Divine Alignment Center is a healthcare provider that adheres to the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and its implementing regulations. The HIPAA Privacy Rule establishes nationwide standards to protect individuals’ medical records and other protected health information (PHI):contentReference[oaicite:0]{index=0}. We implement required safeguards to protect PHI and limit uses and disclosures of PHI to those permitted or required by law:contentReference[oaicite:1]{index=1}. In practice, this means we do not use or disclose your PHI without your authorization except for certain allowed purposes (such as treatment, payment, or health care operations) or as required by law:contentReference[oaicite:2]{index=2}:contentReference[oaicite:3]{index=3}. We adhere strictly to professional ethical guidelines, safeguarding all personal information you share during sessions, and only disclose information with your consent or when legally required:contentReference[oaicite:4]{index=4}.

Definitions: “Protected Health Information” (PHI) refers to individually identifiable health information, which includes any information about your health status, provision of health care, or payment for health care that can be linked to you. This can include your name, contact information, medical history, session notes, and any other information you provide to us in the context of receiving counseling or telehealth services. PHI can be in any form (electronic, paper, or oral) and is handled with the utmost confidentiality in accordance with HIPAA.

Uses and Disclosures of PHI: We will use and disclose your PHI only as permitted by HIPAA and relevant laws. Typically, permissible uses/disclosures of PHI without your explicit authorization include:

• Treatment: We use PHI to provide, coordinate, or manage your care. For example, your therapist may consult with another healthcare provider or specialist to aid in your treatment, or refer you to another provider, as allowed under HIPAA’s treatment provision:contentReference[oaicite:5]{index=5}.
• Payment: We may use and share necessary PHI with your insurance company or other payors to obtain payment for services provided to you, or to determine coverage and billing matters. HIPAA expressly permits use or disclosure of PHI for payment purposes (e.g., verifying benefits or submitting claims):contentReference[oaicite:6]{index=6}. This could include information like your diagnosis and the dates of service required by your insurer to process payment. We will only share the minimum necessary information with payors to accomplish billing tasks.
• Health Care Operations: We may use PHI for our internal operations, such as quality improvement, training, certification, compliance audits, or other activities necessary to run our practice and ensure quality care:contentReference[oaicite:7]{index=7}. For instance, we might use information from sessions to evaluate our services or for staff supervision, but in doing so we would remove or limit identifying details when possible.
• Other Permitted or Required Disclosures: In certain circumstances, we may be required or allowed by law to disclose PHI without your authorization. Examples include: reporting suspected abuse or neglect as mandated by law; complying with health oversight audits or inspections; responding to court orders or legal subpoenas; or averting a serious threat to health or safety (such as if a client is in imminent danger of harming themselves or others). In all cases, we only disclose what is legally necessary and follow applicable state and federal laws governing such disclosures.

Aside from the situations above, any other use or disclosure of your PHI will require your written authorization. You have the right to revoke any authorization you provide, as described in the “Client Rights” section below, to stop future uses/disclosures (except to the extent we have already acted in reliance on your authorization).

Confidentiality Commitment: We understand the sensitive nature of the information you entrust to us. We maintain strict confidentiality protocols. All staff, contractors, or volunteers with access to client information must sign confidentiality agreements and are trained on privacy obligations. We do not disclose your PHI to your family, employers, or anyone else without your consent, except in the limited cases permitted by law as described. In line with our ethical standards, we emphasize that your information remains private – we will only break confidentiality if required to protect you or others or as legally mandated.

No Selling of PHI: We will never sell your health information to third parties. We also do not use your PHI for marketing purposes unless you have given us written permission to do so (and you have the right to opt-out of marketing communications at any time). Any fundraising communications (if we ever engage in fundraising) will give you the option to opt-out as well, as required by HIPAA.

Business Associates: We sometimes work with third-party businesses to help us operate (for example, electronic health record providers, billing services, cloud storage or email services for client files, etc.). If any such third-party might access or handle PHI on our behalf, they are considered a “Business Associate” under HIPAA. We require all Business Associates to sign a Business Associate Agreement (BAA) ensuring they will safeguard your information to the same standards we uphold and comply with HIPAA regulations:contentReference[oaicite:8]{index=8}. For instance, if we use a secure electronic health record system or telehealth platform, the provider of that system must have a BAA with us and implement proper protections for your data. We only partner with technology vendors who commit to HIPAA compliance and who agree in writing to protect your privacy:contentReference[oaicite:9]{index=9}.

In summary, we treat your personal health information with the highest degree of care and legal compliance. We follow the letter and spirit of HIPAA’s Privacy Rule to ensure your information remains confidential and is used only in ways that promote your care, facilitate payment, or maintain our service quality, except where disclosure is required by law. Our internal policies also reflect HIPAA’s core principles: for example, we apply the “minimum necessary” standard by ensuring that any staff access or disclosure of PHI is limited to the least amount of information needed to achieve the purpose:contentReference[oaicite:10]{index=10}. We are happy to answer any questions you have about how we protect your privacy.

Divine Alignment Center offers teletherapy and telehealth services (such as counseling or coaching sessions conducted via video or phone) to better serve clients who cannot attend in person. Our telehealth platform of choice is typically Microsoft Teams (or another secure video conferencing solution), which can be used on your computer or mobile device. We take special care to ensure that virtual sessions are as private and secure as in-person sessions.

HIPAA-Compliant Telehealth Platform: We use telehealth technologies that meet HIPAA security requirements. For example, Microsoft Teams can be configured as a HIPAA-compliant telehealth platform when used properly:contentReference[oaicite:11]{index=11}. We ensure that any telehealth service providers we use (including video conferencing tools, scheduling apps, or telehealth portals) sign Business Associate Agreements and implement appropriate safeguards for Protected Health Information:contentReference[oaicite:12]{index=12}. This means your sessions are encrypted and protected in transit over the internet, and no unauthorized parties have access to the content of our conversations. Microsoft has stated that it will sign BAAs for its Microsoft 365 services used in healthcare and that the responsibility lies with us to configure these services securely:contentReference[oaicite:13]{index=13}. We have taken those steps so that your teletherapy sessions are private and secure. Video and audio data transmitted during sessions are not stored by us (and we do not record sessions without your explicit consent). If any recording is ever needed (for example, for training or if you request a recorded copy), we would discuss the purpose with you and obtain your written permission beforehand.

Client Environment and Best Practices: While we secure the technology on our side, the privacy of telehealth sessions also depends on your environment. We encourage you to participate in telehealth appointments from a private location, away from disruptions or unintended listeners:contentReference[oaicite:14]{index=14}. For instance, consider using a room where you can close the door, using headphones for better privacy, and ensuring no smart devices (like voice assistants) are inadvertently capturing the conversation. We also recommend using a personal device/network rather than a work computer or public Wi-Fi, to prevent others from monitoring your session:contentReference[oaicite:15]{index=15}. We will never ask you to install software that is not secure, and our telehealth tools will typically run in your web browser or a trusted app.

