Privacy Policy

This Privacy Policy explains how Cumbria Assessment and Diagnostic Service (CADS) collects, uses, and protects your personal information when you use our services or visit our website. It is designed to be clear and easy to understand and complements our internal Data Protection Policy. The full policy is available upon request. 

1. Who We Are

CADS provides psychological assessment services. We are the data controller responsible for the personal information we collect and use.

2. Information We Collect

We collect different types of personal information to provide our services safely and effectively:

  • Contact information: Name, address, email, and phone number.

  • Date of birth: To confirm your identity and ensure services are age-appropriate.

  • Assessment information: Information you provide during screening and assessment sessions, including questionnaires and standardized measures (e.g., ACIA, CAT-Q, ASRS), session notes, and reports we create.

  • Collateral information: With your consent, we may collect information from third parties (e.g., GPs, schools, or other healthcare providers), such as reports or medical records.

  • Payment information: Details related to invoices or payments.

  • Website data: Your IP address and browsing activity, typically collected through cookies.

  • Communication data: Copies of emails and other correspondence.

3. How We Collect Your Information

We gather your data in several ways:

  • Directly from you: When you contact us, complete forms, or during sessions.

  • From referral sources: Such as your GP, only with your consent.

  • From third parties: Other healthcare providers, only with your explicit consent.

  • Automatically: Some website data, e.g., cookies.

4. How We Use Your Information

We use your personal information to:

  • Provide assessment and support services, including writing reports and delivering feedback.

  • Communicate with you about appointments and services.

  • Manage accounts and process payments.

  • Improve our services.

  • Comply with legal obligations, such as safeguarding.

5. Legal Basis for Processing

We only use your data when we have a valid legal basis:

  • Consent: You have given explicit consent for sensitive data (e.g., health information). You can withdraw consent at any time.

  • Contract: To provide the assessment services you requested.

  • Legal obligation: To comply with the law.

  • Legitimate interests: To improve our services, provided this does not override your rights.

6. How We Share Your Information

We only share your personal information in limited situations:

  • With your consent: e.g., GPs or other healthcare providers.

  • To comply with the law: e.g., safeguarding or legal requirements.

  • With service providers: e.g., IT support or secure data storage providers.

We do not sell your information to third parties for marketing.

7. International Transfers

We do not transfer personal data outside the UK. If this changes, we will update this policy.

8. How We Protect Your Information

We take the security of your data seriously, using both technical and organisational measures:

  • Data storage: All client data is stored securely in Microsoft Azure Cloud OneDrive.

  • IT security: Password protection, encryption, firewalls, secure software, and regular backups.

  • Organisational measures: Confidentiality agreements, data protection training, and clear procedures.

9. How Long We Keep Your Information

We retain personal information only as long as necessary to provide our services or as required by law. Client records, including assessment data and reports, are kept for a minimum of 7 years following the date of last contact.

10. Your Rights

You have rights regarding your personal information:

  • Access the information we hold about you.

  • Correct any inaccurate or incomplete data.

  • Request deletion in certain circumstances.

  • Restrict how we use your information in certain circumstances.

  • Object to processing in certain circumstances.

  • Request data portability.

  • Withdraw consent where processing is based on consent.

  • Complain to the ICO if you are unhappy with how we use your data.

To exercise any of these rights, please contact us (see below).

11. Cookies

Our website may use cookies to improve your experience, e.g., remembering preferences. We provide information about cookies and seek your consent where required.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Any changes will be posted on our website.

13. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

FAO: Dr Attilio Colosi

Email: info@cumrbiaassessments.co.uk