Psychotherapist protected title in BC: what it means for your email practice

On November 29, 2027, “psychotherapist” becomes a protected title in British Columbia under the College of Health and Care Professionals of BC (CHCPBC). If you currently use that title in your practice, you’ll need to register with CHCPBC to keep using it.

Registration brings accountability. Practice standards. Continuing education requirements. And a layer of oversight for how you handle client information, including email.

This post covers what title protection changes for your day to day practice, with a focus on email and digital communication. For the full regulatory timeline and CHCPBC overview, see our CHCPBC psychotherapy regulation overview.

Who needs to register

The short answer: anyone in BC who wants to call themselves a psychotherapist after November 29, 2027.

That includes practitioners who currently use the title informally. Counsellors who describe their work as “psychotherapy.” Art therapists, somatic practitioners, and other clinicians whose practice overlaps with psychotherapy and who use the title on their website, email signature, or Psychology Today profile.

Right now, BC doesn’t restrict the psychotherapist title. Anyone can use it. A massage therapist who takes a weekend workshop can put “psychotherapist” on their website, and there’s no legal mechanism to stop them. That changes when the Health Professions and Occupations Act (HPOA) provisions for psychotherapy take effect.

The HPOA came into force on April 1, 2026, as the governing legislation for health profession regulation in BC. It replaces the older Health Professions Act with a modernized framework that includes scope of practice definitions, restricted activities, and protected titles. The psychotherapy provisions under the HPOA kick in on November 29, 2027.

CHCPBC will offer a grandparenting pathway for practitioners already doing psychotherapy work. The details of that pathway (education requirements, practice hours, application timeline) will be published as CHCPBC develops its psychotherapy specific regulations. If you’ve been practising psychotherapy in BC for years, you won’t be starting from scratch. But you will need to apply.

If you don’t use the title “psychotherapist” and don’t plan to, registration with CHCPBC may not apply to you. Counsellors, social workers, and psychologists who practise under other regulated titles are governed by their own colleges. The title protection is about the word “psychotherapist” specifically, not about the act of doing therapy.

What title protection changes about your practice

Before November 2027, a psychotherapist in BC operates with a lot of autonomy. No regulatory body. No mandatory practice standards specific to psychotherapy. No complaints process beyond what the courts provide. Your privacy obligations come from BC’s Personal Information Protection Act (PIPA), and that’s about it.

After title protection, you answer to CHCPBC.

That means practice standards. Continuing competence requirements. A formal complaints and discipline process. Public accountability through a registrant directory. And practice expectations that go beyond what PIPA requires on its own.

CHCPBC hasn’t published psychotherapy specific practice standards yet. (The college is still developing the regulatory framework for this new registrant class.) But we can look at how other provinces handle the same transition to get a practical sense of what’s coming.

Ontario went through this process years ago when CRPO was established. Alberta is expanding CAP’s scope to include counselling therapists. In both cases, the college set practice standards that went beyond what the privacy law required on its own. BC will follow the same pattern. The question isn’t whether CHCPBC will set email and electronic communication standards. The question is what those standards will look like.

The email question: why title protection affects your digital communication

Here’s where this gets practical.

Right now, if you’re a psychotherapist in BC without a regulatory college, your email privacy obligations come from one source: PIPA. Section 34 of PIPA requires you to make “reasonable security arrangements” to protect personal information against unauthorized access, collection, use, disclosure, or destruction. That’s the standard. It’s broad, and there’s no specific guidance from a college telling you what “reasonable” looks like for email.

After title protection, CHCPBC practice standards add a second layer.

We’ve seen this pattern in other provinces. Ontario’s registered psychotherapists answer to both PHIPA (the province’s health privacy law) and the College of Registered Psychotherapists of Ontario (CRPO). CRPO Standard 3.4 requires specific consent for electronic communication, documented policies for digital practice, and technology that is “secure, confidential, and appropriate.” That’s more prescriptive than what PHIPA requires alone.

Alberta follows the same structure. Psychologists and counselling therapists answer to the Health Information Act (HIA) for privacy and to the College of Alberta Psychologists (CAP) for practice standards. CAP’s practice standards require documented electronic communication policies and informed consent for digital service delivery.

BC will follow this model. After November 2027, your email obligations will come from two places:

1. PIPA s.34 for baseline security arrangements (this doesn’t change)
2. CHCPBC practice standards for psychotherapy specific requirements around consent, documentation, and electronic communication policies

The specifics of the CHCPBC standards aren’t published yet. That’s worth repeating. What follows is informed by the pattern set in Ontario and Alberta, not by confirmed CHCPBC policy. We’ll update this post when CHCPBC publishes draft standards.

For a deeper look at how PIPA applies to therapist email right now (before title protection), see our BC PIPA email privacy guide. And for how all three provincial frameworks compare, our cross provincial email privacy guide covers the overlap and the gaps.

What to prepare now

You don’t need to wait for CHCPBC to publish practice standards to start preparing. The PIPA obligations exist today, and the college standards will build on top of them. Getting your email practices documented now means less scrambling later.

Step 1: Audit your current email encryption against PIPA s.34

PIPA s.34 requires “reasonable security arrangements.” For email, that means checking whether your messages containing client personal information are protected in transit.

