Privacy Notice
Last Updated: March 2026

 

This privacy notice for Home Healing, Inc. and its subsidiaries, including Neurabello BRAIN Centers or Breakthrough6 ("Neurabello," “B6,” “Company” "we," "us," or "our") describes how and why we may collect, store use, and/or share ("process") your information when you use our services ("Services"), such as when you visit our website or any website related to Neurabello BRAIN Centers or engage with us in other related ways, including any sales, marketing, or events.

Questions or concerns? Reading this privacy notice will help you understand your privacy rights and choices. If you do not agree with our policies and practices, please do not use our services. If you still have any questions or concerns, please contact us at info@B6NB.com.

 

Our Commitment to Your Privacy:
At Neurabello BRAIN Centers, we are committed to protecting the privacy and security of your personal information and health information. This Privacy Policy describes the information we collect and the reasons we collect, use, disclose, and safeguard information when you visit our website www.neurabello.com (the "Website") or use our services.

• We comply with the Health Insurance Portability and Accountability Act of 1996 ("HIPAA") and its implementing regulations

• We comply with applicable California state privacy laws, including the California Consumer Privacy Act ("CCPA") and California Confidentiality of Medical Information Act ("CMIA")

• We implement appropriate technical, administrative, and physical safeguards to protect your information

Contact Information:
Home Healing, Inc. and its subsidiaries
Neurabello BRAIN Centers
4510 Executive Drive, Suite P5
San Diego, CA 92121
Phone: 800-290-0175
Email: info@b6nb.com


2. SCOPE AND APPLICABILITY

2.1 What This Policy Covers
This Privacy Policy applies to:

• Information collected through our Website (www.neurabello.com)

• Information collected when you contact us via phone, email, or contact forms

• Information collected during the provision of healthcare services

• Protected Health Information ("PHI") as defined under HIPAA

2.2 HIPAA Notice of Privacy Practices
This Privacy Policy supplements our HIPAA Notice of Privacy Practices. If you are a patient or have received healthcare services from us, you will receive a separate, detailed Notice of Privacy Practices that explains how we may use and disclose your Protected Health Information (PHI) for treatment, payment, and healthcare operations, as well as your rights under HIPAA.
For patients, the HIPAA Notice of Privacy Practices governs our use and disclosure of your health information to the extent required by law. This Privacy Policy governs information collected through our Website and general business operations.
In the event of any conflict between this Privacy Policy and our HIPAA Notice of Privacy Practices, the HIPAA Notice of Privacy Practices will control with respect to Protected Health Information.

2.3 Children's Privacy
Our Website and services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children under 18 without verifiable parental consent. If you are a parent or guardian and believe we have collected information from your child, please contact our Privacy Officer immediately.
Exception: We may provide services to minors with appropriate parental/guardian consent in accordance with applicable state laws and medical practice standards.


3. INFORMATION WE COLLECT

3.1 Protected Health Information (PHI)
When you become a patient or receive services from us, we collect and maintain PHI, which may include:
A. Identifying Information:

• Name, address, phone number, email address

• Date of birth, age, gender

• Social Security number (when required for insurance billing)

• Emergency contact information

B. Health and Medical Information:

• Medical history and current health conditions

• Mental health history and diagnoses (including depression, PTSD, ADHD, OCD, anxiety)

• Treatment plans and clinical notes

• Results from psychiatric evaluations and telehealth interviews

• Information about TMS therapy sessions and treatment outcomes

• Medication information

• Diagnostic test results

• Provider notes and observations

C. Insurance and Payment Information:

• Health insurance information (policy numbers, group numbers, insurance company details)

• Payment card information (if paying by credit/debit card)

• Billing and claims information

• Financial assistance or payment plan information

D. Treatment-Related Information:

• Referral source and referring provider information

• Appointment for scheduling information

• Communication preferences

• Treatment consent forms and authorizations

3.2 Website Information
When you visit our Website, we automatically collect certain information:
A. Technical Information:

