Harmonic | Privacy Policy - Psychology Practice Management

1. Introduction

This Privacy Policy describes how we collect, use, and protect your information when you use our psychology practice management platform. We are committed to maintaining the highest standards of privacy and security, especially regarding protected health information (PHI).

2. Information We Collect

2.1 Account Information

Name, email address, and contact information
Professional credentials and license information
Practice details and preferences
Payment and billing information

2.2 Patient Health Information (PHI)

Clinical notes and documentation
Patient demographics and contact information
Assessment results and treatment plans
Appointment schedules and billing records

2.3 Usage Information

Platform usage patterns and features accessed
Device information and IP addresses
Log files and system performance data

3. How We Use Your Information

We use collected information to:

Provide and maintain our platform services
Process transactions and manage your account
Improve our platform and develop new features
Provide customer support and technical assistance
Comply with legal and regulatory requirements
Ensure platform security and prevent fraud

4. HIPAA Compliance

As a healthcare technology provider, we are committed to full HIPAA compliance:

We maintain Business Associate Agreements (BAA) with all covered entities
All PHI is encrypted both in transit and at rest
Access to PHI is strictly limited and logged
We conduct regular security audits and assessments
All staff undergo HIPAA training and background checks

5. Data Security

We implement comprehensive security measures:

End-to-end encryption using industry-standard protocols
Multi-factor authentication for all user accounts
Regular security updates and vulnerability assessments
Secure data centers with physical access controls
Automated backup and disaster recovery systems

6. Information Sharing

We do not sell, trade, or rent your personal information or PHI to third parties. We may share information only in the following circumstances:

With your explicit consent
To comply with legal obligations or court orders
With trusted service providers under strict confidentiality agreements
In case of emergency to protect health and safety

7. Data Retention

We retain your data only as long as necessary to provide our services and comply with legal requirements. Patient records are retained according to applicable healthcare regulations, typically 6-7 years after the last patient contact.

8. Your Rights

You have the right to:

Access and review your personal information
Request corrections to inaccurate data
Request deletion of your account and data
Export your data in a portable format
Opt out of non-essential communications
File complaints with regulatory authorities

9. Cookies and Tracking

We use cookies and similar technologies to enhance your experience, analyze usage patterns, and improve our platform. You can control cookie settings through your browser preferences.

10. International Data Transfers

If you are located outside the United States, please note that your information may be transferred to and processed in the United States, where our servers are located and our central database is operated.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes via email or through the platform interface. Your continued use of our service constitutes acceptance of the updated policy.

12. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

Privacy Officer
Email: privacy@psychologyplatform.com
Phone: +1 (555) 123-4567
Address: 123 Healthcare Plaza, Suite 456, San Francisco, CA 94105

13. Regulatory Compliance

This policy complies with applicable privacy laws including HIPAA, GDPR (where applicable), and state privacy regulations. We regularly review and update our practices to ensure ongoing compliance.