This document explains how Prompt UK™ Ltd collects, uses, and stores organisational data when engaging with buyers, customers, or commissioning organisations.
- A bespoke and detailed data management and GDPR Policy is provided to Buyers under contract with Prompt UK Ltd.
- What data do we collect from buyers, organisations, or customers?
We may collect the following data from individuals or organisations who commission psychological services:
- Contact details such as name, job title, email address, telephone number, and business address.
- Organisation details including company name, department, and billing/finance information.
- Contractual information such as service agreements, referral documentation, and correspondence related to the commissioning and ongoing delivery of psychological services.
- Professional opinions or observations relevant to the psychological assessment or support of referred individuals, where shared by the commissioning party.
3. How do we collect this data?
Data may be collected:
- Directly from the buyer or organisation via email, telephone, written correspondence, or online forms.
- Through referral documentation or service agreements.
- From follow-up communications during the course of service delivery.
4. How will we use this data?
Prompt UK™ Ltd collects and uses buyer/organisation/customer data to:
- Facilitate the delivery of psychological services.
- Maintain accurate records of service agreements and referrals.
- Communicate regarding service progress, outcomes, and recommendations.
- Fulfil contractual obligations and manage billing or invoicing.
- Ensure appropriate duty of care and safeguarding responsibilities are met.
We will only use this data where it is lawful, necessary, and proportionate to do so, and in accordance with applicable data protection legislation.
5. How do we share this data?
We may share relevant organisational or customer data:
- With other mental health professionals involved in the care or assessment of referred individuals, where necessary and appropriate and where we have Buyer permission to do so.
- With legal or regulatory bodies if required by law.
- Internally within Prompt UK™ Ltd for operational, administrative, and clinical governance purposes.
We will not share buyer or organisational data with third parties for marketing or unrelated purposes.
6. How do we store this data?
Buyer and organisational data will be stored securely in accordance with our data protection policies and explicit agreements set out contractually with you. Electronic data will be stored on secure systems as agreed with you. Access is restricted to authorised personnel only. Data will be retained for a period of 5 years following the final engagement or contract completion, unless otherwise required by law or contractual terms.
7. What are your data protection rights?
Buyers and organisations have the right to:
- Access the data we hold about them.
- Request correction of inaccurate data.
- Request erasure of data under certain conditions.
- Restrict or object to data processing where appropriate.
Requests can be made in writing to the contact details provided below.
If you would like further information or to discuss the way that Prompt UK™ Ltd has processed your personal data and your rights, you can contact Prompt UK™ Ltd Data Protection Officer – Mr R. Murrill. Bob@promptuk.com
You can find more information about data protection and your rights at the Information Commissioner’s Office (ICO) website at www.ico.org.uk. If you wish to report a complaint about your personal data, you can contact the ICO via its website.