Privacy & Cookie Policy
How SENTIS collects, uses, stores and protects your personal information.
Practice: SENTIS
Practitioner: Psih. Claudiu Negosanu
Email: contact@sentis.ie
Telephone: 089 4555468
Address: 16 Lower George’s Street, Wexford, Co. Wexford, Eircode: Y35 KT73
Effective date: 01/05/2026
Privacy policies can feel dense and difficult to read. This page is intended to explain, as clearly as possible, what personal information SENTIS collects, why it is collected, how it is protected, and what rights you have.
SENTIS provides psychotherapy and related therapeutic services to adults aged 18 and over. Services are not provided to children or young people under the age of 18.
For the purposes of data protection law, SENTIS / Psih. Claudiu Negosanu is the Data Controller for personal information processed in connection with this website, enquiries, bookings, therapeutic services and related administration.
Please note: SENTIS is not an emergency or crisis service. If you are in immediate danger, feel unable to keep yourself safe, or believe someone else is at immediate risk, please call 999 or 112, attend your nearest Emergency Department, contact your GP, or contact another appropriate crisis support service.
1. Who we are
SENTIS is a psychotherapy practice based at 16 Lower George’s Street, Wexford, Co. Wexford, Eircode: Y35 KT73.
The practitioner is Psih. Claudiu Negosanu. You can contact SENTIS by email at contact@sentis.ie or by telephone on 089 4555468.
This Privacy & Cookie Policy applies to personal information processed through the SENTIS website, contact forms, email or telephone enquiries, bookings, therapy sessions, administrative records and related practice communication.
2. Information we collect
The information collected depends on how you interact with SENTIS. For example, you may provide a small amount of information when you make an enquiry, and more information if you decide to begin therapy.
Contact and enquiry information
This may include your name, email address, telephone number, the content of your message, and any practical information needed to respond to your enquiry.
Legal basis: Article 6(1)(f) GDPR — legitimate interests in responding to enquiries and operating a professional practice. Article 6(1)(b) GDPR may also apply where steps are being taken before entering into a therapy agreement.
Booking and appointment information
This may include appointment dates and times, attendance information, cancellations, rescheduling requests and other practical details needed to manage the service.
Legal basis: Article 6(1)(b) GDPR — necessary for a contract or steps before entering into a contract. Article 6(1)(f) GDPR — legitimate interests in managing appointments and operating the practice.
Information needed before or during therapy
This may include your date of birth, confirmation that you are aged 18 or over, your address or location where relevant, GP details, emergency contact details, relevant background information, and information about what brings you to therapy.
Legal basis: Article 6(1)(b) GDPR — necessary for providing or arranging the service. Article 9(2)(h) GDPR may apply where health or therapy-related information is processed for the provision of health or social care/treatment.
Payment and administrative information
This may include payment status, invoices, receipts, accounting records and limited information needed to manage fees and financial records.
Legal basis: Article 6(1)(b) GDPR — necessary for the therapy service agreement. Article 6(1)(c) GDPR — legal obligation, where accounting or tax records must be retained.
Website and technical information
This may include information such as IP address, browser type, device type, pages visited, time spent on the website, cookie preferences and general website analytics, where applicable.
Legal basis: Article 6(1)(f) GDPR — legitimate interests in operating, maintaining and securing the website. Article 6(1)(a) GDPR — consent, where consent is required for non-essential cookies or analytics.
3. Sensitive therapy information
Because SENTIS provides psychotherapy, some of the information processed may be sensitive. Data protection law refers to some of this as special category data.
This may include information relating to:
- mental health and emotional wellbeing;
- physical health, where relevant to therapy;
- relationships, family history and personal history;
- trauma, loss, stress or adverse life experiences;
- medication, diagnosis or contact with other health services;
- risk, safety or safeguarding concerns;
- disability, sexuality, ethnicity, religion or other sensitive personal matters, where relevant and voluntarily disclosed.
SENTIS only keeps information that is relevant to providing a safe, ethical and professional therapeutic service, and takes care to protect the confidentiality of therapy-related information.
Legal basis: Article 6(1)(b) GDPR — necessary for providing the therapy service. Where special category data is processed, Article 9(2)(h) GDPR may apply for the provision of health or social care/treatment, Article 9(2)(a) GDPR may apply where explicit consent is the appropriate basis in a specific context, and Article 9(2)(f) GDPR may apply where information is needed for the establishment, exercise or defence of legal claims.
