Privacy Policy
Last updated: 22 May 2026
1. Introduction
This Privacy Policy explains how Brooke Z Healing collects, uses, stores, and protects your personal information in line with UK GDPR and data protection laws.
By using this website or engaging in services, you agree to this Privacy Policy.
2. Data Controller
Brooke Z Healing
Email: hello@brookezhealing.com
Location: United Kingdom
3. Information Collected
Personal Information
Information collected may include:
Name
Email address
Phone number
Emergency contact details
Booking and payment information
Sensitive Information
Due to the nature of therapy services, sensitive information may also be collected, including:
Mental and emotional health history
Personal background information
Session notes
Information shared during sessions or messaging support
4. How Information Is Collected
Information may be collected when you:
Submit a contact form
Book a session
Purchase services or packages
Communicate by email or message
Attend sessions
Use messaging or video support services
5. Why Your Information Is Collected
Your information is collected to:
Provide therapy and coaching services
Manage bookings and payments
Maintain appropriate records
Communicate regarding services
Meet legal and safeguarding obligations
6. Lawful Basis for Processing
Your data is processed under the following lawful bases:
Contract
Legitimate interests
Legal obligations
Explicit consent where required
Sensitive personal data is processed only where necessary for providing therapeutic services.
7. Confidentiality
Your information is kept confidential unless:
You provide written consent
Disclosure is legally required
There is serious concern regarding risk of harm or safeguarding
8. Storage & Security
Your information is stored securely using password-protected and/or encrypted systems.
Reasonable steps are taken to protect data from:
Unauthorised access
Loss
Misuse
Disclosure
9. Session Notes
Brief session notes may be kept to support continuity of care and therapeutic progress.
These notes are securely stored and treated confidentially.
10. Messaging & Video Support
Where messaging or voice note support is used:
Communications may form part of your therapeutic record
Platforms used are selected with privacy and security in mind
This service is not monitored continuously or intended for crisis support
11. Sharing Information
Your personal data will never be sold.
Information may only be shared where:
Necessary for legal compliance
Required for safeguarding purposes
You provide explicit consent
12. Data Retention
Client records are retained for approximately 7 years after the final session unless a longer retention period is legally required.
After this period, records are securely deleted or destroyed.
13. Your Rights
Under UK GDPR, you have the right to:
Access your personal data
Request correction of inaccurate data
Request erasure where appropriate
Restrict or object to processing
Lodge a complaint with the ICO
14. Cookies & Website Usage
This website may use cookies and analytics tools to improve website functionality and user experience.
You can manage cookie preferences through your browser settings.
15. Third-Party Providers
Trusted third-party services may be used for:
Website hosting
Booking systems
Payment processing
Email communication
These providers are expected to maintain appropriate data protection standards.
16. Complaints
If you have concerns regarding how your data is handled, please contact me directly first.
You also have the right to contact the UK Information Commissioner’s Office (ICO): Information Commissioner's Office (ICO)
17. Contact
For any questions regarding this Privacy Policy or your data:
Brooke Z Healing
Email: hello@brookezhealing.com
18. Policy Updates
This Privacy Policy may be updated from time to time. The latest version will always be available on the website.