WEBSITE PRIVACY POLICY
Post Storm Therapy LLC
Effective Date: February 27, 2026
---
1. Introduction
Welcome to Post Storm Therapy LLC ("Post Storm Therapy," "we," "us," or "our"). We are committed to protecting your privacy and handling your personal information with care and transparency.
This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website https://www.poststormtherapy.com/ (the "Website"). Please read this policy carefully. If you do not agree with the terms of this Privacy Policy, please do not access the Website.
Important Notice: This Privacy Policy applies only to information collected through our public Website. If you are a client of Post Storm Therapy, your protected health information (PHI) is governed by our Notice of Privacy Practices under the Health Insurance Portability and Accountability Act (HIPAA), which you will receive separately.
---
2. Information We Collect
We may collect information about you in a variety of ways. The information we may collect via the Website includes:
2.1 Personal Data
If you choose to contact us through our Website contact form or submit an inquiry, we may collect personally identifiable information, such as:
•Your name
•Email address
•Phone number
•Any message or information you choose to provide
2.2 Automatically Collected Information
When you visit our Website, we may automatically collect certain information about your device, including:
•IP address
•Browser type and version
•Operating system
•Referring website
•Pages viewed and time spent on pages
•Date and time of visit
This information is collected through cookies, web beacons, and similar tracking technologies.
2.3 Cookies and Tracking Technologies
We may use cookies and similar tracking technologies to enhance your experience on our Website. You can set your browser to refuse cookies or alert you when cookies are being sent. However, some parts of the Website may not function properly without cookies.
---
3. How We Use Your Information
We may use the information we collect in the following ways:
•To respond to your inquiries and provide information about our services
•To communicate with you about scheduling consultations or appointments
•To improve our Website and user experience
•To analyze Website traffic and usage patterns
•To comply with legal obligations
•To prevent fraud and enhance Website security
---
4. HIPAA Compliance and Secure Communication
IMPORTANT: The contact form on our public Website is NOT a HIPAA-secure means of communication.
4.1 Non-Secure Website Features
The following Website features are NOT HIPAA-compliant and should NOT be used to transmit protected health information (PHI) or sensitive clinical information:
•Contact form submissions – These are not encrypted for HIPAA compliance
•Google Meet consultation scheduling links – Used for initial consultations only; do not share PHI during initial consultations
DO NOT include the following in Website contact forms or initial consultation scheduling:
•Details about your mental health condition, diagnosis, or treatment history
•Medications or medical information
•Insurance information (beyond stating you have insurance)
•Any information you consider private health information
4.2 Secure Communication for Current Clients
Once you become a client of Post Storm Therapy, all clinical communications, scheduling, and telehealth sessions occur through our HIPAA-compliant platform: Sessions Health.
Sessions Health is our secure client portal where you can:
•Schedule and attend telehealth therapy sessions
•Communicate securely with your therapist
•Complete intake forms and assessments
•Access billing and insurance information
All communications and records within Sessions Health are encrypted and HIPAA-compliant.
4.3 When Does HIPAA Apply?
•Before becoming a client: Website contact forms and initial consultation scheduling are not covered by HIPAA. We treat this information with care, but it does not have the same legal protections as PHI.
•After becoming a client: All your clinical information, therapy records, and communications through Sessions Health are protected under HIPAA and our Notice of Privacy Practices.
---
5. Third-Party Service Providers
We use trusted third-party service providers to operate our Website and deliver our services. These providers may have access to your information only to perform specific tasks on our behalf and are obligated to protect your information.
Third-party services we use include:
•Wix – Website hosting and contact form processing
•Sessions Health – HIPAA-compliant EHR, scheduling, telehealth, and client portal
•Google Meet – Video conferencing for initial consultations (not HIPAA-compliant)
These service providers have their own privacy policies. We encourage you to review their policies:
•Wix Privacy Policy: https://www.wix.com/about/privacy
•Sessions Health Privacy Policy: https://www.sessions.health/privacy
•Google Privacy Policy: https://policies.google.com/privacy
---
6. How We Share Your Information
We do not sell, trade, or rent your personal information to third parties.