Questions to answer:

• Does your email provider encrypt messages in transit? (Gmail and Outlook do by default with TLS, but TLS alone may not meet the bar if the recipient’s server doesn’t support it.)
• What happens when TLS isn’t available? Is the message sent unencrypted?
• Are client emails stored with encryption at rest?
• Who else has access to your email account? Admin staff? IT providers?

If you can’t answer these questions, that’s the first gap to close. Most therapists I talk to haven’t checked their TLS settings. It takes five minutes and tells you exactly where you stand.

Step 2: Document your electronic communication practices

Write down how you handle client email. Not a novel. A one page document covering:

• What types of information you send by email (appointment confirmations, session notes, referral letters, intake forms)
• How messages are secured
• Who can access client emails in your practice
• How long you retain email records
• What you do when something goes wrong (breach response)

CHCPBC will likely require documented policies. CRPO does. CAP does. Having yours ready before registration opens puts you ahead. Our email policy template covers all of these sections with BC specific language.

Step 3: Set up an audit trail for client emails

Start tracking when you send emails containing client information. A basic log works. It should capture:

• Date and time
• Recipient (client name or identifier)
• Whether encryption was confirmed
• What type of information was included

This isn’t a PIPA requirement today. But it’s standard practice under CRPO and CAP standards, and it protects you if a complaint is ever filed. You want records that predate anyone asking for them.

Think about it from the college’s perspective. If a client files a complaint about a communication breach, the first thing an investigator asks for is documentation. When did you send the email? Was it encrypted? Did you have consent? If your answer is “I don’t know, I didn’t keep records,” that’s a problem regardless of whether you did anything wrong.

Step 4: Create a consent form for electronic communication

Draft a consent form that covers:

• Which electronic channels you use (email, video, messaging)
• The risks of each channel
• What you can and can’t guarantee about confidentiality
• The client’s right to withdraw consent and communicate by other means
• Alternatives to electronic communication

CRPO Standard 3.4 requires a separate electronic communication consent (beyond general therapy consent). CHCPBC may follow the same approach. Having a consent form ready now means you’re already compliant when the requirement arrives. Our consent form template was built for Ontario, but the structure translates to BC with minor adjustments.

Step 5: Watch for CHCPBC practice standards announcements

CHCPBC is building the regulatory framework for psychotherapy registration now. Practice standards, registration requirements, and grandparenting provisions will be published in stages before November 2027.

Follow chcpbc.org for updates. When draft practice standards are released for consultation, read them carefully and compare against what you’ve already prepared. If you’ve done steps one through four, you’ll be adjusting details rather than starting from zero.

What this doesn’t solve

Title protection doesn’t answer every email privacy question. A few things to keep in mind.

CHCPBC practice standards won’t replace PIPA. They’ll add to it. You still need to meet PIPA s.34 security requirements regardless of what CHCPBC requires. Two sets of obligations, not one replacing the other.

The specific practice standards aren’t published yet. Everything in the “what to prepare” section is based on the pattern from Ontario and Alberta. CHCPBC could set different requirements. We’ve flagged hypothetical sections throughout, and we’ll update this post as CHCPBC publishes standards.

Encryption alone doesn’t equal compliance. Even after you encrypt your email, you need documented policies, client consent, an audit trail, and breach response procedures. Encryption is one piece.

And title protection applies to the psychotherapist title specifically. If you practise as a registered clinical counsellor, social worker, or psychologist, your obligations flow through your existing college. This post is for practitioners who use (or plan to use) the psychotherapist title in BC.

One more thing. The grandparenting pathway won’t stay open forever. When CHCPBC publishes the application window, there will be a deadline. Ontario’s CRPO grandparenting closed years ago. If you think you might want to use the psychotherapist title, start gathering your practice documentation now (education credentials, supervision records, practice hours). Don’t wait for the application to open to start assembling the paperwork.

What we’re watching

We’ll update this post as CHCPBC publishes psychotherapy specific regulations. A few things to track:

Draft practice standards. When CHCPBC releases draft standards for public consultation, we’ll analyze the electronic communication requirements and publish a follow up comparing them against CRPO Standard 3.4 and CAP’s standards.

Registration timeline. The grandparenting application window, education requirements, and fees will be announced before November 2027. If you’re planning to register, knowing the timeline matters for budgeting both time and money.

Transition support. CHCPBC may offer resources, webinars, or guidance documents for practitioners entering regulation for the first time. Other colleges did this during similar transitions.

Bookmark chcpbc.org and check back quarterly.

Curio and PIPA: what’s available now

Curio encrypts your Gmail for Canadian health privacy law, including BC’s PIPA. Every outbound email is automatically encrypted, and every send is logged in a Canadian audit trail hosted in Montreal and Toronto.

You don’t need to wait for CHCPBC practice standards to address your PIPA s.34 obligations. Encryption and an audit trail are things you can set up today.

Join the waitlist

---

This guide is part of the Google Workspace for Canadian Therapists project. We run a private Facebook group where Canadian therapists on Google Workspace share compliance tips, templates, and admin console walkthroughs. Join the group.

---

This content is for informational purposes only and does not constitute legal advice. Privacy regulations vary by province and are subject to change. Verify current requirements with your provincial regulatory body.