Telehealth Informed Consent: Prior to commencing telehealth services, we will obtain your consent for telehealth treatment as required by law. This consent will inform you about the nature of telehealth, its possible limitations, and your rights. We will explain how telehealth sessions work, including how to log in, what to do if technology fails, and discuss any potential risks (such as sessions ending abruptly due to connectivity issues). By proceeding with telehealth, you acknowledge understanding these aspects. However, you always have the right to stop telehealth and request in-person services if you prefer (when feasible and available).

Privacy During Telehealth Sessions: We conduct telehealth sessions in a private, secure room on our end to ensure confidentiality. No one else will be present or able to overhear our side of the conversation without your consent. If a third party (such as a supervisee or specialist) needs to join a session, we will ask for your permission in advance. Similarly, we ask you to ensure that no one else is in the room or listening on your end unless you want them to be (for example, you might invite a family member to join a portion of a therapy session, but that is entirely your choice). We will start sessions by confirming that both sides have adequate privacy.

Technical Security Measures: Our telehealth systems employ strong security measures. All communications are encrypted end-to-end whenever possible, meaning that the video and audio streams are scrambled during transmission so that even if intercepted, they cannot be understood by unauthorized parties. We use unique meeting links or secure authentication to ensure only you can join your session. Our systems also maintain audit logs for telehealth access, which means we have records of when sessions occurred and who accessed them, providing accountability in line with the HIPAA Security Rule’s requirements:contentReference[oaicite:16]{index=16}. We keep software up to date with the latest security patches and use firewalls and network security to prevent intrusions.

No Warranty of Perfection: While we strive to make telehealth as safe as possible, no internet transmission is 100% secure. However, you can be confident that we follow industry best practices and regulatory guidelines (including HIPAA and NIST standards) to protect your data during virtual sessions. By using our telehealth services, you acknowledge that there is a minor inherent risk (such as technical interception or failure) in any online service, but understand that we are actively minimizing these risks through robust security protocols.

Backup Plans: In the rare event of a technology failure during a session (for example, if video conferencing fails due to internet outage), we will have a backup plan in place. Typically, this means we may attempt to re-initiate the session, or switch to a phone call if video fails. We will discuss and agree on a backup communication method as part of your telehealth onboarding. If an interruption occurs, please know that we will continue to protect your privacy (for instance, if a call drops, we will not discuss sensitive information in any voicemail or message when reaching back out, aside from identifying ourselves and requesting to reconnect).

Using our telehealth services indicates your agreement to these practices. We are dedicated to making virtual care both convenient and safe. If you have any questions or concerns about privacy or security in telehealth, we encourage you to discuss them with us.

For clients who receive services in person at Divine Alignment Center’s physical location, we uphold the same high standards of privacy and confidentiality. Our office or meeting space is a private and safe environment for your counseling or coaching sessions.

Private Session Environment: We ensure that sessions take place in a confidential setting. Therapy rooms are sound-proofed or sufficiently isolated to prevent conversations from being overheard by others in the facility. We may use sound machines or other measures in waiting areas to mask voices. We schedule appointments to limit overlap between clients, maintaining discretion about who is receiving services. If you ever feel that your privacy in the office is compromised (for example, if you can hear others or fear being heard), please let us know and we will take corrective action.

Physical Records Security: Any paper records or documents containing your information are safeguarded. If we maintain paper files (such as signed consent forms or notes), they are kept in locked file cabinets in a secure area. Only authorized personnel have access to keys or combinations for these cabinets. Our office is locked and alarmed during off-hours to prevent unauthorized access. We retain physical records for the period required by law (which may vary by record type and state, often 7 years or more for adult therapy records, and longer for minors), and when they are disposed of, we shred or destroy them in a manner that ensures confidentiality.

Check-In and Waiting Room: We minimize the information we ask you to disclose verbally in any public areas. For instance, when you check in for an appointment, we may simply acknowledge your arrival without asking you to state the purpose of your visit out loud. Our staff is trained not to discuss your health information in front of other clients. Sign-in sheets (if used) will not display sensitive information. We respect your privacy from the moment you enter our facility.

In-Person Communications: When discussing treatment or sensitive matters in person, we will do so in private. If any conversation needs to occur outside of the therapy room (for example, at the front desk or over the phone), we will keep details minimal to protect your confidentiality. For example, if we need to schedule follow-ups or discuss billing in the presence of others, we will avoid mentioning specifics of your condition or treatment.

Sanitation and Health Precautions: (If applicable) In light of public health guidelines or infectious disease precautions, we also protect your health privacy when taking measures like temperature checks or health questionnaires. If we collect any health screening information for in-person visits (such as COVID-19 vaccination status or symptom checks), that information is treated as confidential medical information and not disclosed improperly. We follow all relevant laws (such as ADA and applicable health orders) regarding privacy of health screenings.

Emergency Procedures On-site: We have policies to handle emergencies that might occur during an in-person session (for instance, if you have a medical emergency or mental health crisis on-site). These procedures are designed to get you appropriate help while still respecting your privacy to the extent possible. In practice, this could mean we call emergency services if you are in immediate danger, and we would share with paramedics only the information necessary to address the emergency, in line with HIPAA allowances for preventing serious threats to health or safety.

Our commitment is that receiving services in person at our Center is a safe and confidential experience, just as it would be with any medical or counseling office. We abide by all HIPAA Privacy Rule requirements for in-person services the same way we do for telehealth. If you have any concerns about privacy in our physical location, please bring them to our attention and we will work to accommodate your needs.

Protecting your data (both health-related and personal information) is one of our top priorities. Divine Alignment Center employs robust technical, administrative, and physical security measures to safeguard all information we collect and maintain. Our security program is designed to comply not only with HIPAA’s Security Rule, but also to align with industry best practices and standards such as those published by the National Institute of Standards and Technology (NIST).

Administrative Safeguards: We maintain internal policies and procedures to ensure security. This includes conducting regular risk assessments of our systems and practices to identify potential vulnerabilities (a process emphasized by NIST’s guidance on HIPAA Security Rule compliance):contentReference[oaicite:17]{index=17}. We manage role-based access controls so that staff and contractors only access the minimum necessary information required for their duties (consistent with the HIPAA “minimum necessary” principle). We train all workforce members on privacy and security annually and as needed, and we have an appointed Privacy/Security Officer who oversees our compliance efforts. We also have incident response plans and breach notification procedures in place, so if any security incident were to occur, we can respond swiftly and effectively in accordance with legal requirements.

