Privacy Policy

Last Updated: 30th August 2025

Circe (“we,” “our,” or “us”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal data when you use our website, platform, and therapy services (“Services”).

By using Circe, you agree to the terms of this Privacy Policy.

1. Information We Collect

We may collect the following types of information:

a) Information you provide directly

  • Name, email address, phone number

  • Payment details (processed securely through third-party providers — we do not store card details)

  • Intake form information (including health-related data you choose to share)

  • Feedback, surveys, or correspondence with us

b) Information collected automatically

  • Device and browser type

  • IP address and log data

  • Cookies and analytics data (e.g. how you use our website)

c) Special category data

  • With your consent, we may collect limited health-related information (e.g. your experiences, symptoms, or therapy goals) in order to provide appropriate services.

2. How We Use Your Information

We process your data for the following purposes:

  • To provide, manage, and improve our Services

  • To match you with an appropriate therapy group

  • To process payments and manage subscriptions

  • To communicate with you about sessions, updates, and support

  • To ensure safety and safeguarding during group therapy

  • With your explicit consent, to transcribe and anonymise therapy sessions for research and product development

3. Legal Basis for Processing

We rely on the following legal grounds:

  • Consent — where you choose to provide health information or consent to session transcription

  • Contract — to deliver our Services as agreed in our Terms & Conditions

  • Legal obligations — to comply with data protection or safeguarding laws

  • Legitimate interests — to operate and improve our Services securely

4. Sharing Your Information

We only share data where necessary:

  • Therapists: to facilitate your sessions (they receive only relevant information)

  • Payment providers: for secure processing of transactions

  • Research partners: only anonymised and aggregated data, never identifiable information

  • Legal authorities: if required by law or to protect against harm

We will never sell your personal data.

5. Data Storage & Security

  • Your data is stored securely on encrypted servers within the UK/EU.

  • We use strict technical and organisational measures to protect your information.

  • Access is restricted to authorised staff and therapists only.

  • If we become aware of a data breach that may affect you, we will notify you promptly in line with legal requirements.

6. Data Retention

  • We retain personal data only for as long as necessary to provide Services, comply with legal obligations, or resolve disputes.

  • Therapy session data is retained for a minimum of 7 years in line with professional standards for clinical records, unless otherwise required by law.

  • You may request deletion of certain data (see Section 7).

7. Your Rights

Under UK GDPR, you have the right to:

  • Access a copy of your personal data

  • Request corrections to inaccurate data

  • Request deletion of your data (where legally possible)

  • Restrict or object to certain processing

  • Withdraw consent (where processing is based on consent)

  • Data portability — receive your data in a usable format

To exercise these rights, contact us at hello@my-circe.com.

8. Cookies & Analytics

We use cookies and analytics tools to improve your experience and understand site usage.

  • Essential cookies are required for functionality.

  • Analytics cookies help us improve content and services.

  • You can manage or disable cookies via your browser settings.

9. Children’s Privacy

Circe is intended for adults aged 18+. We do not knowingly collect data from children.

10. Changes to this Policy

We may update this Privacy Policy from time to time. Updates will be posted on our website with the “last updated” date.

11. Contact Us

If you have any questions about this Privacy Policy or how we handle your data, please contact us:

📧 hello@my-circe.com


You also have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO) if you believe your data has been mishandled: www.ico.org.uk