4. How we use your information
SENTIS may use personal information to:
- respond to enquiries;
- confirm that the service is suitable and available only to adults aged 18 and over;
- arrange, manage and provide appointments;
- provide psychotherapy and related therapeutic services;
- keep appropriate clinical and administrative records;
- manage payments, invoices and accounts;
- communicate about appointments, cancellations or practical matters;
- meet legal, ethical, professional, insurance and safeguarding responsibilities;
- protect your vital interests or the vital interests of another person where serious risk arises;
- obtain professional supervision, consultation, legal advice or insurance advice where necessary;
- respond to complaints, legal claims or professional concerns;
- maintain the security and functionality of the website.
Therapeutic work usually takes place within scheduled sessions. Email, text messages, contact forms and voicemail are generally used for practical communication and should not be used for emergencies.
5. Legal bases for using your data
Data protection law requires SENTIS to identify a lawful basis for processing personal information. In many cases, more than one lawful basis may apply, depending on the context and the type of information involved.
For ordinary personal data, SENTIS relies on one or more lawful bases under Article 6 of the General Data Protection Regulation. Where sensitive therapy-related information is processed, including health information, SENTIS also relies on an additional condition under Article 9 of the GDPR.
In simple terms: Article 6 explains when personal data can be used lawfully. Article 9 adds extra protection for sensitive information, such as health or therapy-related information.
| Type of information or activity | Why it is used | Likely legal basis |
|---|---|---|
| Enquiries and contact form information | To respond to your enquiry, answer questions, and manage communication. |
Article 6(1)(f) GDPR — legitimate interests in responding to enquiries and operating
a professional practice. Article 6(1)(b) GDPR may also apply where steps are being taken before entering into a therapy agreement. |
| Booking and appointment information | To arrange, manage, reschedule or cancel appointments. |
Article 6(1)(b) GDPR — necessary for a contract or steps before entering into a contract. Article 6(1)(f) GDPR — legitimate interests in managing the practice. |
| Identity, age and contact details | To identify you, communicate with you, and confirm that the service is provided only to adults aged 18 and over. |
Article 6(1)(b) GDPR — necessary for providing or arranging the service. Article 6(1)(f) GDPR — legitimate interests in ensuring the service is suitable and appropriately provided. |
| Therapy, assessment and clinical information | To provide psychotherapy, understand your needs, maintain appropriate records, and support safe and ethical therapeutic work. |
Article 6(1)(b) GDPR — necessary for providing the therapy service. Article 9(2)(h) GDPR — provision of health or social care/treatment, where applicable. Article 9(2)(f) GDPR — establishment, exercise or defence of legal claims, where applicable. |
| Special category information, including health-related information | To support safe and appropriate therapy where such information is relevant and voluntarily disclosed. |
Article 9(2)(h) GDPR — provision of health or social care/treatment, where applicable. Article 9(2)(a) GDPR — explicit consent, where this is the appropriate basis in a specific context. Article 9(2)(f) GDPR — legal claims, where applicable. |
| Risk, safeguarding or emergency information | To protect you or another person where serious risk, safeguarding concerns or legal obligations arise. |
Article 6(1)(d) GDPR — vital interests, where necessary to protect life or safety. Article 6(1)(c) GDPR — legal obligation, where applicable. Article 9(2)(c) GDPR — vital interests, where the person is unable to give consent. Article 9(2)(g) GDPR — substantial public interest, where applicable. |
| Professional supervision and consultation | To support safe, ethical and professionally accountable therapeutic practice. Identifying information is minimised where possible. |
Article 6(1)(f) GDPR — legitimate interests in maintaining professional standards and safe practice. Article 9(2)(h) GDPR — provision and management of health or social care, where applicable. |
| Payment, invoicing and accounting records | To manage fees, invoices, receipts, tax and accounting records. |
Article 6(1)(b) GDPR — necessary for the therapy service agreement. Article 6(1)(c) GDPR — legal obligation, where accounting or tax records must be retained. |
| Website technical data and essential cookies | To keep the website secure, functional and accessible. | Article 6(1)(f) GDPR — legitimate interests in operating and securing the website. |
| Analytics cookies or non-essential cookies | To understand website use or improve the website, where such tools are used. | Article 6(1)(a) GDPR — consent, where consent is required for non-essential cookies or analytics. |
| Complaints, legal claims or insurance matters | To respond to complaints, professional concerns, legal correspondence, insurance matters or potential claims. |
Article 6(1)(f) GDPR — legitimate interests in protecting the practice and responding to concerns. Article 9(2)(f) GDPR — establishment, exercise or defence of legal claims, where special category data is involved. |
The legal basis may vary depending on the specific circumstances. Where more than one basis is listed, this does not mean that all bases apply in every situation.