Technical Safeguards: Our electronic systems that store or transmit your information are secured using state-of-the-art measures. We utilize strong encryption for data at rest and data in transit. This means that your information is stored on our servers in an encrypted form and when we send or receive your data (for example, transmitting notes to a cloud backup or communicating with you via a secure portal), it is encrypted during transfer. Encryption ensures that data cannot be read by unauthorized parties:contentReference[oaicite:18]{index=18}. We implement unique user IDs and robust authentication (passwords and, where possible, multi-factor authentication) for any system access, to ensure only authorized staff can get into systems containing PHI:contentReference[oaicite:19]{index=19}. Our systems automatically log access and actions (audit logs) to create an audit trail of who accessed information and when, helping to enforce accountability and the “minimum necessary” standard:contentReference[oaicite:20]{index=20}. We use firewalls, anti-malware software, and intrusion detection systems to guard against external threats. If we maintain a website or online portal that collects personal information, it is protected via HTTPS (Secure Sockets Layer/Transport Layer Security) to encrypt information you submit (such as contact forms or intake questionnaires).

Physical Safeguards (for Digital Systems): The servers or computers that host your data are secured in controlled environments. If we use cloud services, we select reputable cloud providers with strong security track records and (when PHI is involved) those who are willing to sign Business Associate Agreements and meet HIPAA standards. For any on-site equipment, access is restricted (e.g., servers are kept in locked rooms or cabinets with access limited to authorized personnel). We also ensure proper disposal of electronic media; for example, if a hard drive or device that once contained PHI is decommissioned, we scrub or destroy it in accordance with NIST guidelines and HIPAA requirements.

NIST SP 800-53 and 800-66 Alignment: We have structured our security controls to align with NIST Special Publication 800-53, a respected catalog of security and privacy controls used by federal agencies and contractors:contentReference[oaicite:21]{index=21}. By following the NIST 800-53 framework as applicable, we cover a broad range of safeguards (access control, audit controls, incident response, disaster recovery, etc.) at a high standard. Additionally, we reference NIST Special Publication 800-66, which is NIST’s guidance specifically for implementing the HIPAA Security Rule:contentReference[oaicite:22]{index=22}. This guidance helps ensure that our interpretation of HIPAA’s requirements is consistent with federal best practices and includes an emphasis on risk management and actionable security measures:contentReference[oaicite:23]{index=23}. By aligning with these NIST guidelines, we aim to not only meet but exceed basic compliance, keeping our security program up-to-date with evolving threats and recommended defenses.

Continuous Monitoring and Improvement: Data security is not a one-time setup for us – it’s an ongoing process. We actively monitor our systems for any signs of unauthorized access or unusual activity. We apply software updates and security patches promptly to address new vulnerabilities. We periodically reassess our security practices, especially as we adopt new technologies or features, to ensure ongoing compliance and protection. If we ever detect a potential issue (such as a network intrusion attempt or a software vulnerability), our IT and security team acts immediately to investigate and mitigate it. Regular backups of critical data are performed and encrypted, and we have disaster recovery plans to maintain service continuity in case of a major system outage or natural disaster.

Breach Notification: Despite all precautions, in the unlikely event of a data breach that affects the privacy or security of your information, we will follow all legal requirements to notify affected individuals and authorities. HIPAA’s Breach Notification Rule mandates that we inform you without unreasonable delay (and no later than 60 days from discovery) of any breach involving your unsecured PHI. We would provide you with a description of the breach, the information involved, steps we are taking to investigate and mitigate the issue, and any steps we recommend for you to protect yourself. We would also report such incidents to the U.S. Department of Health and Human Services and, if the breach is of a certain size, to the media as required by law. Our goal is to be transparent and proactive in the event of any security incident, keeping your trust and safety at the forefront.

In summary, we use a combination of administrative diligence, advanced technology, and physical security measures to protect your data. Our approach is informed by federal security standards and healthcare industry best practices, giving us a strong foundation to defend against threats. We want you to feel confident that whether you’re sharing personal details in therapy or entering information on our website, that data is handled responsibly and securely.

Divine Alignment Center is forward-thinking in its compliance efforts, ensuring that our policies and practices not only meet current requirements for private healthcare providers but also position us for potential future collaboration with government programs or contracts. We understand that engaging in government contracting (for example, providing services to a federal agency or as part of a government-funded program) comes with additional regulatory responsibilities and scrutiny. We are committed to upholding those standards.

Alignment with Federal Standards (FISMA/NIST): Our information security controls and privacy practices are modeled to be consistent with federal standards such as the Federal Information Security Management Act (FISMA) and NIST guidelines, as discussed in the Data Security section. FISMA outlines how federal agencies (and their contractors) must protect information systems. By voluntarily aligning with frameworks like NIST SP 800-53 and the NIST Cybersecurity Framework, we ensure our protections are comprehensive and on par with those expected of federal information systems:contentReference[oaicite:24]{index=24}. This alignment means we are already practicing risk management, incident response, continuous monitoring, and documentation in a way that would meet many federal requirements.

HIPAA and Beyond – Federal Privacy Requirements: As a healthcare provider, HIPAA is our primary regulatory obligation for privacy. However, we also acknowledge other federal privacy laws and regulations that could become relevant in a government contracting context. For instance, the Privacy Act of 1974 may apply if we were to operate a system of records on behalf of a federal agency:contentReference[oaicite:25]{index=25}. We affirm that should we enter into such a role, we would comply with the Privacy Act’s requirements to protect personal data and provide all required notices and safeguards. Similarly, if handling records of federally-assisted substance abuse programs, we would follow 42 CFR Part 2 regulations for confidentiality. In essence, we keep abreast of federal privacy rules beyond HIPAA – including those related to specific types of data or programs – to ensure we can meet them if needed.

Federal Acquisition Regulations (FAR) Compliance: We are prepared to comply with applicable clauses of the Federal Acquisition Regulation (FAR) and Defense Federal Acquisition Regulation Supplement (DFARS) that pertain to information security and privacy. For example, FAR 52.204-21 sets basic safeguarding requirements for contractor information systems (like using access controls, updated antivirus, etc.), and we have those measures in place. If we were to contract with the Department of Defense or handle controlled unclassified information (CUI), we understand requirements such as DFARS 252.204-7012 and NIST SP 800-171 may apply (for protecting CUI). We would implement any additional controls necessary to protect government data in our possession. Currently, even without a contract mandate, we have a strict policy of safeguarding all sensitive information to a high standard, which inherently covers many of these requirements.