• IP address

• Browser type and version

• Device type and operating system

• Pages visited and time spent on pages

• Referring website addresses

• Date and time of visits

• Clickstream data

B. Cookies and Tracking Technologies:
We use cookies and similar tracking technologies, including:

• Essential Cookies: Required for Website functionality (e.g., security, network management)

• Analytics Cookies: Help us understand how visitors use our Website (e.g., Google Analytics)

• Functionality Cookies: Remember your preferences and choices

• Advertising Cookies: May be used to deliver relevant advertisements

Third-Party Analytics: We may use analytics and performance technologies to understand how visitors interact with our Website, improve functionality, and enhance user experience. At this time, we do not use third-party analytics tools that collect or process Protected Health Information (PHI). If we implement third-party analytics tools in the future, we will update this Privacy Policy to reflect the categories of information collected, the purposes of collection, and applicable consumer rights.

Cookie Management: Most web browsers allow you to control cookies through browser settings. You can set your browser to refuse cookies or alert you when cookies are being sent. However, if you disable cookies, some features of our Website may not function properly.

3.3 Contact Form Information
When you submit information through our Website contact forms, we collect:

• First name and last name

• Email address

• Phone number

• Message content (which may include health-related questions or concerns)

Important: Do not include detailed health information or sensitive personal information in contact form messages. Contact forms are for general inquiries only. For healthcare-related matters, please call us directly at 800-290-0175.

3.4 Communications
We collect information when you:

• Call our phone number (800-290-0175)

• Send emails to info@neurabello.com or other company email addresses

• Participate in telehealth video interviews

• Communicate with our staff

Call Recording Notice: For quality assurance and training purposes, phone calls to our office may be recorded. You will be notified at the beginning of any recorded call.


4. HOW WE USE YOUR INFORMATION

4.1 Uses of Protected Health Information (PHI)
Under HIPAA, we may use and disclose your PHI without your written authorization for the following purposes:
A. Treatment:

• Providing TMS therapy and related mental health treatment services

• Coordinating care with other healthcare providers

• Conducting psychiatric evaluations and telehealth interviews

• Developing and implementing treatment plans

• Consulting with specialists or other healthcare professionals

• Referring you to other healthcare providers

B. Payment:

• Billing you or your insurance company for services

• Processing insurance claims and obtaining pre-authorizations

• Collecting payment for services rendered

• Determining eligibility for financial assistance programs

• Conducting utilization review and medical necessity determinations

C. Healthcare Operations:

• Quality assessment and improvement activities

• Training and supervision of staff and students

• Accreditation, certification, licensing, or credentialing activities

• Conducting or arranging for medical reviews, audits, or legal services

• Business planning and development

• Managing and operating our practice

• Customer service and appointment reminders (with your authorization)

4.2 Uses of Website Information
We use information collected through our Website for:
A. Website Operations:

• Operating, maintaining, and improving our Website

• Providing you with requested information about our services

• Responding to your inquiries through contact forms

• Troubleshooting technical issues

• Ensuring Website security

B. Analytics and Improvement:

• Understanding how visitors use our Website

• Analyzing traffic patterns and user behavior

• Improving Website design, content, and functionality

• Conducting research and analysis

C. Marketing and Communications:

• Sending information about our services (with your consent)

• Providing updates about our practice

• Sending newsletters (if you opt-in)

• Notifying you of changes to our services or policies

D. Legal and Safety:

• Complying with legal obligations

• Protecting against fraud or security threats

• Enforcing our terms of service and policies

• Protecting the rights, property, or safety of Neurabello BRAIN Centers our patients, or others

