Privacy Policy for Lakeshore Psychotherapy Group

• Lakeshore Psychotherapy Group

• June 3, 2024

Effective Date: September 1, 2015

Lakeshore Psychotherapy Group (“we,” “us,” or “our”) is committed to protecting the privacy and confidentiality of your personal and health information. This Privacy Policy outlines how we collect, use, disclose, and safeguard your information when you visit our website, engage with our services, or communicate with us.

By accessing our website or utilizing our services, you agree to the terms of this Privacy Policy.

1. Information We Collect

We collect various types of information to provide our services and manage our operations. This may include:

• Personal Information: Name, address, email address, phone number, date of birth, and other identifying details.
• Health Information (Protected Health Information – PHI): Information related to your mental and physical health, diagnoses, treatment plans, session notes, and billing information. This information is protected under the Health Insurance Portability and Accountability Act (HIPAA).
• Payment Information: Credit card details or other financial information necessary for billing and payment processing.
• Technical Data: IP address, browser type, operating system, referring URLs, and website usage data collected through cookies and similar technologies.
• Communication Data: Records of your communications with us, including emails, phone calls, and messages sent via our platforms.

2. How We Use Your Information

We use your information for the following purposes:

• To Provide Clinical Services: To schedule appointments, conduct therapy sessions, develop treatment plans, and coordinate care.
• For Billing and Payments: To process payments for services rendered and manage your account.
• For Communication: To respond to your inquiries, send appointment reminders, provide information about our services, and facilitate communication related to your care.
• For Internal Operations: To improve our services, manage our practice, conduct quality assurance, and perform administrative tasks.
• For Legal and Regulatory Compliance: To comply with applicable laws, regulations, professional standards, and respond to legal requests.

3. How We Share Your Information

We are committed to protecting your confidentiality. We will not sell or rent your personal or health information. We may share your information in the following limited circumstances:

• With Your Consent: We will obtain your explicit written consent before sharing your PHI with third parties for purposes other than treatment, payment, or healthcare operations.
• For Treatment, Payment, or Healthcare Operations: As permitted by HIPAA, we may share your information with other healthcare providers involved in your care, for billing purposes, or for our internal practice operations (e.g., quality review, administrative support).
• Third-Party Service Providers: We engage trusted third-party service providers to assist us with various functions, such as electronic health record management, billing, and communication. These providers are bound by confidentiality agreements and are only authorized to use your information as necessary to perform their services for us.
• Legal Requirements: We may disclose your information if required by law, court order, subpoena, or other legal process, or if we believe it is necessary to protect our rights, property, or safety, or the rights, property, or safety of others.
• Emergencies: In situations involving a serious threat to your health or safety, or the health or safety of others, we may disclose information as necessary to prevent or lessen the threat.

4. Data Security

We implement reasonable administrative, technical, and physical safeguards to protect your personal and health information from unauthorized access, use, disclosure, alteration, or destruction. However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee its absolute security.

5. Third-Party Services

SimplePractice

We utilize SimplePractice as our secure, HIPAA-compliant electronic health record (EHR) system and practice management platform. SimplePractice is used for:

• Scheduling appointments
• Managing client intake forms and consents
• Storing clinical notes and treatment plans
• Processing billing and payments
• Secure client portal communication
• Telehealth sessions

Your information stored within SimplePractice is protected by their robust security measures and compliance with HIPAA regulations. For more information on SimplePractice’s privacy and security practices, please refer to their privacy policy and security statements.

Zoom SMS (for appointment reminders and communication)

We may use Zoom SMS (Short Message Service) functionality for convenient and timely communications, such as:

• Appointment reminders
• Confirmation messages
• Brief administrative notifications related to your scheduled services

By providing your mobile phone number, you consent to receive these SMS messages from Lakeshore Psychotherapy Group. Standard message and data rates may apply. You can opt-out of receiving SMS messages at any time by replying “STOP” to any message you receive. Please note that opting out of SMS reminders may result in you missing important appointment information. We will not use Zoom SMS for clinical content or sensitive health information. All clinical communication will occur through secure, HIPAA-compliant channels (e.g., SimplePractice client portal, secure telehealth platforms).

6. State-Specific Disclosures

For Clients in Illinois

As a practice operating in Illinois, we adhere to all applicable state laws and regulations concerning patient privacy and mental health services, including but not limited to:

• Illinois Mental Health and Developmental Disabilities Confidentiality Act (740 ILCS 110/): This Act governs the confidentiality of mental health records and generally requires written consent for the disclosure of such records, with certain exceptions.
• Illinois Personal Information Protection Act (815 ILCS 530/): This Act requires data breach notification when unencrypted personal information is compromised.

Your rights under Illinois law are respected and upheld by our practice.

For Clients in Florida

As a practice operating in Florida, we adhere to all applicable state laws and regulations concerning patient privacy and mental health services, including but not limited to:

• Florida Mental Health Act (Chapter 394, Florida Statutes): This Act outlines patient rights, confidentiality of records, and involuntary examination criteria.
• Florida Information Protection Act of 2014 (FIPA – Chapter 501.171, Florida Statutes): This Act requires entities to provide notice of data breaches involving personal information.

Your rights under Florida law are respected and upheld by our practice.

7. Your Rights

You have certain rights regarding your personal and health information, including:

• Right to Access: You have the right to inspect and obtain a copy of your health information.
• Right to Amend: You have the right to request an amendment to your health information if you believe it is inaccurate or incomplete.
• Right to an Accounting of Disclosures: You have the right to request an accounting of certain disclosures of your health information.
• Right to Request Restrictions: You have the right to request restrictions on how your health information is used or disclosed for treatment, payment, or healthcare operations. We are not required to agree to all requested restrictions.• Right to Confidential Communications: You have the right to request that we communicate with you about health matters in a certain way or at a certain location.
• Right to a Paper Copy of this Policy: You have the right to obtain a paper copy of this Privacy Policy upon request.
• Right to File a Complaint: If you believe your privacy rights have been violated, you have the right to file a complaint with us or with the Secretary of the U.S. Department of Health and Human Services.

To exercise any of these rights, please contact us using the information provided below.

8. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will post the updated Privacy Policy on our website with a new “Effective Date.” We encourage you to review this policy periodically.

9. Contact Us

If you have any questions or concerns about this Privacy Policy or our privacy practices, please contact us at:

Lakeshore Psychotherapy Group, LLC.

3665 Woodhead Dr. Northbrook, Illinois 60062

(312) 481-8181

contact@lsptherapy.com