FedRAMP and Cloud Security: Many government projects require cloud services to be FedRAMP authorized, meaning they meet rigorous federal cloud security standards. While we are a service provider (not a cloud service vendor), we choose cloud tools for our practice that either meet high security standards or are FedRAMP authorized where possible. For instance, if we use cloud hosting for client data, we prefer services that comply with FedRAMP or similar certifications, as this demonstrates a commitment to robust security controls mapped to NIST 800-53:contentReference[oaicite:26]{index=26}. By using secure and compliant infrastructure, we ensure that our environment would not be a weak link in any government-related work. Our dedication to encryption, access controls, and continuous monitoring echoes the FedRAMP requirements and gives confidence that sensitive government-related data (if ever entrusted to us) would be handled properly:contentReference[oaicite:27]{index=27}.

Documentation and Accountability: Government contracting often involves demonstrating compliance through documentation and audits. We maintain thorough records of our policies, training, risk assessments, and system configurations. We are prepared to provide necessary documentation or to undergo security assessments if required for a contract. Our proactive compliance means we can efficiently answer security questionnaires, participate in audits, or obtain certifications that a government client might require. This readiness extends to cooperating with any government oversight or investigations in the event of an incident, in full transparency and compliance with the law.

No Public Funds or Government Data (at Present): As of the effective date of this policy, Divine Alignment Center is a private entity not directly funded by or handling data for the U.S. government. However, we anticipate that our rigorous compliance posture and mission might open opportunities to partner with public sector initiatives in the future (for example, providing mental health services to veterans or under government grants). We assure that any such involvement will be met with strict adherence to all additional legal requirements that govern that work.

In summary, our privacy and security program is built not just for today’s legal landscape but also with an eye toward the future. By aligning with federal standards and being aware of government contracting requirements, we ensure that we are ready to serve all our clients – including potentially those from the public sector – with excellence and integrity. Our clients can trust that our commitment to compliance means their information is handled with the highest level of care recognized in the industry and by government standards.

We understand that navigating payment and insurance coverage is an important part of accessing care. Divine Alignment Center strives to be transparent and accommodating in our billing practices while maintaining your privacy. This section describes our policies on insurance acceptance and how we handle your personal and health information in the billing process.

Insurance Acceptance: Divine Alignment Center accepts a range of insurance plans to facilitate access to our services. We work with many major health insurance providers (for example, some common ones may include PPO or HMO plans from carriers like Blue Cross/Blue Shield, Aetna, Cigna, United/Optum, Medicare or Medicaid plans, etc.). The specific insurance plans we accept can change, so we encourage you to contact our office or check our website or patient intake forms for the most up-to-date list of accepted insurance providers. If you have insurance coverage, we will typically verify your benefits before or during your first visit to inform you of what services might be covered, any co-payments or deductibles, and whether any prior authorization is required by your plan.

Out-of-Network and Private Pay: If we do not accept your particular insurance, or if you do not have insurance, you still have options to receive care with us. We offer private pay (self-pay) rates. Upon request, we can provide a superbill or detailed receipt for our services, which you can submit to your insurance for possible reimbursement if you have out-of-network benefits. If you choose to self-pay for services even though you have insurance, you have the right under HIPAA to request that we do not bill your insurance for those particular services (for example, if you want to keep a certain treatment confidential). If you pay for a service in full out-of-pocket and request such a restriction, we will honor it and not disclose information about that service to your health plan except if otherwise required by law.

Use of PHI for Billing: When you utilize insurance, we will use and disclose the necessary PHI to your insurance company (or other payor) to process payment for the health care services we provide. This is considered a “payment” activity under HIPAA and is allowed without separate authorization:contentReference[oaicite:28]{index=28}. Information shared with your insurer may include diagnoses (for example, the therapy diagnosis code), treatment codes for sessions, dates of service, and personal identifiers like your name, date of birth, and insurance ID number. We share the minimum necessary information required for the insurer to make a coverage or payment decision:contentReference[oaicite:29]{index=29}. We have contracts (or “provider agreements”) with insurance companies that also obligate us to maintain confidentiality of patient information and follow all privacy laws.

Financial Responsibility: It’s important to note that while we may accept your insurance, you are ultimately responsible for understanding your benefits. This includes being aware of any co-pay (a fixed fee per session), co-insurance (a percentage of the cost), or deductible (an amount you must pay out-of-pocket before your insurance covers services) that applies to your plan. We will collect co-pays or co-insurance at the time of service when possible. If your insurance denies a claim or does not cover a service (for example, if you exceed a session limit or the service is not covered under your plan), you will be responsible for the fee. We will be transparent about our fees, and we will work with you to avoid surprises by checking coverage beforehand. If you ever have questions about a bill or coverage, please contact us; we can often help clarify with your insurer.

Insurance Authorizations and EOBs: Some insurance plans require pre-authorization or ongoing authorization for therapy services. If so, we may need to provide certain information to the insurance company to obtain approval for treatment (such as a treatment plan or progress updates). We will discuss with you what information is needed and obtain your consent if any sensitive details beyond the basics are required. Additionally, after claims are processed, your insurance will typically send you an Explanation of Benefits (EOB) letter. The EOB will list the services provided, the amount billed, what the insurance paid, and what amount (if any) you owe. Keep in mind that if you are on someone else’s insurance (for example, a spouse’s or parent’s plan), that policyholder might see your EOB. If this is a concern for your privacy, let us know and we can discuss options (such as paying out-of-pocket to avoid using insurance for certain services, etc.).

Payment Methods: For self-pay clients or for balances due, we accept various payment methods such as credit/debit cards, HSA/FSA cards, checks, or cash (depending on the nature of service delivery — cash/check may only be feasible in person). Our electronic payment systems are PCI-DSS compliant and secure. Credit card information, if stored (for example, for automated billing of recurring sessions), is handled through a secure payment processor; we do not store full credit card numbers in plaintext in our systems. Financial information like credit card details or bank account info, while not PHI, is still protected with high confidentiality. We will not share your payment information with any third party except as necessary to process transactions (e.g., through our payment gateway or bank) or as required for accounting/auditing.

Collections and Outstanding Balances: In the event that a bill goes unpaid for a significant period, we will make multiple attempts to contact you to resolve the balance. We understand sometimes circumstances happen, and we will work with you on payment plans if needed. We avoid using outside collection agencies to the extent possible because they involve sharing some personal information. Only if absolutely necessary, and after giving ample notice, would we turn over a seriously delinquent account to a collection agency or take legal action. Even in those cases, we would share the minimum information needed (typically your contact information, amount owed, and dates of service) and not details of your diagnosis or treatment. We would also ensure any such third-party is obligated to maintain confidentiality of your information.

Communication about Billing: We may use the contact information you provided (phone, email, or mailing address) to communicate with you about billing matters. For example, we might send a billing statement to your mailing address or an invoice or payment receipt to your email. We will keep these communications discrete; emails will not detail sensitive health information in the subject line or body (beyond perhaps general terms like “therapy session” as needed for clarity). If you have preferences about how we communicate billing info (for instance, you prefer all bills by email and no paper mail, or you want us to use a specific address), please inform us and we will accommodate reasonable requests.