5. HOW WE DISCLOSE YOUR INFORMATION

5.1 Disclosures of Protected Health Information
We may disclose your PHI in the following circumstances:
A. With Your Written Authorization: We will obtain your written authorization before using or disclosing your PHI for purposes other than treatment, payment, or healthcare operations, except as otherwise permitted or required by law. You may revoke any authorization in writing at any time, except to the extent we have already acted in reliance on the authorization.
B. To Your Family, Friends, or Caregivers: With your permission, we may disclose relevant PHI to family members, friends, or others you identify who are involved in your care or payment for your care.
C. Required by Law: We will disclose PHI when required by federal, state, or local law, including:

• Court orders or subpoenas (with appropriate legal process)

• Law enforcement purposes (as permitted under HIPAA)

• Public health activities (disease reporting, FDA notifications)

• Health oversight activities (audits, investigations, inspections)

• Workers' compensation claims (if applicable)

D. Business Associates: We may disclose PHI to third-party service providers ("Business Associates") who perform services on our behalf, such as:

• Electronic health record (EHR) vendors

• Billing and claims processing companies

• IT service providers and data storage companies

• Legal and accounting firms

• Quality assurance and accreditation organizations

All Business Associates are required to sign agreements ensuring they will appropriately safeguard your PHI in compliance with HIPAA.
E. Research: We may use or disclose PHI for research purposes when:

• An institutional review board (IRB) has approved the research and waived the requirement for authorization, or

• You provide written authorization for the specific research use

F. Serious Threats to Health or Safety: We may disclose PHI if we believe in good faith that disclosure is necessary to prevent or lessen a serious and imminent threat to your health or safety or the health or safety of others.
G. Specialized Purposes:

• Military and veterans' activities

• National security and intelligence activities

• Correctional institutions (if you are an inmate)

• Organ and tissue donation purposes

5.2 Disclosures of Website Information
A. Service Providers: We may share Website information with third-party service providers who assist us in operating our Website, including:

• Website hosting providers

• Email service providers

• Customer relationship management (CRM) systems

• IT support and security providers

These service providers are contractually obligated to use your information only as necessary to provide services to us and to protect the information.
B. Legal Requirements: We may disclose Website information to:

• Comply with legal process (subpoenas, court orders)

• Respond to government requests

• Enforce our Website terms of use

• Protect our rights, property, or safety

• Prevent fraud or security threats

C. Business Transfers: In the event of a merger, acquisition, reorganization, bankruptcy, or sale of assets, your information may be transferred to the acquiring entity, subject to the same privacy protections.
D. Aggregate or De-Identified Information: We may share aggregate, de-identified, or anonymous information that does not identify you personally for research, marketing, analytics, or other purposes.


6. YOUR RIGHTS UNDER HIPAA
As a patient, you have the following rights regarding your Protected Health Information:

6.1 Right to Access Your Health Information
You have the right to inspect and obtain a copy of your PHI maintained in our designated record sets (medical records, billing records).
How to Exercise This Right:

• Submit a written request to info@B6NB.com

• We will respond within 30 days of receiving your request (or 60 days with a written extension)

• We may charge a reasonable, cost-based fee for copying and mailing records

Limitations: We may deny access in certain limited circumstances as permitted by HIPAA (e.g., psychotherapy notes, information compiled in anticipation of litigation).

6.2 Right to Request Amendments
If you believe your PHI is incorrect or incomplete, you have the right to request that we amend it.
How to Exercise This Right:

• Submit a written request to info@B6NB.com explaining what should be changed and why

• We will respond within 60 days

• We may deny your request if the information was not created by us, is not part of our records, is not information you are permitted to inspect, or is accurate and complete

If we deny your request, you may submit a written statement of disagreement, which will be included in your medical record.

6.3 Right to an Accounting of Disclosures
You have the right to receive an accounting (list) of certain disclosures of your PHI made by us in the six years prior to your request.
How to Exercise This Right:

• Submit a written request to info@B6NB.com

• The first accounting in any 12-month period is free; we may charge a reasonable fee for additional accountings

Exclusions: The accounting does not include disclosures for treatment, payment, healthcare operations, disclosures made to you, disclosures authorized by you, or certain other disclosures permitted or required by law.

