For more information contact:


Denise Lyall

Registered MBACP(Accred)


07984 015 280



Denise Lyall

Counselling and Psychotherapy

For adult individuals and couples in Edinburgh

Privacy Notice

I am committed to protecting your privacy.  The purpose of this policy is to let you know what personal information I collect and hold, why I collect this data, how long it is kept and your rights over this personal data.  

This policy refers to the website for Denise Lyall Counselling and Psychotherapy:  By using this website you are accepting and consenting to this privacy policy. It has been created to comply with the General Data Protection Regulations, GDPR. Any changes to compliance with this legislation will be reflected in an updated Privacy Policy on this website. 

For the purpose of the GDPR, the data controller is myself, Denise Lyall. Any enquiry should be directed to myself, via this website. I am registered with the Information Commissioner’s Office for this purpose. (ICO)

Information automatically collected:


I will collect information via the email address on this website only if provided by you – which implies consent to collect.

The internet service provider I use for this website uses analytical and statistical tools that monitor details of your visits to this website.  This includes the resources that you access, including, but not limited to, traffic data, location data and other communication data.  This data will not identify you personally.


Information processed for legitimate business reasons only:

To respond to requests for information pertaining to my practice, organising meetings and contracting matters, including payments or receipts. 

To notify you about any changes to the service I provide that may impact on you and the delivery of this service.  This includes changes to the privacy notice.

Additional information collected:

Additional information will only be collected and stored to enable me to provide counselling/psychotherapy and therefore to honour my contractual obligation to you. 

When we meet: your full name, phone number, postal and email address.  If we agree to begin a counselling relationship I will also require you Doctor’s name, phone number and address.  I may, on occasion, request additional background information via email regarding the issue you are requesting therapy for. This information can either be provided by email or in person in writing.

Session notes. Maintaining session notes after a counselling session has ended is an ordinary requirement for any counsellor/psychotherapist, a foundation of good ethical practice.

Uses of information provided:

To maintain and execute my responsibilities as your contracted counsellor/psychotherapist.

To advise you of any changes to my practice or service including the Privacy Policy.

To maintain client records of attendance for internal financial accounting reasons.

To provide ongoing counselling/psychotherapy.

Disclosure of personal information:

Only in extreme circumstances would I disclose information without consent. Confidentiality is preserved except where there is a legal basis to share such information.  This includes where there is a serious risk of harm to anyone, a court order, terrorism, money laundering and radicalisation.  I do not disclose identifiable information for any other purpose.

Storage and Security of information:

I will take all reasonable precautions to prevent the loss, misuse or alteration of information you give me.

Transmission of information via the internet cannot be guaranteed, but once I have received it I will use strict security protocols to protect it.

Records of details of meetings are collected and stored anonymously.  This is to meet core business delivery requirements as contracted.

Any paper or digital information is securely destroyed after five years unless there is an ongoing business needs to retain them.

Communications in connection with this service may be sent by e-mail. For ease of use and compatibility, communications will not be sent in an encrypted form unless specifically required by you, and you give me permission to communicate with you in that way. E-mail, unless encrypted, is not a fully secure means of communication.

Whilst I endeavour to keep our systems and communications protected against viruses and other harmful effects, I cannot bear responsibility for all communications being virus-free.

Access to information held

If you would like to see information I hold then please put in a request in writing.  I will provide it. You may request amendments to the personal information I hold about you that is inaccurate or out of date.  If you request that I delete your personal information I will do so unless I need to keep it for legal or internal business purposes. I will do our utmost to resolve any concerns or complaints you have within one month of confirmed receipt, but if these are not resolved to your satisfaction, you may choose to contact the ICO.

Links to other websites

My website contains links to other websites that we think may be helpful to you. You should note that once you have clicked these links, I have no control over these sites and cannot be held responsible for any data that may be collected from you while on them.