Our goal in our insurance and payment policy is to support your access to care while responsibly managing the financial side of our practice. If you have any questions or concerns about using insurance, sharing information with insurers, or any related privacy issues, we encourage you to discuss them with us. We are here to help you understand your options and will respect your decisions regarding your information and payment methods.

As a client of Divine Alignment Center, you have numerous rights concerning your personal data and Protected Health Information. We want you to be fully informed of these rights, as they empower you to be in control of your information. Below we outline your key rights and how you can exercise them. These rights are consistent with HIPAA regulations and our own commitment to transparency and respect for your autonomy.

• Right to Access and Obtain Copies: You have the right to see and get copies of your health information that we maintain, with a few exceptions (for example, psychotherapy notes kept separate from the medical record, or information compiled for legal proceedings). This includes the right to receive an electronic copy if we maintain your records electronically. Upon your request, we will provide you with access to your records or copies within a reasonable time (no later than 30 days, with a possible one-time extension of 30 additional days if needed, which we would inform you about). We may charge a reasonable, cost-based fee for copies or mailing, if applicable, but we will let you know the cost in advance. You also have the right to direct us to send a copy of your records to a third party of your choice (for example, another therapist, your primary care doctor, or even to yourself at an email or physical address you provide), and we will do so upon your signed, written request:contentReference[oaicite:30]{index=30}.
• Right to Request Amendment: If you believe that information in your record is incorrect or incomplete, you have the right to request that we amend (correct or add to) your record. Your request should be in writing and provide the reason for the amendment. We will review your request and usually respond within 60 days. If we accept the amendment, we will make the correction or addition and inform you, and, with your help, notify others who have copies of the incorrect information (for example, if we know another provider or your insurance has the wrong info, and you want them notified). If we deny the amendment (for instance, if we believe the record is accurate, or we did not create the record), we will provide you a written denial explaining the reason and your right to submit a statement of disagreement that will be kept with the record.
• Right to an Accounting of Disclosures: You have the right to request a list of certain disclosures we have made of your PHI. This is a list of disclosures other than those made for treatment, payment, or health care operations (and certain other exceptions like disclosures you authorized). For example, you can request to know if we disclosed any of your information to public health authorities or in response to a subpoena. The accounting will include the date of each disclosure, who it was to, a brief description of the information disclosed, and the purpose. You can request an accounting for up to the past six years. If you ask for this list more than once in a 12-month period, we may charge a small fee for the additional requests. We will inform you of the fee in advance and give you a chance to modify or withdraw your request if needed.
• Right to Request Restrictions: You have the right to ask us to restrict (limit) the PHI we use or disclose about you for treatment, payment, or health care operations. You may also request a limit on what we share with certain individuals (for example, you might request we not share information with a particular family member). While we will consider all reasonable requests, please understand that with the exception of the situation noted below, we are not required to agree to a restriction. If we do agree, we will put the restriction in writing and abide by it (except if the information is needed for emergency treatment). **Special Case – Self-Pay Restriction:** If you pay for a service entirely out-of-pocket and ask us not to tell your health plan about that specific service, we must honor that request and will not bill or disclose information to your insurer for that service:contentReference[oaicite:31]{index=31}, unless disclosure is required by law.
• Right to Request Confidential Communications: You can ask us to communicate with you in a certain way or at a certain location to better protect your privacy. For example, you might request that we only contact you on your cell phone and not at your home phone, or that we send mail to a P.O. box instead of your home address. We will accommodate reasonable requests whenever feasible. You do not need to give a reason for the request; however, please be clear in specifying how or where you wish to be contacted so we can effectively honor your preferences.
• Right to a Copy of This Privacy Policy/Notice: You have the right to a paper copy of this Privacy Policy (which serves as our HIPAA Notice of Privacy Practices) at any time, even if you have agreed to receive it electronically. You may request a copy from us in person or by mail. It is also available on our website. We will provide you with a copy promptly upon request. If we have made any material changes to the policies, the current version will be provided (along with information about when it became effective).
• Right to Withdraw Consent or Authorizations: If you have given us consent to use or disclose your information in ways that are not required or permitted by law (for example, if you signed an authorization for us to release information to a third party), you have the right to revoke (cancel) that authorization at any time, in writing. Once we receive your written revocation, we will stop using or disclosing your information for that purpose, except to the extent we have already relied on the authorization. Please note that if you agreed to disclosure of information as a condition of obtaining insurance coverage, your revocation will not affect the insurer’s right to obtain information for a claim under the policy (the law requires that). Also, revoking an authorization won’t affect any disclosures that were permitted without authorization under HIPAA.
• Right to File a Complaint (Privacy Rights Violation): If you believe your privacy rights have been violated, you have the right to file a complaint with us and/or with the Secretary of the U.S. Department of Health and Human Services (Office for Civil Rights). To file a complaint with us, you can contact our Privacy Officer (contact info is in the “Contact Us” section of this policy). We take all complaints seriously and will not retaliate against you for expressing a concern or filing a complaint. To file a complaint with the government, you can send a letter to the U.S. Department of Health & Human Services, Office for Civil Rights. We can provide the appropriate address or website for OCR upon request, or you can find it on the HHS website. The law protects your right to complain.

We are dedicated to upholding these rights and assisting you in exercising them. Whenever you make a request regarding your rights, we will respond in a timely and transparent manner. Some requests may need to be in writing for documentation purposes – if so, we will help you understand what information to include and provide a form if we have one. If we cannot fulfill a request (for example, if a requested restriction is something we cannot practically implement), we will explain the reasons to you. Your trust is paramount, and part of that trust is knowing you have control over your personal health information. We encourage you to ask questions about your rights or any aspect of how your information is handled.

When you use the Divine Alignment Center website (and any related online services under our control), we want you to know what data might be collected from your visit and how we handle it. This section covers our use of cookies, analytics, and other website-related privacy matters, as well as how we handle any personal information you may submit through our site.

General Browsing Data: Like most websites, our site automatically collects certain information about your visit. This can include your IP address (a numeric address for your device on the internet), the type of browser and device you use, the pages you visit on our site, and the time and date of each visit. We use this information primarily for system administration and to analyze trends - for example, to see which pages are most frequently visited or if there are technical issues in parts of the site. We may log IP addresses to understand usage patterns, but we do not link IP addresses to personally identifiable information in our web analytics:contentReference[oaicite:32]{index=32}. This means you remain anonymous in our site usage statistics; we see what users as a whole do, but not what any specific named individual does, unless you choose to identify yourself by filling out a form.