6.4 Right to Request Restrictions
You have the right to request restrictions on how we use or disclose your PHI for treatment, payment, or healthcare operations.
How to Exercise This Right:

• Submit a written request to info@B6NB.com specifying the restriction requested

• We are not required to agree to your request, except in one situation: If you pay out-of-pocket in full for a service and request that we not disclose PHI related solely to that service to your health plan for payment or healthcare operations, we must agree to your request unless disclosure is required by law

6.5 Right to Request Confidential Communications
You have the right to request that we communicate with you about your PHI in a certain way or at a certain location.
How to Exercise This Right:

• Submit a written request to info@B6NB.com

• Specify how or where you wish to be contacted

• We will accommodate all reasonable requests

Example: You may request that we contact you only at your work phone number or only by mail.

6.6 Right to a Paper Copy of This Notice
You have the right to receive a paper copy of this Privacy Policy at any time, even if you have previously agreed to receive it electronically.
How to Exercise This Right:

• Contact us by phone (800-290-0175) or email (info@B6NB.com)

• Visit our office to obtain a printed copy

6.7 Right to Notification of Breach
You have the right to be notified if we discover a breach of your unsecured PHI. We will notify you in accordance with HIPAA breach notification requirements.


7. YOUR CALIFORNIA PRIVACY RIGHTS

7.1 California Consumer Privacy Act (CCPA)
The disclosures in this section describe our data practices during the 12 months preceding the date this Privacy Policy was last updated, unless otherwise stated.
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):
A. Right to Know: You have the right to request information about the personal information we have collected about you in the past 12 months, including:

• Categories of personal information collected

• Categories of sources from which personal information was collected

• Business or commercial purpose for collecting personal information

• Categories of third parties with whom we share personal information

• Specific pieces of personal information we have collected about you

B. Right to Delete: You have the right to request deletion of your personal information, subject to certain exceptions (e.g., when we need the information to complete a transaction, comply with legal obligations, or for other permitted purposes).
C. Right to Opt-Out of Sale: We do not sell personal information for monetary consideration.
We also do not share personal information for cross-context behavioral advertising as defined under the California Privacy Rights Act (CPRA).
If our data practices change, we will update this Privacy Policy and provide any required opt-out mechanisms.
D. Right to Non-Discrimination: You have the right not to receive discriminatory treatment for exercising your CCPA rights.

7.2 How to Exercise Your CCPA Rights
To exercise your CCPA rights:

• Email: privacy@neurabello.com

• Phone: 800-290-0175

• Mail: Privacy Officer, 4510 Executive Drive, Suite P5, San Diego, CA 92121

We will verify your identity before processing your request and will respond within 45 days (with a possible 45-day extension if needed).

7.3 California Confidentiality of Medical Information Act (CMIA)
Under CMIA, you have additional protections for medical information. We comply with all CMIA requirements, which in some cases provide greater protections than HIPAA. Where CMIA and HIPAA requirements differ, we will comply with the law that provides greater protection for your information.

7.4 California "Shine the Light" Law
Under California Civil Code Section 1798.83, California residents have the right to request information about whether we have disclosed personal information to third parties for their direct marketing purposes. We do not share personal information with third parties for their direct marketing purposes.

7.5 Right to Limit Use of Sensitive Personal Information
California residents have the right to request that we limit the use and disclosure of Sensitive Personal Information, as defined under the California Privacy Rights Act (CPRA), to purposes permitted by law.
We use Sensitive Personal Information, including health and mental health information, only as necessary to provide healthcare services, comply with legal obligations, and operate our practice in accordance with HIPAA and applicable California law.
At this time, we do not use Sensitive Personal Information for purposes requiring a limitation request. If this changes, we will update this Privacy Policy and provide instructions on how to exercise this right.

7.6 Global Privacy Control Signals
Our Website does not respond to Global Privacy Control (GPC) or similar browser-based opt-out signals because we do not sell or share personal information for cross-context behavioral advertising purposes.
If our practices change, we will update this Privacy Policy to describe how we respond to such signals.


8. DATA SECURITY

8.1 Security Measures
We implement reasonable and appropriate technical, administrative, and physical safeguards, consistent with the nature of the information and our operations, to protect personal information and Protected Health Information from unauthorized access, use, or disclosure.
A. Technical Safeguards:

• Encryption of data in transit and at rest

• Firewalls and intrusion detection systems

• Regular security assessments and vulnerability testing

• Multi-factor authentication for system access

• Automatic logoff features for inactive sessions

B. Administrative Safeguards:

• Written information security policies and procedures

• Employee training on privacy and security requirements

• Workforce sanctions for privacy/security violations

• Regular risk assessments and risk management processes

• Business Associate Agreements with third-party service providers

• Incident response and breach notification procedures

C. Physical Safeguards:

• Secure facilities with controlled access

• Locks and security systems for areas containing PHI

• Workstation security policies

• Secure disposal of paper records (shredding) and electronic media

• Video surveillance in non-clinical areas

8.2 Data Retention
We retain your information for as long as necessary to:

• Provide healthcare services to you

• Comply with legal and regulatory requirements

• Resolve disputes and enforce our agreements

Medical Records: We retain medical records in accordance with California state law, which generally requires retention for at least 7 years from the date of last service for adult patients, and for minors, at least 7 years from the date of last service or until the patient reaches age 19 (whichever is longer).
Website Information: We retain Website information for as long as necessary for the purposes described in this Privacy Policy or as required by law.

8.3 Data Security Limitations
Despite our security measures, no data transmission over the internet or electronic storage system can be guaranteed to be 100% secure. While we strive to protect your information, we cannot guarantee absolute security. You transmit information to us at your own risk.
Email Security: Email communications are not secure. Do not send sensitive health information via unencrypted email. For secure communications about your health information, please call our office or use secure patient portal features if available.


9. THIRD-PARTY WEBSITES AND SERVICES

9.1 Links to Other Websites
Our Website may contain links to third-party websites, including, but not limited to:

• Insurance company websites

• Healthcare provider directories

• Educational resources

• Technology partner websites (e.g.TMS device manufacturers)

Important: We are not responsible for the privacy practices or content of third-party websites. These websites have their own privacy policies, and we encourage you to review them before providing any personal information. This Privacy Policy applies only to information collected by our Website.

9.2 Third-Party Services
We use third-party services to operate our Website and business, including:
A. Website Hosting and Platform:

• Our Website is hosted on Wix.com. We have entered into a Business Associate Agreement (BAA) with Wix to ensure that any Protected Health Information (PHI) processed through our website is handled in accordance with HIPAA security and privacy standards.

• Wix implements administrative, physical, and technical safeguards to protect data stored on its servers.

• You may review Wix’s general privacy practices at: https://www.wix.com/about/privacy.

B. Analytics Services:
No third party analytic services are in use.
C. Communication Tools:

• Email service providers

• Telehealth platforms for video interviews

• These services have their own privacy policies and security measures

9.3 Social Media
We may maintain social media pages on platforms such as Facebook, Instagram, LinkedIn, or Twitter. Information you post on social media is governed by the social media platform's privacy policy, not this Privacy Policy. We are not responsible for the privacy practices of social media platforms.


10. TELEHEALTH AND VIDEO COMMUNICATIONS

10.1 Telehealth Services
Telehealth services are conducted through third-party providers, including video interviews with psychiatrists for diagnosis and treatment planning.
Security Measures:

• HIPAA-compliant telehealth platforms

• Video communications are encrypted

• Access requires authentication

• Sessions are not recorded without the patient’s express consent

Patient Responsibilities:

• Ensure you are in a private location for telehealth appointments

• Use a secure internet connection (avoid public Wi-Fi when possible)

• Do not allow others to view or listen to your session

• Keep your login credentials confidential

10.2 Consent for Telehealth
By participating in telehealth services, you acknowledge and consent to:

• The use of electronic communications for diagnosis and treatment

• The limitations and risks of telehealth technology

• Your responsibility to maintain privacy during telehealth sessions

• The storage and transmission of your health information electronically

11. MARKETING AND COMMUNICATIONS

11.1 Marketing Communications
HIPAA Authorization Required: Under HIPAA, we must obtain your written authorization before using or disclosing your PHI for marketing purposes, with limited exceptions.
We may send you marketing communications about:

• New services or treatments we offer

• Health-related products or services

• Information about our practice

How to Opt-Out:

• Email: Include "UNSUBSCRIBE" in the subject line and send to info@neurabello.com

• Phone: Call 800-290-0175 and request to be removed from marketing communications

• Mail: Write to Neurabello BRAIN Center 4510 Executive Drive, Suite P5, San Diego, CA 92121

Appointment Reminders: Appointment reminders and similar communications about your treatment are not considered "marketing" under HIPAA and do not require your authorization.

11.2 Fundraising
We do not currently engage in fundraising activities that would involve use of your PHI. If we conduct fundraising in the future, we will comply with HIPAA requirements and provide you with an opportunity to opt-out.


12. SPECIAL PROTECTIONS FOR MENTAL HEALTH INFORMATION

12.1 California Protections
Mental health information receives special protections under California law. We will not disclose mental health information without your written authorization except:

• As necessary for treatment, payment, or healthcare operations

• When required by law

• To prevent a serious threat to health or safety

• As otherwise permitted under California Health & Safety Code § 123110

12.2 Psychotherapy Notes
"Psychotherapy notes" (as defined under HIPAA) are personal notes kept by a therapist separate from the medical record. We maintain separate protections for psychotherapy notes and require your specific authorization (beyond the general consent for treatment) before disclosing them, except in very limited circumstances.

12.3 Substance Abuse Treatment Records
If you receive treatment for substance abuse, those records are protected by federal confidentiality regulations (42 CFR Part 2) in addition to HIPAA. We will comply with all applicable substance abuse confidentiality requirements.


13. INTERNATIONAL DATA TRANSFERS
Our services and Website are based in the United States and are intended for users in the United States. Your information is stored on servers located in the United States.
If you access our Website from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States, where privacy laws may differ from those in your country. By using our Website or services, you consent to the transfer of your information to the United States.


14. CHANGES TO THIS PRIVACY POLICY

14.1 Right to Revise
We reserve the right to revise this Privacy Policy at any time. Changes will be effective immediately upon posting the revised Privacy Policy on our Website.
Material Changes: If we make material changes to how we use or disclose PHI, we will:

• Post a notice of the change on our Website

• Provide a revised Privacy Policy to patients at their next visit

• Make the revised Privacy Policy available upon request

14.2 Effective Date of Changes
The revised Privacy Policy will apply to all information we maintain, including information created or received before the effective date of the revision, unless prohibited by law.
For PHI, we are required by HIPAA to:

• Comply with the terms of the Privacy Policy currently in effect

• Provide a copy of our current Privacy Policy upon request

• Obtain your acknowledgment that you received our HIPAA Notice of Privacy Practices

14.3 How to Access Current Version
The current version of this Privacy Policy is always available:

• On our Website at www.neurabello.com/privacy

• By contacting our Privacy Officer

• At our office

15. COMPLAINTS AND QUESTIONS

15.1 How to File a Complaint
If you believe your privacy rights have been violated, you have the right to file a complaint:
With Neurabello, Home Healing, Inc. and its subsidiaries
Neurabello BRAIN Centers
4510 Executive Drive, Suite P5
San Diego, CA 92121
Phone: 800-290-0175
Email: privacy@neurabello.com