6. Confidentiality and sharing
Information shared with SENTIS is treated as confidential and is not normally disclosed to others without your consent.
However, confidentiality is not absolute. Information may need to be shared where this is necessary, lawful and proportionate.
This may include situations where:
- there is a serious risk of harm to you;
- there is a serious risk of harm to another person;
- a child protection or child welfare concern arises;
- there is a safeguarding concern relating to a vulnerable person;
- disclosure is required by law, court order, statutory duty or legal process;
- disclosure is needed for professional supervision, consultation, legal advice or insurance advice;
- disclosure is needed to respond to a complaint, legal claim, regulatory issue or professional concern;
- there is a medical emergency or serious risk situation.
Where information is shared, SENTIS will aim to share only what is necessary and proportionate.
Professional supervision
Professional supervision is a normal part of safe and ethical therapeutic practice. Psih. Claudiu Negosanu may discuss aspects of client work in professional supervision or consultation. Where this happens, identifying information will be minimised where possible.
7. Cookies and website analytics
The SENTIS website may use cookies or similar technologies to help the website function, support security, remember preferences, understand general website use, or support embedded content such as maps, videos, booking tools or contact forms.
Cookies are small text files placed on your device when you visit a website. Some cookies are essential for the website to work properly. Others, such as analytics or marketing cookies, should only be used where required consent has been obtained.
Essential cookies
These help the website function properly and may support security, page navigation, contact forms or cookie preferences.
Analytics cookies
These may help SENTIS understand how visitors use the website, such as which pages are visited and whether the website is working properly. Analytics should be configured in a privacy-conscious way where possible.
Third-party or embedded content cookies
If the website includes embedded content, such as maps, videos, online booking systems or social media features, those third-party services may set their own cookies or process data according to their own privacy policies.
You can usually manage or delete cookies through your browser settings. Disabling some cookies may affect how the website works.
8. Storage, security and service providers
SENTIS takes reasonable technical and organisational steps to protect personal information against unauthorised access, loss, misuse, alteration or disclosure.
Personal information may be stored in paper and/or electronic form. Electronic records may be protected by appropriate security measures such as passwords, restricted access, encryption where available, secure accounts, and other safeguards appropriate to the nature of the information.
Where information may be stored or processed
SENTIS uses trusted third-party service providers to support the safe and practical running of the practice. These providers may process or store limited personal data where this is necessary for appointments, communication, record keeping, online therapy, administration, or related practice functions.
Service providers used by SENTIS may include:
- Carepatron — for practice management, client records, forms, appointments, and related clinical or administrative functions;
- Zoom — for online video consultations, where used;
- Google Services, including Google Workspace and Google Meet — for email, calendar, document storage, administration, and video conferencing where used.
SENTIS aims to use service providers that offer appropriate data protection, privacy and security safeguards. Where third-party providers process personal data on behalf of SENTIS, they are expected to handle that data in accordance with applicable data protection law and their own privacy and security obligations.
Some providers may process or store data outside the European Economic Area. Where this occurs, SENTIS will take reasonable steps to ensure that appropriate safeguards are in place, where required by data protection law.
Important: Email, contact forms, text messages, online video platforms and cloud-based systems can be convenient, but no digital system can be guaranteed to be completely risk-free. Please avoid sending highly sensitive information through website forms or email unless necessary.
9. How long we keep information
This Privacy & Cookie Policy applies from 01/05/2026.
SENTIS keeps personal information only for as long as it is needed for the purposes described in this policy, including clinical, administrative, legal, ethical, insurance, safeguarding, tax, accounting and professional purposes.
Under Article 5(1)(e) of the GDPR, personal data should not be kept in a form that identifies a person for longer than is necessary for the purposes for which it is processed. For this reason, SENTIS applies the retention periods below and may review, delete, destroy or anonymise records when they are no longer needed.
Therapy and counselling records
Therapy records are maintained in line with applicable legal, ethical, insurance and professional standards relevant to psychotherapy and counselling practice. These records may include intake information, consent forms, brief session notes, correspondence, risk-related information, safeguarding information, appointment history and other information relevant to the therapeutic work.
Adult client therapy records are normally retained for 7 years after the final therapy session, unless there is a lawful, professional, insurance, safeguarding, clinical or legal reason to retain them for longer.