Cookies and Similar Technologies: Our website uses “cookies” which are small text files placed on your device when you visit our site. Cookies serve several functions:

• They can remember your preferences (like any contrast settings or font size choices if our site offers accessibility options) so that you have a better user experience on return visits.
• They help us understand how people use our site. For instance, we might use Google Analytics or a similar tool that uses cookies to collect aggregate information about site visits (such as number of visitors, which pages are popular, how long users stay, etc.). This analytics data helps us improve our content and site layout.
• If our site has login functionality or a client portal, cookies would keep you logged in or remember your session as you navigate through secure areas.

Personal Information You Provide Online: If our website offers forms – for example, a “Contact Us” form, newsletter sign-up, appointment request, or intake form – we will ask you for certain information. This could include your name, email, phone number, and any message or details you choose to provide. We use this information solely for the purpose stated:

• If you fill out a contact form or request, we will use the information to respond to your inquiry or request.
• If you sign up for a newsletter or updates (and explicitly opt-in), we will use your email to send you those communications. Each such email will provide an option to unsubscribe or opt-out of future mailings at any time.
• If you use online scheduling or intake, the data will be used to set up your appointments or initialize your client record, in which case it becomes part of your confidential client information protected under this Privacy Policy and HIPAA.

Third-Party Services and Links: Our website may contain links to third-party websites or incorporate features from other services. For example, we might embed a scheduling widget from Calendly or a map from Google Maps, or link to our profiles on social media (Facebook, LinkedIn, Instagram). If you click those links or use those embedded features, you may be directed to or interacting with third-party services that we do not control. This Privacy Policy does not cover how those third-party sites or services handle your data. We encourage you to review the privacy policies of any third-party sites or services you visit. However, we will never intentionally share your personal information with a third-party website without your direct action (for instance, clicking a link to go to them) or without disclosing that to you.

Google Analytics and Tracking: (If applicable) We may use Google Analytics (or a similar analytics tool) to better understand our website traffic. Google Analytics uses cookies to collect data (described above). Google provides an opt-out browser add-on if you wish to prevent your data from being used by Google Analytics. We do not currently use any interest-based advertising or retargeting cookies on our site. If that ever changes, we will update this policy and ensure appropriate consent banners are used as required by law for such cookies.

Do Not Track: Some web browsers have a “Do Not Track” feature that can send a signal to websites indicating you do not wish to be tracked. Currently, there is no universal standard for how to interpret such signals. Our site, in line with common practice, does not respond to “Do Not Track” signals. However, as noted, we limit our tracking to basic analytics and necessary functionality. We do not track your activities across other sites or services, nor do we allow third parties to do so through our website beyond the analytics mentioned.

Security of the Website: We implement security measures to protect our website and any data collected through it. This includes using SSL/TLS encryption (you’ll notice our site URL begins with “https://”, indicating it’s secure when you submit information). We regularly update our website platform and plugins to patch security vulnerabilities. However, remember that no website is 100% immune to threats. If a security breach were to occur on our website affecting your personal data, we would notify you as required (similar to any breach of our systems as described under Data Security). We also monitor for any downtime or hacking attempts and take protective actions as needed.

Children’s Online Privacy: Our website and services are not directed to children under the age of 13. We do not knowingly collect personal information via the website from individuals under 13 without parental consent. If you are a minor (under 18), please ensure you have your parent or guardian’s permission to use our site and do not send any personal health information through online forms without parental involvement. If we discover we have received information from a child under 13 without proper consent, we will delete it. (Note: Our counseling services may serve minors, but the intake for such services would involve parental consent in an offline process as required by law, rather than a child directly using the website without oversight.)

By using our website, you acknowledge that you have read and understood this section of the Privacy Policy regarding online data. We aim to keep our online presence informative and safe for all visitors. If you have any questions or concerns about what data we collect online or how it’s used, please contact us and we’ll be happy to provide more information.

Divine Alignment Center is dedicated to supporting your mental, emotional, and spiritual well-being through our services. However, it is very important to understand the scope of our services and what to do in an emergency or crisis situation. We are not an emergency crisis center, and there are critical limitations on the immediate assistance we can provide in life-threatening or urgent circumstances.

Not for Medical or Psychiatric Emergencies: Our services (including therapy, coaching, and telehealth sessions) are not intended for use during emergencies. If you are experiencing a medical emergency, a mental health crisis that is life-threatening, or any situation where you or someone else is in imminent danger, you should call 911 or your local emergency services immediately, or go to the nearest emergency room. Do not attempt to use our scheduling system, website contact form, or telehealth platform to seek emergency help, as these are not continuously monitored and we cannot guarantee an immediate response.:contentReference[oaicite:35]{index=35}. For instance, sending an email or voicemail about an urgent suicidal crisis may not be read or heard right away, and that delay could be dangerous. Instead, call 911 or contact emergency providers who are available 24/7.

Crisis Resources: If you are in crisis but not at immediate risk (for example, experiencing intense distress but able to maintain safety for the moment), we encourage you to use available crisis hotlines or text lines for support. Some available resources include the 988 Suicide & Crisis Lifeline (just dial 988 in the U.S.), the National Suicide Prevention Lifeline at 1-800-273-TALK (8255):contentReference[oaicite:36]{index=36}, or the Crisis Text Line (text HOME to 741-741). These services are free and available 24/7 and can provide immediate help or guidance. We can also assist you in session by identifying local emergency services or crisis resources for you to have handy, as part of your safety planning.

After-Hours Contact: Our practice may have a 24/7 telehealth line or an after-hours voicemail for urgent concerns (for example, if you are an established client and face an urgent situation after hours). While we do aim to provide support through these means, they are for guidance and referrals and do not substitute for emergency care:contentReference[oaicite:37]{index=37}. If we provide you with an emergency contact number for our team, understand that it may connect you with a qualified professional who can talk you through coping strategies or help determine next steps, but even then, if the situation is life-threatening, the likely step will be to direct you to emergency services. We pledge to do our best to respond to urgent messages, but we cannot guarantee immediate pickup or response, especially if multiple emergencies occur simultaneously. Always err on the side of contacting 911 for anything that cannot wait.

No Continuous Monitoring: We do not continuously monitor any communication channels (such as email, text, or even phone) in real-time. There may be delays in our response outside of scheduled sessions. For that reason, do not use any of our communication means (including the telehealth platform chat or portal messaging features, if any) to convey time-sensitive, emergency information. For example, if you send a message saying "I'm feeling suicidal" at 3 AM via our client portal, we might not see it until the next day, and that could be too late to help. Instead, in such moments of crisis, reach out directly to emergency responders or crisis professionals immediately.