With the U.S. Department of Health and Human Services:
Office for Civil Rights
U.S. Department of Health and Human Services
200 Independence Avenue, S.W.
Washington, D.C. 20201
Phone: 1-877-696-6775
Website: www.hhs.gov/ocr/privacy/hipaa/complaints/

With the California Attorney General: California Department of Justice
Office of the Attorney General
Privacy Enforcement and Protection Unit
300 South Spring Street
Los Angeles, CA 90013
Website: https://oag.ca.gov/privacy

No Retaliation: You will not be retaliated against, penalized, or denied services for filing a complaint.

15.2 Questions and Contact Information
If you have questions about this Privacy Policy or our privacy practices, please contact:
Neurabello BRAIN Centers
Phone: 800-290-0175
Email: info@B6NB.com
Mail: 4510 Executive Drive, Suite P5, San Diego, CA 92121
General Inquiries:
Phone: 800-290-0175
Email: info@neurabello.com


16. ACKNOWLEDGMENT AND CONSENT

16.1 Website Use
By using our Website, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy.

16.2 Patient Acknowledgment
As a patient, you will be asked to sign a separate acknowledgment that you received HIPAA Notice of Privacy Practices. This is required by HIPAA and does not constitute consent to use or disclose your PHI; rather, it acknowledges that you received information about how we may use and disclose your PHI.

16.3 Consent for Treatment
Your consent for treatment and authorization for use and disclosure of PHI for treatment, payment, and healthcare operations will be obtained through separate consent forms in accordance with HIPAA and California law.


APPENDIX A: DEFINITIONS
Business Associate: A person or entity that performs certain functions or activities on behalf of a covered entity that involves the use or disclosure of PHI.
CCPA: California Consumer Privacy Act of 2018, as amended.
CMIA: California Confidentiality of Medical Information Act.
Covered Entity: Under HIPAA, a health plan, healthcare clearinghouse, or healthcare provider who transmits health information in electronic form.
De-identified Information: Health information that does not identify an individual and with respect to which there is no reasonable basis to believe that the information can be used to identify an individual.
Disclosure: The release, transfer, provision of access to, or divulging in any manner of information outside the entity holding the information.
HIPAA: Health Insurance Portability and Accountability Act of 1996, as amended by the Health Information Technology for Economic and Clinical Health Act (HITECH Act).
Marketing: A communication about a product or service that encourages recipients to purchase or use the product or service, with certain exceptions.
PHI (Protected Health Information): Individually identifiable health information that is transmitted or maintained in any form or medium by a covered entity or business associate, excluding certain education and employment records.
Privacy Officer: The individual is designated to be responsible for the development and implementation of privacy policies and procedures.
Psychotherapy Notes: Notes recorded by a mental health professional documenting or analyzing the contents of conversation during a private counseling session, kept separate from the medical record.
Treatment: The provision, coordination, or management of healthcare and related services, including consultation between providers and referral of patients.
Use: The sharing, employment, application, utilization, examination, or analysis of information within an entity that maintains such information.


APPENDIX B: CONTACT FORM DISCLAIMER

IMPORTANT NOTICE REGARDING CONTACT FORMS
The contact forms on our Website are for general inquiries and referrals only and are not secure methods of communication for sensitive health information.
DO NOT include in contact forms:

• Detailed medical history or symptoms

• Mental health diagnoses or treatment information

• Prescription medication information

• Insurance information

• Social Security numbers

• Other sensitive personal information

For healthcare-related communications:

• Call our office directly: 800-290-0175

• Schedule an appointment for a confidential discussion

Information submitted through contact forms is transmitted over the internet and, while we use security measures, cannot be guaranteed to be completely secure.

​

Last Updated: March 2026
© 2026 Home Healing, Inc. and its subsidiaries. All rights reserved.