Search updated

Privacy and Cookies Policy

This Privacy and Cookies Policy forms part of the RSCPP Terms and Conditions. RSCPP takes privacy seriously and is registered with the Information Commissioner's Office (ICO).


RSCPP uses a session cookie when the Customer or the Therapist log-in in order to link each with their data. Without it the data link will not operate. It is automatically deleted when the browser is closed or a logged-out webpage is displayed. The Customer and the Therapist should check it is deleted, and clear their caches and histories by consulting their browser’s help facilities. An aggregate cookie is used in order to improve the Website for future visitors. It analyses usage and only identities new and repeat IP addresses. It expires after 6 months and can be deleted by consulting browser’s help facilities.


RSCPP uses a Symantec (Norton) Secure Socket Layer (SSL) 256 Bit Encryption Certificate to provide encrypted communications to and from the Website, AES Encryption to store sensitive data, a server with an IPtable firewall, SHA1 One Way Encoded password protection, computer firewalls and anti virus software, and backup files to prevent loss of data in a catastrophe. RSCPP uses time outs for inactive logged-in sessions but cannot guarantee operation in all browsers. RSCPP cannot guarantee the Website is secure and virus-free as the internet is not secure and virus-free. RSCPP investigates any breach of security should one occur.

RSCPP’s country of merchant domicile is the UK and accepts card payments from UK cardholders and UK Residents using Visa, Visa Delta, Visa Debit, Visa Electron, MasterCard and UK Maestro. RSCPP uses Verified by Visa (VbV) and MasterCard SecureCode (MSC) collectively known as 3D Secure which affect Visa, Visa Delta, Visa Electron, MasterCard and UK Maestro payments. VbV/MSC may email registrants confirmation stating registration was via 'RSCPP Ltd'. RSCPP uses Sage Pay which employs internet facing web servers certified by Verisign and encrypted and digitally-signed data transfer from the Website to Sage Pay. RSCPP transactions appear on cardholder's statements as ' 0800 5345 305' with a unique transaction ID. RSCPP only stores the last four digits of card numbers and card types, cardholders names, billing addresses, contact telephone numbers and transaction IDs in case of refunds for 18 months in compliance with Sage Pay and Lloyds TSB Cardnet standard procedures, and does not supply either with cardholders email addresses, nor email a receipt to a cardholder unless requested to do so by a cardholder.


RSCPP uses Customer data and Therapist data only for the purposes for which each provide it and by providing it each consent to it being used and responded to by RSCPP.

Each party agrees to keep communication to the absolute minimum required in order to convey any message in order to protect the privacy of each party.

The Customer and Therapist agree not to communicate clinical material to RSCPP as it is a matter between the Customer and the Therapist, agree to be responsible for keeping their log-in data, clinical communications, payment history, browsers and computers private and secure and for entirely deleting messages from RSCPP once used, and agree that if either fail to comply or cause a problem as a result of failure to comply either cannot hold RSCPP responsible.

RSCPP deletes data when both the Customer and the Therapist have not logged-in for three years. Offline storage is for an additional four years. If the Customer or the Therapist require a copy of their data at a charge of £10 or have any comments or concerns about data they can email RSCPP at

The Therapist is responsible for copying their data copy to another secure environment within three years of their last log-in date. The Therapist agrees to comply with any data requirement of their professional body and to inform the Customer what the requirement is if they ask. If the Customer requires a copy of their clinical information they should contact the Therapist directly. During clinical supervision the Therapist must not disclose any information that would identify the Customer. When the Therapist introduces other Therapists to RSCPP via the Website, RSCPP shall consider this to be the Therapist's permission to contact the other Therapists.

RSCPP emails are confidential and privileged and are intended solely for the intended recipient and are subject to the Terms and Conditions and Privacy and Cookies Policy of this Website. An unintended recipient must not disclose, copy or distribute information in any email or take any action in reliance on its contents as to do so is strictly prohibited and may be unlawful but must inform RSCPP of any email by replying to any email before deleting it.

RSCPP does not accept any responsibility for any damage whatsoever that is caused by viruses being passed and/or for any loss arising from unauthorised access to, or interference with, any internet communications by any third party, or from the transmission of any viruses.

Any views, opinions or other information presented in emails from RSCPP are solely those of the author and do not necessarily represent those of RSCPP or relate to the business of RSCPP, are personal to the sender and are not given or endorsed by RSCPP.

Any views, opinion or other information written spoken or communicated by the Therapist to the Customer, are personal to the Therapist, are solely those of the author, do not represent those of RSCPP, are not given or endorsed by RSCPP, and do not relate to the business of RSCPP.

RSCPP will never contact any party to ask them for their registered email address, password, or payment card details.

For encrypted email Clinical Services, once the Customer has cancelled their Website registration they will be unable to use their registered email address and password to log-in and view their data so far saved at the Website or book the Therapist's Clinical Services. Any data the Customer drafted and saved but did not submit to the Therapist will not be seen by the Therapist and will be automatically deleted from the Website. The Therapist will not be informed of any encrypted email Clinical Services that the Customer booked at the Website but did not submit to the Therapist before cancelling their Website registration. Once the Customer has cancelled their Website registration they will be able to re-register (subject to Therapist's clinical availability) using the same email address. For encrypted email Clinical Services the Therapist will use the Customer's telephone number in the event of a technical problem. The Customer or the Therapist may delete their own data copy at the Website.

If RSCPP is sold or integrated into another business the Customer’s data and Therapist's data may be disclosed to the prospective purchaser's advisors under stringent confidentiality terms and subsequently to the new owners but only for the purposes of maintaining the supply of the Website and/or the Clinical Services in succession to RSCPP.

RSCPP and the Customer and the Therapist all have the right to privacy and RSCPP expects both the Customer and the Therapist not to publish in the public domain, including the web, any information which passes between them except as may be required by law.
The parties agree to keep confidential any and all information concerning each other whether disclosed in writing, verbally or in relation to the matters provided for in this agreement ("the Information"). The parties further agree in particular not to disclose all or any part of that Information to any third party (except as may be required by mandatory rule of law or order of court of competent jurisdiction or as required for performance of their obligations under this agreement).

Notwithstanding the above, in the event that either RSCPP or the Therapist considers that there is a threat to the Customer's or a third party's safety during the provision of either the Website or the Clinical Services, both RSCPP and the Therapist reserves the right to contact the Customer's GP or the authorities and disclose such information as either RSCPP or the Therapist deem necessary in order to protect the Customer's or a third party's safety. The Customer must therefore keep both RSCPP and the Therapist informed of any changes in their contact details and their GPs contact details. The Customer must keep the Therapist informed of any changes in their personal information. The Customer is advised to inform their GP that they are receiving Clinical Services.

Nothing in this clause shall prevent the free disclosure of information in the public domain at any time, information which was already in a party’s possession, or which is received by a party from an independent source outside obligations of confidence.

Share this page: