Terms Of Use / Privacy Policy - OC Psychological Counseling

Terms Of Use

OC Psychological Counseling, P.C. CUSTOMER WEBSITE DISCLAIMER

DISCLAIMER of Tonja Duvardo, Psy.D. and OC Psychological Counseling P.C. as hosting company dba O C Psychological Counseling P.C.

Tonja Duvardo, Psy.D. and O C Psychological Counseling P.C. expressly disclaim all warranties and responsibilities of any kind, whether express or implied, for the accuracy or reliability of the content of any information contained in this site, and for the suitability, results, effectiveness or fitness for any particular purpose of the content. You are solely responsible for your use or reliance on such information and any foreseeable or unforeseeable consequences arising out of such use or reliance. In no event will Tonja Duvardo, Psy.D. or O C Psychological Counseling P.C. be liable for any damages resulting from the use of or inability to use, the content, whether based on warranty, contract, tort or other legal theory, and whether or not Tonja Duvardo, Psy.D. or O C Psychological Counseling P.C. is advised of the possibility of such damages. In no event will Tonja Duvardo, Psy.D. ‘s and O C Psychological Counseling P.C. ‘s aggregate liability exceed U.S. $100

Privacy Policy

This privacy policy has been compiled to better serve those who are concerned with how their ‘Personally Identifiable Information’ (PII) is being used online. PII, as described in US privacy law and information security, is information that can be used on its own or with other information to identify, contact, or locate a single person, or to identify an individual in context. Please read our privacy policy carefully to get a clear understanding of how we collect, use, protect or otherwise handle your Personally Identifiable Information in accordance with our website.

What personal information do we collect from the people that visit the website?

When registering on our site, as appropriate, you may be asked to enter your name, email address or other details to help you with your experience.

When do we collect information?

We collect information from you when you fill out a form or enter information on the site.

Third-party disclosure

We do not sell, trade, or otherwise transfer to outside parties your Personally Identifiable Information unless we provide users with advance notice. This does not include website hosting partners and other parties who assist us in operating our website, conducting our business, or serving our users, so long as those parties agree to keep this information confidential. We may also release information when it’s release is appropriate to comply with the law, enforce our site policies, or protect ours or others’ rights, property or safety.

However, non-personally identifiable visitor information may be provided to other parties for marketing, advertising, or other uses.

California Online Privacy Protection Act

The first state law in the nation to require commercial websites and online services to post a privacy policy, the California Online Privacy Protection Act (CalOPPA) went into effect in 2004. It was amended in 2013 to require new privacy disclosures regarding tracking of online visits

CalOPPA is the first state law in the nation to require commercial websites and online services to post a privacy policy. The law’s reach stretches well beyond California to require any person or company in the United States (and conceivably the world) that operates websites collecting Personally Identifiable Information from California consumers to post a conspicuous privacy policy on its website stating exactly the information being collected and those individuals or companies with whom it is being shared. – See more at: http://consumercal.org/california-online-privacy-protection-act-caloppa/#sthash.0FdRbT51.dpuf

According to CalOPPA, we agree to the following:

Users can visit our site anonymously.

Once this privacy policy is created, we will add a link to it on our home page or as a minimum, on the first significant page after entering our website.

Our Privacy Policy link includes the word ‘Privacy’ and can easily be found on the page specified above.

You will be notified of any Privacy Policy changes:

• On our Privacy Policy Page

Can change your personal information:

• By emailing us

• By calling us

How does our site handle Do Not Track signals?

We honor Do Not Track signals and Do Not Track, plant cookies, or use advertising when a Do Not Track (DNT) browser mechanism is in place.

Does our site allow third-party behavioral tracking?

It’s also important to note that we allow third-party behavioral tracking

COPPA (Children Online Privacy Protection Act)

When it comes to the collection of personal information from children under the age of 13 years old, the Children’s Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, United States’ consumer protection agency, enforces the COPPA Rule, which spells out what operators of websites and online services must do to protect children’s privacy and safety online.

We do not specifically market to children under the age of 13 years old.

Fair Information Practices

The Fair Information Practices Principles form the backbone of privacy law in the United States and the concepts they include have played a significant role in the development of data protection laws around the globe. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect personal information.

In order to be in line with Fair Information Practices we will take the following responsive action, should a data breach occur:

We will notify the users via in-site notification

• Within 7 business days

We also agree to the Individual Redress Principle which requires that individuals have the right to legally pursue enforceable rights against data collectors and processors who fail to adhere to the law. This principle requires not only that individuals have enforceable rights against data users, but also that individuals have recourse to courts or government agencies to investigate and/or prosecute non-compliance by data processors.

CAN SPAM Act

The CAN-SPAM Act is a law that sets the rules for commercial email, establishes requirements for commercial messages, gives recipients the right to have emails stopped from being sent to them, and spells out tough penalties for violations.

We collect your email address in order to:

• Send information, respond to inquiries, and/or other requests or questions

• Market to our mailing list or continue to send emails to our clients after the original transaction has occurred.

To be in accordance with CANSPAM, we agree to the following:

• Not use false or misleading subjects or email addresses.

• Identify the message as an advertisement in some reasonable way.

• Include the physical address of our business or site headquarters.

• Monitor third-party email marketing services for compliance, if one is used.

• Honor opt-out/unsubscribe requests quickly.

• Allow users to unsubscribe by using the link at the bottom of each email.

If at any time you would like to unsubscribe from receiving future emails, you can email us at

• Follow the instructions at the bottom of each email.

and we will promptly remove you from ALL correspondence.

NOTICE OF PRIVACY PRACTICES

THIS NOTICE DESCRIBES HOW MEDICAL INFORMATION ABOUT YOU MAY BE USED AND DISCLOSED AND HOW YOU CAN GET ACCESS TO THIS INFORMATION. PLEASE REVIEW CAREFULLY.

Our Duty to Safeguard Your Protected Health Information.
Individually identifiable information about your past, present, or future health or condition, the provision of health care to you, or payment for health care is considered “Protected Health Information” (PHI). As part of our normal business operation, we encounter your PHI as a result of your treatment, our payment and other related health care operations. We also receive your PHI via the application and enrollment process, from healthcare providers and health plans, and by a variety of other activities. Accordingly, we are required to extend certain protections to you and your PHI, and to give you this Notice about privacy practices that explains how, when and why we may use and/or disclose your PHI. Except in specified circumstances, we are required to use and/or disclose only that minimum amount of your PHI necessary to accomplish the purpose of our use and/or disclosure. We are required to follow the privacy practices described in this Notice, although we reserve the right to change our privacy practices and the terms of the Notice at any time. In the event that we change our privacy practices, we will post our updated Notice in our office.

How We May Use and Disclose Your Protected Health Information.
In accordance with the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and its HIPAA Privacy Rule (Rule), we may use and/or disclose your PHI for a variety of reasons. Generally, we are permitted to use and/or disclose your PHI for the purposes of treatment, the payment of services you receive, and for our normal health care operations. For most other uses and/or disclosures of your PHI, you will be asked to grant your permission via a signed Authorization. However, the Rule provides that we are permitted to make certain other specified uses and/or disclosures of your PHI without your Authorization. The following information offers more descriptive examples of our potential use and/or disclosure of your PHI.

Uses and/or disclosures related to your treatment, the payment for services you receive, or our health care operations. For treatment: We may use and/or disclose your PHI with other health care personnel involved in providing health care services to you.

For payment: We may use and/or disclose your PHI for billing and collection activities and related data processing: for actions by a health plan or an insurer to obtain premiums or to determine or fulfill its responsibilities for coverage and the provision of benefits under its health plan insurance agreement; to make determinations of eligibility or coverage, adjudication or the subrogation of health benefit claims; for medical necessity and appropriateness of care reviews, utilization review activities; and related payment activities to that individuals involved in delivering health services to you may be properly compensated services provided.

For health care operations: We may use and/or disclose your PHI in the course of operating the various business functions of our office. For example, we may use and/or disclose your PHI to evaluate the quality of mental health services provided to you; develop clinical guidelines; contact you with information about treatment alternatives or communications in connection with your case management or care coordination; to review the qualifications and training of health care professionals; for medical review, legal services, and auditing functions; and for general administrative activities such as customer service and data analysis.

Appointment reminders: Unless you request that we contact you by other means, the Rule permits us to contact you regarding appointment reminders and other similar materials.

Uses and/or disclosures requiring your Authorizations:
Generally, our use and/or disclosure of your PHI for any purpose that falls outside of the definitions of treatment, payment and health care operations identified above will require your signed Authorization. The Rule does not grant us permission for certain specified uses and/or disclosures of your PHI that fall outside of the treatment, payment and health care operations definitions as itemized below. Additionally, of you grant your permission for such use and/or disclosure of your PHI, you retain the right to revoke your Authorization at any time except to the extent that we have already undertaken an action in reliance upon your Authorization.

Use and/or disclosures not requiring your Authorization:
The rule provides that we may use and/or disclose your PHI without your Authorization in the following circumstances.

When required by law: We may use and/or disclose your PHI when existing law requires that we report information in each of the following areas:

Reporting abuse, neglect or domestic violence: We may use and/or disclose your PHI of suspected victims of abuse, neglect, or domestic violence including reporting the information to social service or protective services agencies.

Public health activities: We may use and/or disclose your PHI to prevent or control the spread of disease or other injury, public health surveillance or investigations, reporting adverse events with respect to food, dietary supplements, product defects and other related problems to the Food and Drug Administration, medical surveillance of the workplace or to evaluate whether or not you have a work-related illness or injury, in order to comply with Federal or State law.

Health oversight activities: We may use and/or disclose your PHI to designated activities and functions including audits, civil, administrative, or criminal proceedings or actions, or other activities necessary for appropriate oversight of governmental benefit programs.

Judicial and administrative proceedings: We may use and/or disclose your PHI in response to an order of a court or administrative tribunal, a warrant, subpoena, discovery request, or other lawful process.

Law enforcement activities: We may use and/or disclose your PHI for the purpose of identifying or locating a suspect, fugitive, material witness, or missing person, or reporting crimes in emergencies, or reporting a death.

Relating to decedents: We may use and/or disclose the PHI of and individual’s death to coroners, medical examiners and funeral directors.

For research purposes: In certain circumstances, and under the supervision of an Internal Review Board, we may disclose your PHI to assist in medical/psychiatric research.

To avert a serious threat to health or safety: We may use and/or disclose your PHI in order to avert a serious threat to health or safety.

For specific governmental functions: We may use and/or disclose the PHI of military personnel and veterans in certain situations. Similarly, we may disclose the PHI of inmates to correctional facilities in certain situations. We may also disclose your PHI to governmental programs responsible for providing public health benefits, and for workers’ compensations. Additionally, we may disclose your PHI, if required, for national security reasons.

Uses and/or disclosures requiring you to have an opportunity to object:
We may disclose your PHI in the following circumstances if we inform you about the disclosure in advance and you do not object. However, if there is an emergency situation and you cannot be given an opportunity to object, disclosure may be made if it is consistent with any prior expressed wishes and disclosures is determined to be in your best interests. You must be informed and given an opportunity to object to further disclosure as soon as you are able to do so.

To families, friends or others involved in your care: We may share your PHI with those people directly involved in your care, or payment for your care. We may also share your PHI with these people to notify them about your location, general condition, or death.

Your Rights Regarding Your Protected Health Information (PHI).
The HIPAA Privacy Rule grants you each of the following individual rights: The right to view and obtain copies of your PHI. In general, you have the right to view your PHI that is in our possession or to obtain copies of it. You must request it in writing. If we do not have your PHI, but we know who does, we will advise you how you can obtain it. You will receive a response from me within 30 days of my receiving your written request. Under certain circumstances, we may deny your request. If your request is denied, you will be given in writing the reasons for the denial. We will also explain your right to have my denial reviewed. If you as for copies of your PHI, we will charge you not more than $.25 per page. We may see fit to provide you with a summary or explanation of the PHI, but only if you agree in advance to it, as well as to the cost.

The right to request limits on uses and disclosures of your PHI. You have the right to ask that we limit how we use and disclose your PHI. While we will consider your request, we are not legally bound to agree. If we do agree to your request, we will put those limits in writing and abide by them except in emergency situations. You do not have the right to limit the uses and disclosures that we are legally required or permitted to make.

The right to choose how we send your PHI to you: It is your right to ask that your PHI be sent to you at an alternate address or by alternate method, e.g., email. We are obliged to agree to your request providing that we can give you the PHI in the format you requested, without undue inconvenience.

The right to get a list of the disclosures we have made: You are entitled to a list of the disclosures of your PHI that we have made. The list will not include uses or disclosures to which you have already consented; nor will the list include disclosures made for national security purposes, to corrections or law enforcement personnel. Disclosure records will be held for six years. We will respond to your request for an accounting of disclosures within 60 days of receiving your request. The list provided to you will include disclosures made in the precious six years unless you indicate a shorter period. The list will include the date of the disclosure, to who PHI was disclosed, a description of the information disclosed, and the reason for the disclosure. We will provide the list to you at no cost, unless you make more than one request in the same year, in which we will charge you a reasonable sum based on a set fee for each additional request.

The right to amend your PHI: If you believe that there is some error in your PHI or that important information has been omitted, it is your right to request that we correct the existing information or add the missing information. Your request and the reason for the request must be made in writing. You will receive a response within 60 days of our receipt of your request. we may deny your request in writing if we find that: the PHI is (a) correct and complete, (b) forbidden to be disclosed, (c) not part of our records, or (d) written by someone other than us. Our denial letter must state the reasons for the denial. It must also explain your right to file a written statement objecting to the denial. If you do not file a written objection, you still have the right to ask that your request and our denial be attached to any future disclosures of your PHI. If we approve your request, we will make the change(s) to your PHI. Additionally, we will tell you that the changes have been made, and we will advise all others who need to know about the change(s) to your PHI.

The right to get this notice by email: You have the right to get this notice by email. You have the right to request a paper copy as well.

How to Complain About Our Privacy Practices.
If you believe that we may have violated your individual privacy rights, or if you object to a decision we made about access to your PHI, you are entitled to file a complaint by submitting a written complaint to OC Psychological Counseling, PC, 18430 Brookhurst Street, Suite 202H, Fountain Valley, CA 92708. Your written complaint must name the person or entity that is the subject of your complaint and describe the acts and/or omissions you believe to be in violation of the Rule or provisions outlined in our Notice of Privacy Practices. If you prefer, you may file your written complaint with the Secretary of U.S. Department of Health and Human Services (Secretary) at 200 Independence Avenue S.W., Washington, D.C., 20201. However, any complaint you file must be received by us, or filed with the Secretary, within 180 days of when you know, or should have know, the act or omission occurred. We will take no retaliatory action against you if you make such complaints.

Effective Date: This Notice is currently in effect and will remain in effect until further notice.