Liability Limitations: By engaging in our services, you acknowledge that Divine Alignment Center is not liable for any outcomes if you fail to seek appropriate emergency help when needed. We provide guidance and therapeutic support, but we cannot take responsibility for managing emergencies that are outside the scope of our outpatient services. We will, of course, work with you to create safety plans and may intervene (such as contacting emergency services on your behalf) if a crisis occurs during a session or if we become aware of an immediate threat. However, ultimately, we need you to also take action to protect your safety by using emergency resources when appropriate. We will not hesitate to call emergency services for you if, during a session, you express an intent and plan to harm yourself or someone else and are unwilling or unable to guarantee safety – your wellbeing is paramount. This might involve breaking confidentiality in a crisis to the extent needed to get you help (which is permitted by law to prevent harm).

Medical Advice Disclaimer: Please also note that while we may discuss health or wellness, our practitioners (unless otherwise qualified) do not provide medical advice. Do not interpret discussions about, say, nutrition, exercise, or general well-being as medical advice. Always consult a physician for medical issues or before making changes to medication or major lifestyle routines. If our team includes licensed medical providers (like a psychiatrist or nurse practitioner) providing guidance, they will clarify the scope of their advice. Otherwise, content on our website or in sessions about health should be seen as educational or supportive, not directive medical counsel.

We include this section to ensure there is no confusion about where to turn in a crisis. We care deeply about your safety. Our role is to support and guide you through challenges, and part of that is helping you know how to get the right help at the right time. Never hesitate to reach out to emergency services when needed – minutes can matter. We will be here to continue working with you through recovery and aftercare once the immediate emergency has been addressed.

Divine Alignment Center is a faith-driven practice that integrates spiritual principles with therapeutic practices. Our approach, rooted in Christ Consciousness and holistic healing, is what makes us unique. However, we want to clarify what spiritual integration means in the context of our services and set appropriate expectations. We also affirm our respect for each client’s individual beliefs and ensure that our spiritual focus is inclusive and client-centered.

Optional Faith-Based Approach: While our mission is grounded in spiritual growth and many of our therapeutic modalities can include spiritual or faith-based elements, participation in explicitly spiritual practices is entirely optional and based on your comfort. We tailor our approach to each client’s needs and preferences. If you come to us seeking purely secular counseling, we will provide evidence-based therapy without incorporating spiritual content unless you express an openness or desire for it. Conversely, if you desire prayer, biblical or scriptural discussion, or other spiritual exercises as part of your sessions, we are happy to include those in a way that supports your therapeutic goals. Your level of spiritual involvement in therapy is your choice. We will discuss with you at intake what your preferences are in this regard.

No Proselytizing or Imposing Beliefs: Our practice is founded on Christian values of love, compassion, and healing, but we are not here to preach or convert. We serve clients of all faiths and backgrounds with equal respect. We have a strict non-discrimination policy and welcome individuals regardless of religion, race, gender identity, sexual orientation, etc.:contentReference[oaicite:38]{index=38}. Our focus is on healing and personal growth; any spiritual dialogue is meant to be supportive, not judgmental. You will not be pressured to adopt any specific religious doctrine. The term “Christ Consciousness” for us signifies a universal love and higher consciousness, not a requirement to adhere to a particular denomination or church doctrine. We acknowledge and honor that spirituality can take many forms and that you, as the client, are the ultimate authority on what spiritual or religious beliefs (if any) you want to incorporate.

Integration with Clinical Practice: The spiritual components of our therapy are integrated with standard clinical practice. Our counselors are trained professionals (licensed in mental health fields) who ensure that any spiritual techniques or discussions are used in a clinically appropriate manner. For example, mindfulness or prayer might be used as a therapeutic technique to help with anxiety if you’re receptive to it, or exploring existential meaning and purpose might be part of processing a trauma. We maintain professional boundaries and ethical standards at all times. Spiritual integration is intended to complement evidence-based methods, not replace them. We still rely on established counseling theories and interventions (CBT, trauma-informed care, etc.) and enhance them by addressing the spirit/soul when it’s beneficial and welcomed. This holistic approach aims to treat the whole person – mind, body, and spirit – for deeper healing.

Not Clergy or Religious Services: While spiritual counseling can feel similar to pastoral counseling, our services are therapy/coaching and not a formal religious sacrament or rite. Engaging with us does not constitute joining a church or receiving pastoral counseling under clergy-penitent privilege in a legal sense (though therapist-client confidentiality offers similar protections under law). If you seek sacramental counseling or purely religious guidance, we can refer you to appropriate clergy. Our work can certainly complement your involvement in a faith community, but we operate as a professional counseling entity. Any advice or guidance we give is in our capacity as therapists or coaches, even when it touches on spiritual topics.

Respect for Diverse Spiritual Expressions: We recognize that spirituality is deeply personal. Some clients may use terms like God, others may prefer the universe, some may have indigenous or Eastern spiritual practices, and some may be questioning their faith or recovering from spiritual abuse. Our commitment is to meet you where you are. If you use prayer or meditation, we can incorporate that. If you have been hurt in a religious context (which is something we specifically focus on—helping those overcoming religious trauma or manipulation), we provide a safe space to heal without re-traumatizing you or pushing you toward any religious agenda. We are sensitive to the complexities of faith and identity. For clients who have a strong faith, we aim to integrate that as a source of strength in therapy. For clients who are skeptical or have left a faith, we help them find a path to healing that respects their experiences and choices. All sessions are client-led in terms of spiritual content.

No Guarantees or Supernatural Claims: Our belief in the divine and the power of alignment is sincere, and we have seen transformative growth in our clients. However, we must clarify that we do not guarantee specific outcomes such as miraculous healing or prophecy. Therapeutic progress, whether spiritual or not, depends on many factors including the work you put in, external circumstances, and sometimes just time. Any testimonials or discussions of spiritual breakthroughs are individual experiences and not a promise of what will happen for you. We encourage hope and faith but remain grounded in practical goal-setting and therapeutic processes. If at any time our spiritual approach does not resonate or you feel uncomfortable, you have the right to voice that and we can adjust our approach—there is no obligation to continue any practice that you do not feel is beneficial.

Use of Spiritual Tools or Products: We sometimes may suggest or provide resources from our affiliated operations (like Higher Divine Essentials or Higher Conscious Network) such as books, mindfulness audios, or other tools to support your journey. These are optional resources for your convenience. Utilizing them is not required for therapy success; they are offered as potential aids if you find them useful. We uphold your freedom of choice in integrating any such tools into your personal practice. Additionally, any such suggestions are for supportive purposes, not medical treatment. For example, if we recommend an essential oil or herbal tea for relaxation from our shop, it’s as a complementary wellness tip, not a prescription. Always consult with appropriate professionals for any medical or health remedies.

By understanding these disclaimers, you can engage with Divine Alignment Center with clarity about how we incorporate spirituality into our work. Our aim is to empower and uplift, in alignment with your values and consent. We celebrate the chance to walk with you on your unique journey—whether it’s deeply spiritual, completely secular, or anywhere in between—and we remain committed to professionalism and compassion throughout that process.

