To protect the privacy of both the Customer and the Therapist RSCPP will not supply Protx or Lloyds TSB Cardnet with the registered email address of the Customer. RSCPP will not send a payment receipt to the Customer's registered email address unless specifically requested to do so by the Customer. If either the Customer or the Therapist register for Verified by Visa or MasterCard SecureCode at their individual card issuer's websites either may receive a confirmation email at the email address each use to register: the email may state that registration took place at 'RSCPP Ltd'.

Information Required from the Customer in Order to Provide the Website Services and the Clinical Services.

Online Registration Form

Once the Customer has both completed and submitted their online registration form, depending on what information the Customer submits:

RSCPP will see the following information: their first name; last name; registered email address; preferred method of Clinical Service; choice of Therapist; acceptance of the RSCPP terms and conditions which is an essential condition of the Customer's use of the Website Services; referrer if provided; and the RSCPP authentication code. An authentication code is used by the Customer to authenticate the email address they register at the Website: once the authentication code has been successfully used it is redundant.

Password

RSCPP and the Therapist will not see or know the Customer's password which is created by the Customer and which the Customer will use to log-in at the Website.

Online Booking Form

Once the Customer has booked a Clinical Service of the Therapist:

RSCPP will see the information: as detailed under 'Storage' within 'Card Transaction Privacy & Security' which forms part of this Privacy Policy which forms part of the Terms and Conditions.

The Therapist will see the following information: their first name; last name; contact telephone number; home address if this is the same as the billing address, and the time and date of any booked face to face or telephone Clinical Service. The Therapist will not see this booking information if the Customer books an encrypted email Clinical Service: the Therapist will only be notified of any information supplied by the Customer to the Therapist once the Customer has submitted it by either an online assessment form, further assessment information form, or email therapy form.

Online Assessment Form

Once the Customer has both completed and submitted their online assessment form to the Therapist, depending on what information the Customer submits:

RSCPP and the Therapist will see the following information: their first name; last name; registered email address; telephone number; address; city; postal code; date of birth; GP's name (minimum); GP's telephone number (minimum); GP's standard email address (optional); GP's address (optional); GP's city (optional); and the GP's postal code (optional);

Only the Therapist will see the following information: an outline of all the problems that the Customer requires counselling psychotherapy or psychoanalysis for including the date of onset and any symptoms such as anxiety or depression etc that they may be experiencing including the approximate date of onset; mental health history including their psychiatric history and any thoughts of suicide harming themself or others; personal and family circumstances including any social support they may have; physical health including any physical conditions they may have; the name duration and dosage of any prescribed medicines they take and the conditions they take them for; average weekly alcohol intake; details of any recreational drugs they take; any agencies involved in their wellbeing; and any questions and concerns they may have.

Change of Details

Once the Customer has completed and submitted to the Therapist information via a 'change details' webpage, depending on what information the Customer submits:

RSCPP and the Therapist will see the following information: the Customer's first name; last name; telephone number; address; city; postal code; date of birth; GP's name; GP's email address; GPs telephone number; GPs address; GP's city; and/or GP's postal code.

Other Information

The Therapist will know any information the Customer chooses to provide to the Therapist either face to face, by telephone, or encrypted email in the course of receiving the Clinical Services of the Therapist subject to the RSCPP General Usage, RSCPP Disclaimers, RSCPP Breach and Termination, and RSCPP The Services which all form part of the RSCPP Terms and Conditions of which this Privacy Policy is a part.

Information Required From the Therapist in Order to Provide the Website Services.

Once the Therapist has successfully registered at the Website:

RSCPP and the Customer will see the following information on the Therapist's web profile subject to which information the Therapist chooses to provide and this information will not be encrypted: the Therapist's first name; last name; photo (if uploaded); availability; fees; whether or not the Therapist provides a face to face clinical service and/or a telephone clinical service and/or an encrypted email clinical service; approximate length of appointment(s); approximate length of time spent on an email response; approximate length of therapy; face to face consulting address (if applicable); telephone number for telephone counselling (if applicable and only when the Customer has booked a telephone appointment with the Therapist); title; professional accreditation/registration; qualifications; theoretical approach(es); clinical experience including the problem(s) the Therapist works with and any specialist skills the Therapist may have; the clientele the Therapist works with such as individuals and/or couples and/or families and/or groups; clinical training; nearest tube and train station and bus stop (if applicable); whether the Therapist's face to face consulting address has wheelchair access (if applicable); the language(s) in which the Therapist can provide their clinical service(s); and any additional information the Therapist wishes to include.

