ReConnect Scotland – Privacy Policy

Effective from: 13th Oct 2025
Last updated: 13th Oct 2025

1. Introduction

This Privacy Policy explains how ReConnect Scotland collects, stores, and protects your personal information in line with the UK General Data Protection Regulation (GDPR) and the Data Protection Act 2018.

ReConnect Scotland operates as both a Therapy Hub and a Community Hub.

  • The Therapy Hub provides individual and couples counselling.

  • The Community Hub offers creative workshops, discussion groups, and community events.

By engaging with our website, therapy services, or community offerings, you consent to the terms outlined below.

ReConnect Scotland is owned and operated by Odett Toth, registered as a sole trader in Scotland and the data controller for all information collected.

2. Website and Cookies

ReConnect Scotland’s website is hosted on the Squarespace platform.
Squarespace provides the online platform that allows us to present information, advertise services, and collect bookings or newsletter sign-ups.

Your data may be stored through Squarespace’s secure servers and databases, which are protected by firewalls and encryption.

Squarespace (and any integrated apps such as Acuity Scheduling or Stripe) may use cookies for purposes such as:

  • Ensuring the website functions smoothly.

  • Analysing performance and visitor interactions.

  • Keeping the platform secure.

You can manage cookie preferences directly through your browser settings or by visiting our Cookie Policy page for more information.

We may also use anonymised analytics tools to understand visitor trends (e.g. session duration, page visits, and interactions). This data does not identify you personally.

3. Information We Collect

We collect information in several ways, depending on how you interact with us:

When you contact us or book therapy sessions:

  • Name, preferred pronouns, and contact details (email, phone number).

  • Availability, reason for enquiry, and relevant background details shared voluntarily.

  • Payment information (processed securely through third-party platforms).

  • Session attendance records and appointment dates.

  • Any information you provide that you wish your therapist to know before or during therapy.

When you attend community workshops or events:

  • Name and contact details for booking and communication.

  • Optional details shared during creative or reflective activities (these remain confidential within the group setting).

  • Payment and attendance information.

When you subscribe to our newsletter:

  • Name and email address.

  • Preferences for updates about workshops, new offerings, or community news.

We do not collect unnecessary information and only retain what is needed to provide our services.

4. How Your Information Is Used

We use your information to:

  • Respond to enquiries and manage bookings.

  • Provide therapy and community services safely and effectively.

  • Communicate about sessions, events, or schedule changes.

  • Process payments and maintain financial records.

  • Send occasional updates if you have subscribed to our newsletter (you can unsubscribe at any time).

Your personal data will never be sold or shared with third parties for marketing purposes.

5. Confidentiality and Data Sharing

Therapy Clients:
All information shared in therapy is confidential. It may only be shared if:

  • Required by law or court order.

  • Necessary to prevent serious harm to you or another person.

  • Discussed (in anonymised form) in clinical supervision, which all therapists undertake as part of ethical practice.

Your therapist is self-employed and maintains responsibility for your therapy notes and data storage, in accordance with their own privacy policy and professional body standards.

Community Participants:
Information shared during community sessions is treated respectfully but does not constitute a confidential therapeutic record. Participants are asked to respect others’ privacy and not disclose personal details outside of the session.

6. How and Where Your Information Is Stored

  • Electronic records are stored on password-protected devices and encrypted cloud systems.

  • Paper notes (if used) are kept securely in locked storage.

  • Payment and website data are processed through secure, GDPR-compliant third-party providers (e.g. Squarespace, Stripe, or Mailchimp).

Data is stored within the UK or European Economic Area (EEA). If processed outside the EEA (e.g. by Squarespace’s US servers), this is done under legally approved data protection safeguards.

7. Data Retention

Therapy records are retained for a minimum of 7 years after the end of therapy, or until 7 years after a client turns 18 (whichever is later), in line with professional and insurance requirements.

Community and booking records are held for no longer than necessary, typically up to 12 months after the last point of contact.
Newsletter data is held until you unsubscribe.

After these periods, data is securely deleted or destroyed (digitally erased or paper-shredded).

8. Contact and Communication

We may contact you to:

  • Confirm or amend appointments.

  • Provide requested information or updates.

  • Ensure your wellbeing if you have missed a session unexpectedly.

  • Share community updates or events if you have opted in to the newsletter.

You can withdraw consent for non-essential contact at any time by emailing odett@reconnectscotland.com.

9. Your Rights

Under the UK GDPR, you have the right to:

  • Be informed – know how your data is used (as outlined here).

  • Access – request a copy of your records.

  • Rectification – ask for corrections if information is inaccurate.

  • Erasure (“right to be forgotten”) – request deletion of your records, where legally possible.

  • Restrict processing – limit how your data is used.

  • Data portability – request a digital copy to transfer to another service.

  • Object – refuse certain types of data processing.

  • Complain – to the Information Commissioner’s Office (ICO) if you believe your data has been mishandled.

For more information, visit www.ico.org.uk.

10. Contact Details

Data Controller: Odett Toth
Trading Name: Odett Toth trading as ReConnect Scotland
Email: odett@reconnectscotland.co.uk
Address: Suite 3, 46a Constitution street, Edinburgh, EH66RS

If you have questions, wish to exercise your rights, or have concerns about how your information is used, please contact us directly.

If you are dissatisfied with our response, you can contact the Information Commissioner’s Office (ICO) via ico.org.uk.

11. Updates to this Policy

This Privacy Policy will be reviewed regularly and updated as necessary to reflect changes in data protection law or our practices. The most recent version will always be available on our website.