Basis for this retention period: GDPR Article 5(1)(e) — storage limitation; professional record-keeping guidance for counselling and psychotherapy practice; and SENTIS’s legitimate interest in maintaining appropriate clinical, ethical, insurance and professional records.
Website contact form entries and general enquiries
Website contact form entries, emails, text messages or other enquiries that do not lead to therapy are normally retained for 12 months after the last communication.
They may be deleted earlier if they are no longer needed. They may be retained for longer where there is a lawful reason to do so, such as ongoing communication, a safeguarding concern, a complaint, a legal issue, an insurance matter, or a potential claim.
Basis for this retention period: GDPR Article 5(1)(e) — storage limitation; Article 6(1)(f) GDPR — legitimate interests in responding to enquiries, managing communication and protecting the practice where a concern or potential claim arises.
Emails and messages relating to active or former clients
Emails, text messages or other communications that relate directly to therapy, appointments, risk, safeguarding, consent, clinical matters, complaints or significant administrative matters may be retained as part of the client record.
Where such communications form part of the client record, they are normally retained for 7 years after the final therapy session, unless there is a lawful, professional, insurance, safeguarding, clinical or legal reason to retain them for longer.
Basis for this retention period: GDPR Article 5(1)(e) — storage limitation; Article 6(1)(b) GDPR — necessary for providing or managing the therapy service; Article 6(1)(f) GDPR — legitimate interests; and, where special category data is involved, Article 9 GDPR conditions as set out in this policy.
Financial and administrative records
Financial, invoice, payment, receipt, tax and accounting records are retained for 6 years after the end of the relevant tax year, or longer where required by law, Revenue requirements, accounting obligations, audit, legal advice, complaint, insurance matter or potential claim.
Basis for this retention period: Irish tax and accounting record-keeping requirements; GDPR Article 6(1)(c) — legal obligation; and GDPR Article 5(1)(e) — storage limitation.
Safeguarding, risk, complaint, legal or insurance records
Records relating to safeguarding concerns, serious risk, complaints, legal correspondence, insurance matters or potential claims may be retained for longer than the standard periods above where this is necessary, lawful and proportionate.
The retention period will depend on the nature of the concern, the applicable legal or professional obligations, and the need to protect the rights, safety and legitimate interests of the client, the practitioner, or another person.
Basis for longer retention where applicable: GDPR Article 6(1)(c) — legal obligation; Article 6(1)(d) — vital interests; Article 6(1)(f) — legitimate interests; Article 9(2)(f) — establishment, exercise or defence of legal claims; and Article 9(2)(g) — substantial public interest, where applicable.
After the relevant retention period, records will be securely deleted, destroyed or anonymised, unless there is a lawful reason to retain them for longer.
Recording sessions: Therapy sessions must not be audio-recorded, video-recorded, photographed, live-streamed or transcribed by either party without explicit prior agreement. SENTIS takes reasonable steps to protect privacy and confidentiality throughout the period for which records are retained.
10. Your rights
Subject to applicable law, you may have rights in relation to your personal information.
The right to be informed
You have the right to be informed about how your personal information is collected and used. This policy is intended to help explain that clearly.
The right of access
You may ask for a copy of personal information held about you, subject to legal and professional limits.
The right to rectification
You may ask for inaccurate or incomplete personal information to be corrected.
The right to erasure
You may ask for personal information to be deleted in some circumstances. This right may be limited where information needs to be retained for legal, safeguarding, clinical, insurance, professional or public interest reasons.
The right to restrict or object to processing
You may ask for certain processing to be restricted or object to certain processing in some circumstances.
The right to data portability
In some circumstances, you may ask for certain information to be transferred to you or another provider.
Making a request: To make a request about your personal information, please contact SENTIS at contact@sentis.ie. SENTIS will respond in accordance with applicable data protection law.
11. Contact and complaints
If you have any questions about this Privacy & Cookie Policy, or about how SENTIS handles personal information, please contact:
SENTIS
Practitioner: Psih. Claudiu Negosanu
Email:contact@sentis.ie
Telephone: 089 4555468
Address: 16 Lower George’s Street, Wexford, Co. Wexford, Eircode: Y35 KT73
You also have the right to make a complaint to the Data Protection Commission.
Data Protection Commission
Website: www.dataprotection.ie
This policy may be updated from time to time to reflect changes in law, professional guidance, website functionality or practice procedures. The current version will be available on the SENTIS website.