Only RSCPP will see the following information subject to which information the Therapist chooses to provide and this information will not be encrypted: the Therapist's acceptance of these Terms and Conditions; how the Therapist heard about RSCPP; fee band selection; choice of fee agreement (either a face to face referral agreement or an ongoing usage fee agreement); the Therapist's proof of accreditation/registration with a professional body (the Customer may verify this information independently); declaration of current professional indemnity insurance including the supplier and expiry/renewal date and limit; the name and qualifications and accreditation of the Therapist's clinical supervisor; the number and length and modality (individual or group) of monthly clinical supervision sessions attended by the Therapist; whether or not the Therapist can provide a face to face clinical service on a regular basis in a room free from interruptions; whether or not the Therapist can provide a telephone clinical service on a regular basis in a room free from interruptions; whether or not the Therapist can provide an encrypted email clinical service on a regular basis on a private computer free from interruptions; whether or not the Therapist has NHS experience and is on a practitioner list and if so the name of the practitioner list; whether or not the Therapist has training in Child Protection and/or Protection of Vulnerable Adults and/or Data Protection Act and record keeping; whether or not the Therapist has Criminal Records Bureaux (CRB) Enhanced Level Clearance and if so the date of the last clearance and whether or not the Therapist's clinical supervisor has CRB Enhanced Level Clearance and if so the date of the last clearance; whether or not the Therapist has used the Clinical Outcomes in Routine Evaluation (CORE) system and whether or not the Therapist has received training in using CORE; whether or not the Therapist can store clinical information in a secure environment other than the Website; the URL of the Therapist's own website if the Therapist has their own website and whether or not the Therapist wishes to exchange links; the first name(s) and last name(s) and email address(es) of any other therapist(s) the Therapist wishes to introduce to RSCPP.

Only RSCPP will see the following information subject to which information the Therapist chooses to provide and this information will be encrypted using SSL and AES encryption: an answer from the Therapist to a security question for the purpose of helping to identify the Therapist if the Therapist contacts RSCPP; the Therapist's home telephone number; mobile number; home address including town and postcode; the Therapist's bank details including the account holder name and account number and sort code and name and address of bank/building society for the purpose of setting up monthly payments from the Therapist to RSCPP for the Therapist's web profile; and only when the Therapist is on an ongoing usage fee agreement the Therapist's bank account number and sort code for the purpose of RSCPP paying the Therapist any monies owed under an ongoing usage fee agreement which forms part of these Terms and Conditions.

Notifications & Unencrypted Emails & Faxes

Notifications & Unencrypted Emails

Use: RSCPP will send notifications to: the Customer only for the reasons detailed in 'Notifications' under 'Customer's Use of the Website Services' in the 'The Services'; and the Therapist only for the reasons detailed in 'Notifications' under 'Therapist's Use of the Website Services' in the 'The Services'; which both form part of these Terms and Conditions.

RSCPP may contact either the Therapist regarding Website Services matters, or the Customer regarding payment queries or in emergencies where the Therapist is unable to respond to the Customer, at their individual registered email addresses via unencrypted emails using RSCPP standard email addresses. If communication with the Customer is necessary RSCPP will keep any of the Customer's details in any unencrypted email to the absolute minimum required in order to convey the message, and may telephone the Customer instead in order to protect the confidentiality of the Customer.

If the Customer contacts RSCPP via any unencrypted RSCPP standard email address, RSCPP will accept this as permission for RSCPP to reply to the Customer at the email address the Customer used to contact RSCPP. The Customer is strongly advised not to include any clinical information when contacting RSCPP via any RSCPP unencrypted standard email address, as clinical information is a clinical

matter for the Therapist and must be conveyed to the Therapist face to face, by telephone or via encrypted email.

Privacy notice: Notifications and unencrypted emails sent to either the Customer's registered email address or the Therapist's registered email address are confidential and privileged, are intended solely for the intended recipient, and are subject to the Terms & Conditions and Privacy Policy of this Website.

An unintended recipient must not disclose, copy or distribute information in any notification or unencrypted email or take any action in reliance on its contents: to do so is strictly prohibited and may be unlawful. An unintended recipient must inform the Website of any notification or unencrypted email which has gone astray by replying to any notification or unencrypted email before deleting it.

Replies: Replies to notifications and unencrypted emails will be monitored by RSCPP.

Sending address: notifications will be sent from info@information-notifications.co.uk rather than the Website URL address and they will contain no mention of any Clinical Services in order to protect the privacy of both the Customer and the Therapist. Once the Customer and the Therapist have used these notifications, the Customer and the Therapist must delete these notifications from both the inbox and the deleted items folder of their individual registered email addresses.

Unencrypted emails will be sent from RSCPP's domain which is rscpp.co.uk

Security: notifications and non-encrypted emails are not guaranteed to be secure or virus-free. Although RSCPP operates anti-virus programmes, RSCPP does not accept any responsibility for any damage whatsoever that is caused by viruses being passed. RSCPP does not accept responsibility for any loss arising from unauthorised access to, or interference with, any Internet communications by any third party, or from the transmission of any viruses.

