Privacy and Cookie Policy

Last updated: January 09, 2026

​

Pathway Therapy operated by Dylan Johnston, is committed to protecting your privacy and handling your personal data responsibly in accordance with the General Data Protection Regulation (GDPR), the Data Protection Act 2018, and Irish data protection law (supervised by the Data Protection Commission – DPC).

​

​

This Privacy Policy explains how we collect, use, store, and protect your personal information when you visit our website www.pathwaytherapy.ie, submit forms, or engage with our online psychotherapy services.

​

​

1. Who we are (Data Controller) The data controller is: Dylan Johnston (Pathway Therapy) Ireland Email: pathwaycounselling@outlook.ie Phone: 087 454 4321

​

​

2. Personal Data We Collect We collect personal data you provide voluntarily and automatically in limited ways:

• From contact/booking forms: Name, email address, phone number (optional), message content, and any details you share about your needs (this may include special category data such as information relating to your mental health, wellbeing, addiction, ADHD, autism, trauma, anxiety, depression, or relationships).

• Automatically: IP address, browser type, device information, pages visited, and time/date of access (via essential cookies and server logs).

• Analytics (only with consent): Aggregated, anonymised usage data via Google tools (if you accept analytics cookies).

We do not collect sensitive personal data unless you voluntarily provide it, and we process it only with your explicit consent or where necessary for therapeutic purposes.

​

​

3. Why We Process Your Data (Purposes & Legal Basis) We process your data for:

• Responding to inquiries, scheduling sessions, and providing online psychotherapy services (legal basis: contract performance or steps prior to contract – GDPR Art. 6(1)(b)).

• Communicating with you about your sessions or our services (legal basis: consent or legitimate interests).

• Site functionality and security (legal basis: legitimate interests – GDPR Art. 6(1)(f)).

• Analytics and service improvement (legal basis: your consent – GDPR Art. 6(1)(a)).

Special category data (e.g., health-related from forms or sessions) is processed only with your explicit consent (GDPR Art. 9(2)(a)) or where necessary for preventive/occupational medicine (Art. 9(2)(h)). We do not rely on implied consent.

​​

​

4. Cookies & Similar Technologies We use cookies and similar technologies to make the website work properly and (with your consent) to understand how visitors use it.

What are cookies? Cookies are small text files stored on your device that help the site function and provide information to us.

Cookies we use on this site (based on our latest scan via Usercentrics):

• Essential cookies (no consent needed – always active): WIX CMS cookies for basic site operation, navigation, security, and session management. These are strictly necessary and cannot be disabled without breaking the site.

• Analytics cookies (consent required): Google Tag Manager and Google Tag Services – to measure site usage (e.g., pages visited, time spent) in an aggregated, anonymised way.

• Advertising cookies (consent required): Meta Pixel and Conversions API – for potential targeted advertising (if used).

All non-essential cookies are blocked by default until you give consent via our cookie consent banner (powered by Usercentrics, which appears on your first visit). The banner lets you:

• Accept all

• Reject all

• Manage preferences (e.g., accept analytics but reject advertising)

You can revisit and change your preferences at any time using the "Cookie Settings" link in the footer or banner. Rejecting non-essential cookies does not affect site functionality.

How to manage cookies outside our banner You can also adjust your browser settings to block cookies (note: this may impact site features). For more info, visit www.aboutcookies.org or your browser's help section.

Third parties Non-essential cookies involve third parties (Google, Meta). Their privacy policies apply:

• Google: https://policies.google.com/privacy

• Meta: https://www.facebook.com/privacy/policy

We do not control third-party cookies directly. No data is sold or shared for purposes beyond those described.

 

​

5. Who We Share Data With We do not sell your data. We may share it with:

• Service providers (e.g., Wix for hosting; secure video platforms for sessions – all under GDPR-compliant agreements).

• Legal authorities if required by law.

No transfers outside the EEA without safeguards.

​

 

6. Data Retention We keep data only as long as necessary:

• Inquiry/contact form data: Up to 2 years (or until deletion request).

• Session-related records: In line with professional guidelines and legal requirements (typically 7 years after last contact).

• Analytics data: Anonymised and deleted after 14 months.

 

 

7. Your Rights Under GDPR you have the right to:

• Access, rectify, or erase your data

• Restrict or object to processing

• Withdraw consent (where applicable)

• Data portability

Email us at pathwaycounselling@outlook.ie to exercise these rights. We respond within one month. You can also complain to the Irish Data Protection Commission (www.dataprotection.ie).

 

​

8. Security We use appropriate measures (encryption, secure hosting, access controls) to protect your data.

 

​

9. Changes We may update this policy. Check the "Last updated" date.

Contact us with questions at pathwaycounselling@outlook.ie or 087 454 4321.