top of page

Privacy Policy

ADHD Horizon

​

Effective date: 10 January 2026
Last reviewed: 10 January 2026

 

​

1. Who we are

​

ADHD Horizon is a UK-based service operated by Psych Pro Solutions Ltd, providing psychological services and educational workshops related to ADHD.

 

Data Controller: Psych Pro Solutions Ltd
Registered Office: 367 Eastfield Road, Peterborough, Cambridgeshire, England, PE1 4RD

Contact email: contact@adhdhorizon.co.uk

 

The Clinical Director of ADHD Horizon is responsible for data protection and information governance.

​

 

2. What this Privacy Policy covers

​

This Privacy Policy explains how we collect, use, store, and protect personal data when you:

  • enquire about or access clinical services (including screening, therapy, and group programmes), or

  • register for or attend live psychoeducation workshops (non-clinical).

 

Clinical services and workshops are governed by different data handling arrangements, which are explained below.

 

​

3. Personal data we collect

 

3.1 Clinical services

​

If you engage with clinical services, we may collect and process:

​

Personal data

  • Name

  • Date of birth

  • Contact details

  • GP details (where relevant)

  • Payment and invoicing records

 

Special category data

  • Mental health and neurodevelopmental information

  • Screening questionnaire responses

  • Clinical notes and formulations

  • Risk and safeguarding information

  • Outcome measures

 

Clinical information is collected and stored securely within our clinical record systems.

 

3.2 Live psychoeducation workshops (non-clinical)

 

If you register for a workshop, we collect limited personal data only, such as:

  • Name

  • Email address

  • Workshop registration and attendance details

 

We do not collect clinical notes, diagnostic information, or risk assessments for workshop participants. Workshop data does not form part of a clinical record.

 

3.3 Website and technical data

 

Our website may collect limited technical information, such as:

  • Cookie preferences

  • Basic usage data (for example, page visits)

 

We do not collect clinical information directly through the website. Where screening forms are embedded, information is transmitted directly to our secure clinical systems.

 

​

4. How we use your data

 

We use personal data only where necessary, including to:

​​

  • assess suitability for services

  • provide psychological assessment, therapy, and group programmes

  • administer and deliver workshops

  • manage appointments and communication

  • process payments

  • maintain clinical governance and service quality

  • meet legal, regulatory, and professional obligations

 

We do not use personal data for marketing purposes without your explicit consent.

 

​

5. Lawful basis for processing

 

We process personal data under UK GDPR using the following lawful bases:

​

  • Contract – where processing is necessary to provide services

  • Legitimate interests – for safe service delivery, administration, and governance

  • Health and social care purposes – for clinical services involving special category data

 

Consent is used only where required, such as for sharing information with your GP or another professional.

​

 

6. Confidentiality and sharing of information

 

We respect confidentiality and handle personal data with care. Information is shared only where necessary and in line with legal and professional obligations.

 

6.1 Routine sharing

​

Personal data may be shared with:

​

  • Secure clinical systems used for records, appointments, and communication

  • Payment providers for processing payments

  • Administrative systems used to manage services and workshops

 

Where appropriate and with your consent, relevant information may be shared with your GP or another healthcare professional.

 

6.2 Limits of confidentiality

​

In some circumstances, we may be required to share information without consent. This includes situations where:

  • there is a serious risk of harm to you or to others, or

  • disclosure is required by law or regulatory authorities

 

Any such sharing is limited to what is necessary and is carried out in accordance with professional, ethical, and legal requirements.

 

We do not sell or trade personal data.

​

 

7. Data storage and international access

 

All clinical data is stored within UK- or EU-based systems that comply with UK GDPR requirements. Clinicians and authorised staff may access systems securely from outside the UK. This constitutes secure remote access, not an international data transfer, as data remains hosted within approved UK or EU infrastructure.

​

 

8. How long we keep your data

 

We retain data only for as long as necessary and in line with legal and professional requirements, including:

​

  • Clinical records: 7 years after discharge

  • Screening records: 7 years, even if services do not proceed

  • Financial records: 6 years (HMRC requirements)

  • Workshop registration data: retained only for as long as necessary for administration and audit

 

Data is deleted securely in accordance with our retention schedule.

​

 

9. Your rights

 

You have rights under UK GDPR, including:

​

  • the right to access your data

  • the right to request correction of inaccurate data

  • the right to restrict processing

  • the right to request erasure (subject to legal and clinical record-keeping requirements)

  • the right to object to processing

  • the right to data portability

 

Requests can be made using the contact details above. We aim to respond within one month.

 

​

10. Complaints

 

If you have concerns about how your data is handled, please contact us first so we can try to resolve the issue.

 

You also have the right to complain to the Information Commissioner’s Office (ICO):
https://www.ico.org.uk

​

 

11. Changes to this Privacy Policy

​

We may update this Privacy Policy from time to time. The most recent version will always be available on our website.

​

​

bottom of page