Any information either the Customer or the Therapist provide in standard emails including any email sent or received to email addresses at RSCPP is not encrypted and is not 100% secure.

Authorship: any views opinions or other information presented in unencrypted emails sent from www.rscpp.co.uk or its attachments are solely those of the author and do not necessarily represent those of RSCPP or relate to the business of RSCPP, are personal to the sender and are not given or endorsed by RSCPP.

Any view opinion or other information written spoken or communicated either via unencrypted email, face to face, by telephone, by encrypted email, fax or by any other means, by the Therapist to the Customer, are personal to the Therapist, are solely those of the author, do not represent those of RSCPP, are not given or endorsed by RSCPP, and do not relate to the business of RSCPP.

Faxes

RSCPP advises both the Customer and the Therapist not to send any confidential information to RSCPP by fax as faxes are not secure and RSCPP cannot guarantee security.

Cancellation of Registration of Website Services

Once the Customer has cancelled their Website Services registration:

the Customer will be emailed a confirmation of cancellation of registration at the email address they had registered at the Website;
RSCPP will be informed of the Customer's Website Services registration cancellation;
the Therapist will neither be notified of the Customer's Website Services registration and/or Website Services registration cancellation until the Customer has booked any face to face or telephone Clinical Service at the Website with the Therapist, and for encrypted email Clinical Services, only from when the Customer has submitted the online assessment form to the Therapist.
the Customer will be unable to use the email address they had registered and their password to log-in and view their copy of any of their information so far saved at the Website, or book the Therapist's Clinical Services.
any information the Customer may of drafted and saved but had not submitted to the Therapist will not be seen by the Therapist and will be automatically deleted from the Website.
the Therapist will be informed of any face to face or telephone Clinical Services that the Customer booked at the Website before cancelling their Website Services registration.
the Therapist will not be informed of any encrypted email Clinical Services that the Customer booked at the Website but did not submit to the Therapist before cancelling their Website Services registration.
once the Customer has cancelled their Website Services registration they will be able to re-register (subject to therapist's clinical availability) using the same email address.

Cookies

RSCPP Session Cookie

RSCPP will use a session cookie only for the duration of either the Customer's logged-in sessions or the Therapist's logged-in sessions at the Website.

About the cookie: the cookie will be placed on either the Customer's computer when they log-in at the Website and it will identify the Customer with their encrypted information on the server, and the Therapist's computer when they log-in at the Website and it will identify the Therapist with their encrypted information on the server.

The cookie will enable RSCPP to provide the Website Services to both the Customer and the Therapist efficiently. Without the cookie RSCPP will not be able to provide the Website Services to either the Customer or the Therapist.

Unencrypted cookie and text file content: the unencrypted information stored temporarily in the cookie for the Customer on their computer will be their unique user identification.

The unencrypted information stored temporarily in the text file for the Customer on the server will be their: unique user identification (in order to link to the cookie); first name; last name; registered email address; status; their therapist's unique identification number; the name of the area they are logged in to (client area) and the associated flash file; a unique reference to determine if a webpage has been refreshed or is new; the URL of the last webpage viewed; and the HTML of the last webpage used.

The unencrypted information stored in the cookie for the Therapist on their computer will be their unique user identification.

The unencrypted information stored temporarily in the text file for the Therapist on the server will be their: unique user identification (in order to link to the cookie); first name; last name; registered email address; status; the name of the area they are logged in to (Therapist area) and the associated flash file; a unique reference to determine if a webpage has been refreshed or is new; the URL of the last webpage viewed; and the HTML of the last webpage used.

Deletion of cookie: this cookie will be automatically deleted from the Customer's computer whenever they close their browser, log-outs or are automatically logged-out from the Website, and from the Therapist's computer whenever they closes their browser, log-outs or are automatically logged-out from the Website. When either the Customer or the Therapist log-out from their individual computers they will see a confirmation webpage indicating that they are logged-out at the Website before they close their individual browsers.

Google Persistent Aggregate Cookie

If either the Customer or the Therapist individually browse this Website RSCPP will use a Google Analytics persistent aggregate cookie containing either's IP address to analyse aggregate patterns of this Website, but RSCPP will not link either's individual IP address to their personal information in order to build a personal profile of either one of them. This cookie will expire after 6 months and will be used to identify new and repeat visitors to the Website by their IP addresses.

Precautions

As an extra precaution RSCPP advises the Customer and the Therapist to manually delete their individual cookies files, clear their individual caches, and delete the histories from their individual browsers before they close them.

If the Customer or the Therapist want to delete any cookies that are already on their individual computers, they are advised to refer to the instructions for their individual file management software to locate the file or directory that stores cookies.

