Privacy Policy

Beacon Light Psychological Services (“we,” “our,” “us”) is committed to protecting your privacy and maintaining the confidentiality of personal and health information. This Privacy Policy explains how we collect, use, and protect information obtained through our website and general business operations.

This policy applies to information collected online and through non-clinical communication channels. For information about how we protect your health information under HIPAA, please refer to your “Notice of Policies and Practices Regarding Protection and Privacy of Patient Health Information,” provided before services begin.

1. Information We Collect

A. Website and Technical Information

When you visit our website, we may automatically collect non-identifiable information such as:

  • IP address

  • Browser and device type

  • Pages visited

  • Date and time of visit

  • Referring website

This information helps us maintain and improve our website.

B. Information You Voluntarily Provide

When you contact us through online forms, email, or phone, you may provide:

  • Name

  • Email address

  • Phone number

  • Reason for contacting us

We use this information only to respond to your inquiry or schedule services.

C. Clinical Information (PHI)

If you become a client, we collect Protected Health Information (PHI) such as:

  • Intake and clinical history

  • Evaluation and treatment records

  • Billing information

PHI is protected under HIPAA and state law. A full description of PHI use and disclosure appears in your separate HIPAA notice.

2. How We Use Information

We may use collected information to:

  • Communicate with you about inquiries or scheduling

  • Provide psychological services

  • Maintain and improve our website

  • Operate our practice in compliance with legal requirements

We do not use PHI for marketing or advertising.

3. Google Analytics and Google Ads

Our website may use Google Analytics and Google Ads to understand overall site traffic and evaluate the effectiveness of our outreach.

  • These tools collect non-identifiable, aggregated data such as page visits and general usage patterns.

  • We do not send any personal information or Protected Health Information (PHI) to Google.

  • Tracking tools are used only on public informational pages, not on patient forms, portals, or clinical systems.

Users may adjust browser settings to limit cookies or use Google’s opt-out tools.

4. How We Protect Information

We use administrative, technical, and physical safeguards to protect personal and clinical information, including:

  • HIPAA-compliant electronic health record systems

  • Secure telehealth platforms

  • Encryption and access controls

While no system is completely risk-free, we follow all required privacy and security standards.

5. When Information May Be Shared

We do not sell or rent personal information. Information may be shared only when:

  • Necessary for treatment, payment, or healthcare operations

  • Required by law (such as mandatory reporting or court orders)

  • You provide written authorization

  • Shared with trusted service providers who support our operations and comply with confidentiality standards

Vendors who handle PHI must sign Business Associate Agreements.

6. Telehealth Privacy

Telehealth sessions are provided through secure, HIPAA-compliant platforms. Clients are responsible for ensuring a private location during their sessions.

7. Data Retention

Clinical records are retained according to state law and professional standards.

Website-related information is retained only as needed for operational purposes.

8. Children’s Privacy

We do not knowingly collect personal information from minors online. Clinical information about minors is handled according to applicable confidentiality laws.

9. External Website

Our website may link to third-party websites. We are not responsible for the privacy practices or content of those sites.

10. Messaging Practices and 10DLC Compliance

Beacon Light Psychological Services may send text message reminders or administrative updates only to individuals who have provided explicit consent to receive such communications. We comply with all A2P 10DLC requirements, including registration of our messaging campaigns, use of approved sender IDs, and adherence to carrier guidelines for transparency, opt-in, and opt-out.

Text messages are used only for non-clinical, informational purposes such as:

  • Appointment reminders or confirmations

  • Scheduling updates

  • Administrative communications you have consented to receive

Protected Health Information (PHI) is not sent via SMS messaging. By providing your mobile number and opting in to receive text messages, you acknowledge that SMS is not a fully secure communication method and agree to receive non-clinical messages in this format.

You may opt out of receiving text messages at any time by replying “STOP” to any message.

For assistance with messaging or to update your preferences, reply “HELP” to any message or contact our office directly.

11. Your Rights

Clients have rights under HIPAA and state law, including the right to:

  • Access their records

  • Request corrections

  • Request confidential communication

  • Request limits on certain uses or disclosures

  • Receive an accounting of certain disclosures

  • Revoke authorizations

Instructions for exercising these rights appear in your HIPAA notice.

12. Changes to This Policy

We may update this Privacy Policy periodically. Updates will be posted with a revised effective date.

13. Contact Us

If you have questions about this Privacy Policy, please contact:

Beacon Light Psychological Services

Phone: 207-544-6810

Email: info@beaconlightpsychology.com

Address: 22 Free Street, Suite 404, Portland, ME 04101