We may share your information in the following limited circumstances:
•With service providers who assist us in operating our Website or conducting our business (e.g., Wix, Sessions Health)
•To comply with legal obligations, such as responding to subpoenas, court orders, or legal processes
•To protect our rights, including enforcing our Terms of Service or investigating potential violations
•With your consent or at your direction
For Current Clients: Disclosure of your protected health information (PHI) is governed by HIPAA and our Notice of Privacy Practices, which provides detailed information about when and how we may share your PHI.
---
7. Data Retention
We retain information collected through our Website contact form for one year from the date of submission, unless you request earlier deletion or become a client (in which case your records are retained according to clinical record retention requirements).
Website analytics and automatically collected data may be retained for up to two years for business analysis purposes.
For Current Clients: Clinical records and protected health information are retained in accordance with state and federal law, typically a minimum of seven years after the last date of service.
---
8. Your Privacy Rights
Depending on your location, you may have certain rights regarding your personal information, including:
•Access: Request a copy of the personal information we hold about you
•Correction: Request correction of inaccurate or incomplete information
•Deletion: Request deletion of your personal information (subject to legal retention requirements)
•Opt-Out: Opt out of receiving marketing communications from us
To exercise any of these rights, please contact us at:
Email: Lizzy@poststormtherapy.com
Phone: 740-205-6606
For Current Clients: Your rights regarding protected health information (PHI) are described in our Notice of Privacy Practices, which you received when you became a client.
---
9. California Privacy Rights (CCPA)
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):
•Right to know what personal information is collected, used, shared, or sold
•Right to delete personal information
•Right to opt-out of the sale of personal information (note: we do not sell personal information)
•Right to non-discrimination for exercising your CCPA rights
To exercise these rights, contact us at Lizzy@poststormtherapy.com or 740-205-6606.
---
10. European Economic Area (EEA) Users
If you are located in the European Economic Area (EEA), you have rights under the General Data Protection Regulation (GDPR), including:
•Right to access, correct, or delete your personal data
•Right to restrict or object to processing
•Right to data portability
•Right to withdraw consent
•Right to lodge a complaint with a supervisory authority
Our legal basis for processing your information includes:
•Consent: When you voluntarily submit information via our contact form
•Legitimate interests: To operate our Website, improve our services, and communicate with prospective clients
To exercise your GDPR rights, contact us at Lizzy@poststormtherapy.com.
---
11. Children's Privacy
Our Website and services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children under 18 through our Website. If you believe we have inadvertently collected information from a child under 18, please contact us immediately so we can delete it.
Note: Post Storm Therapy may provide clinical services to minors with parental/guardian consent, subject to applicable state laws. In such cases, the collection and use of protected health information is governed by HIPAA, our Notice of Privacy Practices, and state law, not this Website Privacy Policy.
---
12. Security of Your Information
We use administrative, technical, and physical security measures to protect your personal information. However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee its absolute security.
For Current Clients: Protected health information stored in Sessions Health is encrypted and maintained according to HIPAA security standards.
---
13. Links to Other Websites
Our Website may contain links to third-party websites, including our Sessions Health client portal. We are not responsible for the privacy practices or content of these external sites. We encourage you to review the privacy policies of any third-party sites you visit.
---
14. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated "Effective Date." We encourage you to review this Privacy Policy periodically. Your continued use of the Website after changes are posted constitutes your acceptance of the updated policy.
---
15. Contact Us
If you have questions or concerns about this Privacy Policy or our privacy practices, please contact us:
Post Storm Therapy LLC
Email: Lizzy@poststormtherapy.com
Phone: 740-205-6606
Website: https://www.poststormtherapy.com/
---
16. Emergency Information
This Website and our services are not for emergencies.
If you are experiencing a mental health emergency or crisis, please:
•Call 911 for immediate emergency assistance
•Call or text 988 to reach the National Suicide Prevention Lifeline (24/7 crisis support)
•Go to your nearest emergency room