To clear cookies, history, and files from Internet Explorer, either the Customer or the Therapist must: › click on 'Tools' › then 'Internet Options' › then 'General' › then click on 'Delete Cookies' › 'Delete Files' › and 'Clear History' › and 'OK' before closing their individual browsers.

To clear cookies, history, and files from Mozilla Firefox, either the Customer or the Therapist must: › click on 'Tools' › then 'Options' › then 'Privacy' › then click on 'Clear' for 'History' 'Cookies' and 'Cache'› then click on OK.

Please note that by deleting RSCPP's cookies or disabling future cookies both the Customer and the Therapist may not be able to access and use the Website Services and the online Clinical Services and the security features associated with them.

More Information on Cookies

Information on deleting or controlling cookies is available at www.AboutCookies.org

Protect Your Privacy

RSCPP recommends both the Customer and the Therapist protect their individual privacy and each other's privacy in the following ways:

change your password to one more memorable when you first log-in, and to increase security your password must be at least 8 characters long and contain 2 numbers and at least one capital letter;
change your password at least once a month;
do not write down your password;
do not use an autofill on your browser or any similar programme to remember your registered email address and password;
password protect the computers and registered email address account you use to log-in;
never leave your computers or registered email account unattended;
check email addresses are correct before sending;
avoid shared computers, telephones, and billing;
keep firewall and virus software up to date;
do not use attachments;
do not paste content into the text fields at the Website;
check the privacy policies of your internet and telephone service providers;
use a quiet and private room when you are logged-in to the Website or using telephone counselling Clinical Services;
if you copy your information from the Website to another location you do at your own own risk and should use a secure storage environment;
RSCPP will never contact you to ask you for your registered email address, password, or payment card details: if someone does in apparent connection to this Website do not provide them with your details. Instead, please email RSCPP at security@rscpp.co.uk.

Sale and Integration of the RSCPP Business

In the event that the RSCPP business is sold or integrated into another business, both the Customer's details and the Therapist's details may be disclosed to RSCPP's prospective purchaser's advisors under stringent confidentiality terms and subsequently to the new owners but only for the purposes of maintaining the supply of Website Services and/or Clinical Services in succession to the RSCPP current business.

Feedback

If either the Customer or the Therapist have any comments or concerns about RSCPP's use, storage or processing of their individual personal information at any time, please contact RSCPP by email at data@rscpp.co.uk.

Access to Information

If either the Customer or the Therapist require a copy of their respective information as stored by RSCPP for the Website Services, please request this by contacting RSCPP at data@rscpp.co.uk. There is a is a £10 charge for this Service.

If the Customer requires a copy of their clinical information they should contact the Therapist directly.

Limitations to Confidentiality

RSCPP and the Customer and the Therapist all have the right to privacy and RSCPP expects both the Customer and the Therapist not to publish in the public domain, including the web, any information which passes between them except as may be required by law. The parties agree to keep confidential any and all information concerning each other whether disclosed in writing, verbally or in relation to the matters provided for in this agreement ("the Information"). The parties further agree in particular not to disclose all or any part of that Information to any third party (except as may be required by mandatory rule of law or order of court of competent jurisdiction or as required for performance of their obligations under this agreement).

Notwithstanding the above, in the event that either RSCPP or the Therapist considers that there is a threat to the Customer's or a third party's safety during the provision of either the Website Services or the Clinical Services, both RSCPP and the Therapist reserves the right to contact the Customer's GP or the authorities and disclose such information as either RSCPP or the Therapist deem necessary in order to protect the Customer's or a third party's safety.

RSCPP is included in this clause as although RSCPP does not provide the Clinical Services, there may be circumstances where RSCPP may decide such action is necessary, as in a possible case when the Customer who is not receiving Clinical Services from a Therapist contacts RSCPP giving RSCPP concern for the Customer's or a third party's safety.

If there are circumstances where the Therapist is sufficiently concerned for the Customer's or a third party's safety that the therapist feels the need to inform RSCPP, in this case, RSCPP would decide with the Therapist on the necessary course of action.

The Customer must therefore keep both RSCPP and the Therapist informed of any changes in their contact details and their GPs contact details. The Customer must keep the Therapist informed of any changes in their personal information.

The Customer is advised to inform their GP that they are receiving Clinical Services.

For encrypted email counselling the Therapist will use the Customer's telephone number in the event of a technical problem.

RSCPP will send notifications to: the Customer only for the reasons detailed in 'Notifications' under 'Customer's Use of the Website Services' in the 'The Services'; and the Therapist only for the reasons detailed in 'Notifications' under 'Therapist's Use of the Website Services' in the 'The Services'; which both form part of these Terms and Conditions.

When the Therapist introduces other Therapists to RSCPP during the Therapist registration process, RSCPP shall consider this to be the Therapist's permission to contact the other Therapists.