Last Updated: March 4, 2023
The Information may be used for the following purposes:
For the purposes of research and improving the platform, Counslr may collect and maintain de-identified data and metadata through your use of the Platform. This de-identified data is the sole property of Counslr. This data will be stored and used in non-identifiable aggregate form, and not in a manner to identify any individual personally. You shall not request that Counslr remove or delete such de-identified data.
Online identity theft and account hacking, including the practice known as “phishing”, are of great concern. You should always be diligent when you are asked for your account information. Always make sure you only provide your account information on our secure Platform. We will never request your login information in any non-secure or unsolicited communication (email, phone, or otherwise).
The Platform may contain links to other websites or services which are owned, operated, or maintained by third parties. If you click on a third-party link, you will be directed away from the Counslr Platform to that website or service. The fact that we link to a website or service is not an endorsement, authorization, or representation of our affiliation with the party affiliated with that website or service, nor is it an endorsement of their privacy or information security policies or practices. We do not have control over third-party websites, services, policies, or terms.
You may email us with questions, concerns, and issues regarding the Platform or your account. Though Counslr’s mobile apps, and the parts of the Platform used to collect information and connect you with a Counselor for Support Services, are HIPAA-compliant, emails and other similar insecure communications systems are not, and can not be, HIPAA-compliant. Please be mindful of anything you include in any email, and remember that any personal information you mention, or any other data you include, in an email may not be covered by the same privacy protections as the information you provide and generate through the Counslr Platform. You understand that providing your email address and exchanging information via email that you are authorizing the use of an unsecure method to communicate your personal health information.
While using any Internet-based service carries inherent security risks that cannot be completely eliminated, our systems, infrastructure, encryption technology, operation, and processes are all designed, built, and maintained with your security and privacy in mind. We apply industry standards and best practices to prevent any unauthorized access, use, and disclosure. We comply with or exceed all applicable federal laws, state laws, and regulations regarding data privacy.
Counslr may employ third-party companies and individuals to facilitate the Platform, to perform certain tasks which are related to the Platform, or to provide audit, legal, operational, or other services for us. These tasks include, but are not limited to, customer service, technical maintenance, monitoring, email management and communication, database management, billing and payment processing, reporting, and analytics. We will share with them only the minimum necessary information to perform their task for us and only after entering into appropriate confidentiality agreements. We make sure that any data provided to any party with whom we do not have a strict confidentiality agreement in place is completely de-identified and supplied only in aggregate (not in a way that could be used to identify you individually).
Counslr partners with PRIVO to obtain parental consent for children 13 or older, and to verify the age of adult users 18 or older in order to receive Services on the Platform. PRIVO ensures information collected for verification is stored securely and not used for any other purpose. For more information on PRIVO please see here: https://www.privo.com/platform-privacy-policy.
Your information may be transferred to and maintained on computers located outside of your state, country, or other governmental jurisdiction. Regardless of where your data is stored, it will be maintained securely as outlined in this policy. Your consent to our Terms, followed by your submission of such information, represents your agreement to such transfers of data.
We cooperate with government and law enforcement officials to enforce and comply with the law. We may disclose information necessary or appropriate to protect the safety of the public or any person, to respond to claims and legal process (including but not limited to subpoenas), and to prevent or stop activity that may be illegal or dangerous. You should also be aware that Counselors may be obliged to disclose information to law enforcement or other authorities to conform to their professional and legal responsibilities. Specifically, and without limitation, you should be aware that the law requires mental health professionals to take action, including by disclosing information, in the following cases: (i) reported or suspected abuse of a child or vulnerable adult; (ii) serious suicidal potential; (iii) threatened harm to another person; (iv) court-ordered presentation of treatment.
Counslr recognizes that California has articulated specific privacy rights of the users of the Platform in that State. California users should understand that the Platform does not sell user data to third parties. Further, the Platform is a medical records retention company. As such, almost all User data is kept in encrypted storage as a medical record, including all User-created transcripts. State Law requires the Platform to retain such records for at least seven years. The CCPA does not generally apply to medical information governed by the California Confidentiality of Medical Information Act (CMIA) or protected health information collected by a covered entity or business associate governed by the privacy, security, and breach notification rules of the Health Insurance Portability and Accountability Act (HIPAA) and Health Information Technology for Economic and Clinical Health (HITECH) Act of 2009.
Pursuant to Section 1798.83 of the California Civil Code, residents of California have the right to request, once a year, if the Platform have shared their personal information (non-medical record data only) with other companies for direct marketing purposes during the preceding calendar year. This is California’s “Shine-the-Light Law.” To request a copy of the information disclosure provided by the Platform, please contact us via the “Contact” page on our website.
If you are a California resident under the age of 18, and a registered user of any site where this policy is posted, California Business and Professions Code Section 22581 permits you to request and obtain removal of content or information you have publicly posted on the Platform. the Platform does not have User below the age of 13 and does not typically allow Users to publicly post information. However, if you feel you publicly posted information on the Platform and you are between the ages of 13 and 17, please contact us via the “Contact” page on our website. Please allow reasonable time for a response. Please be aware that such a request does not ensure complete or comprehensive removal of the data/content you have posted and that there may be circumstances in which the law does not require or even allow removal of data, specifically medical data, even if requested.
California Right to Know: You may request access to the specific pieces of personal data we have collected about you in the last 12 months. You may also request additional details about our information practices, including the categories of personal data we have collected about you, the sources of such collection, the categories of personal data we share for a business or commercial purpose, and the categories of third parties with whom we share your personal data. You may make these requests by contacting us on the Platform at the “contact us” link on the website. Please allow reasonable time for a response.
California Designated Agent: You may designate an agent to make a request on your behalf. That agent must have access to your account in order for us to verify the request. California Non-Discrimination. the Platform will never discriminate against you, including by denying or providing a different level of service should you choose to exercise your rights under the CCPA.