CBT Online Ireland

Privacy Policy

Last updated: October 2025
CBT Online Ireland (“we”, “our”, “us”) provides online cognitive behavioural therapy and related psychotherapy services to clients in Ireland and internationally. We are committed to protecting your privacy and ensuring your personal information is handled responsibly, transparently, and in compliance with the EU General Data Protection Regulation (GDPR).
1. Information We Collect
We collect personal information that you provide when:
Booking a session through our online scheduling system (Calendly)
Contacting us by email
Making a payment for therapy sessions (via Stripe)
Using our website and allowing cookies or analytics tracking
This may include:
Name, email address, phone number
Appointment information
Payment details (processed securely via Stripe)
Technical data such as IP address, browser type, and pages visited
2. How We Use Your Information
We use this information to:
Schedule and deliver online therapy sessions
Manage payments and invoicing
Respond to enquiries and provide support
Improve our website through analytics
Comply with legal and professional obligations
3. Legal Basis for Processing
We process your personal data based on:
Your consent (e.g. when booking or contacting us)
Performance of a contract (providing therapy services)
Our legitimate interests (business operations, website analytics)
Compliance with legal obligations (record keeping, tax)
4. Data Retention
We retain client data only for as long as necessary for the purpose collected, in line with professional and legal requirements for therapists in Ireland.
5. Sharing of Information
We do not sell or rent your data. We may share limited information with trusted service providers:
Calendly (appointment scheduling)
Stripe (secure payment processing)
Google Analytics (website usage tracking)
These third parties process data on our behalf under GDPR-compliant agreements.
6. International Transfers
As some services (like Google and Calendly) are hosted outside the EU/EEA, your data may be transferred internationally. These providers comply with GDPR through standard contractual clauses and other safeguards.
7. Your Rights
You have the right to:
Access, correct, or delete your personal data
Withdraw consent at any time
Request a copy of your data in portable format
Lodge a complaint with the Data Protection Commission (DPC Ireland)
To exercise your rights, contact us at:
📧 [email protected]
8. Security
We take reasonable steps to protect your personal data through secure systems, encryption, and limited access controls.
9. Updates to This Policy
We may update this Privacy Policy periodically. The most recent version will always be available on our website.