In providing our services, Divine Alignment Center utilizes various technologies – from our website and email to electronic health records and telehealth platforms. While technology greatly enhances convenience and efficiency, it also comes with limitations and responsibilities. This section outlines important considerations regarding the technology we use, including limitations of security, and your responsibilities as a user of these technologies.

No Absolute Guarantee of Security: We have implemented strong security measures as described in the “Data Security” section of this policy. However, it is important to acknowledge that no system connected to the internet or any electronic storage method can be guaranteed 100% secure. There is always some residual risk that a determined hacker or unforeseen vulnerability could result in unauthorized access to data. We continually strive to minimize this risk and follow best practices, but we want to set realistic expectations. By using our online services (such as telehealth or email communications with us), you understand and accept that there is a rare possibility of security breaches despite stringent safeguards. We promise that if such a breach ever occurs, we will notify you and take all appropriate remedial actions as outlined earlier.

Your Role in Security: Security is a partnership. There are steps you, as a client or site user, can take to further protect your information. We encourage you to use strong, unique passwords for any client portals or accounts related to our services and to keep those passwords confidential. If we offer a client portal, do not share your login credentials with others and log out after you finish accessing it. Keep your devices (computers, tablets, phones) secure – use a passcode or password on your devices, keep your operating system and antivirus software updated, and be cautious of phishing attempts (e.g., emails that look like they’re from us but are not; always verify the sender or contact us directly if unsure). If you access telehealth or fill out forms on a public computer, ensure you do not save information and that you close all windows and log out. By being mindful of these practices, you greatly help in protecting your own data.

Electronic Communications Consent: We may offer or you may request communications via email or text for convenience (such as sending appointment reminders or resources). It’s important to note that standard email and SMS text messages are not encrypted and carry some risk if they contain sensitive information. As a policy, we try to limit sensitive details in such communications (for example, we might say “Appointment reminder with Divine Alignment Center tomorrow at 10am” rather than specifying “therapy” or including clinical details). If you have provided us with your email or phone number and agreed to be contacted in that way, you are acknowledging awareness of these risks. You can always opt-out of certain communication methods or request more secure alternatives if you prefer (for instance, using a secure messaging feature of a portal instead of regular email). We will accommodate reasonable requests to communicate via your preferred method, as long as we consider it feasible and you accept any increased risk if the method is less secure.

System Downtime and Availability: Our technological systems (website, telehealth platform, etc.) may occasionally be unavailable due to maintenance, upgrades, or unexpected outages. We will try to schedule maintenance during off-peak hours and give notice if there is planned downtime that might affect scheduled sessions or access to resources. However, unexpected outages (due to power failures, internet service provider issues, or server problems) can occur without warning. We ask for your patience and understanding in such events. If a scheduled telehealth session is disrupted due to our system issues, we will reschedule with you as soon as possible at no penalty or cost. If our website is temporarily down when you need information, you can contact us directly for assistance. We will endeavor to restore functionality quickly and have backup procedures for critical functions (for example, if our electronic health record is inaccessible, our therapists can revert to taking notes on paper to ensure continuity of care until the system is back).

Use of Third-Party Platforms: We may use third-party platforms for certain functions (for example, Calendly for scheduling, Stripe or Square for payments, Doxy.me or Zoom as an alternative for telehealth, etc.). While we carefully select these services for their security reputation and have agreements where needed (like BAAs for HIPAA compliance), we do not have full control over their operations. Thus, if one of those services has its own breach or outage, it could indirectly affect your data or service experience with us. We keep ourselves informed of our vendors’ security status and will act swiftly (e.g., switching to a different provider or implementing recommended patches) if we learn of any vulnerability. By using our services, you are generally agreeing to the use of these third-party tools as part of our operations. We will provide you with any specific privacy notices or consents required for particular platforms as necessary. For instance, when you use our online payment, you might be directed to our payment processor’s secure portal, which will have its own privacy and security information (which we ensure is up to standard).

Liability for Technology Failures: We cannot be held liable for damages or losses resulting from technology issues beyond our direct control, such as an internet outage on your end, an interruption in telehealth due to software bugs, or unauthorized access caused by vulnerabilities in third-party systems. That said, we take responsibility for doing everything within our control to safeguard your data and provide reliable service. If you encounter a problem with any of our tech-related services, please report it to us and we will make it right to the best of our ability. If for example a payment got incorrectly processed twice due to a glitch, we will work to refund any error. If an email didn’t reach us due to server issues, we will apologize and ensure your needs are addressed once we discover the issue. Our liability in any case of service failure will be limited to the fullest extent permitted by law, and we do not assume liability for consequential damages arising from the use or inability to use our electronic services.

Consent to Electronic Records: By engaging in our services, you may be consenting to the use of electronic records and signatures. For instance, we may have you sign intake forms or consent forms electronically via a secure platform. These electronic signatures carry the same legal weight as a physical signature on paper. If you prefer paper records or signing in person, let us know and we can accommodate that. Otherwise, we operate with e-documents for efficiency and eco-friendliness, with appropriate encryption and backups to protect those records.

We strive to leverage technology to enhance your experience with Divine Alignment Center, but never at the expense of your privacy or rights. This section is meant to clarify the shared responsibility and understanding we have with you in using these modern tools. If you have any concerns about our technology use, security measures, or your privacy in the digital realm, please reach out. We are continuously updating our practices to keep up with advancements and new threats, always aiming to provide a safe, reliable service for our clients.

We may update or revise this Privacy Policy from time to time as laws change or as our practices evolve. Divine Alignment Center reserves the right to modify the policy at any time, and the changes will apply to all information we have about you. However, we will not reduce your rights under this policy or HIPAA without your consent. When we make significant changes, we will notify our clients through appropriate means:

• If you are an active client, we may inform you during a session, send an email, or mail a notice outlining the changes.
• We will post the updated Privacy Policy on our website with a new effective date. The top of the policy will show the date of the latest revision.
• If required by law (for example, under HIPAA, if we make a material change to our Notice of Privacy Practices), we will redistribute or make available the new notice to our clients.

Your continued use of our services or the website after a change has been made constitutes acceptance of the updated terms. We encourage you to periodically review this Privacy Policy to stay informed about how we are protecting your information. If you do not agree with a change, you have the right to discontinue services (although we hope to always work with you to address any concerns). For minor, non-material updates (such as clarifications or typographical corrections), we may not send out a formal notice, but the updated policy will always be posted on our site.

If we ever were to experience a change in ownership (for instance, if Divine Alignment Center or its parent company were acquired or merged with another entity), your information may be transferred as part of that transaction. If such a transfer materially affects the privacy of your information, we will ensure you are notified and that the new owner is contractually obliged to honor the commitments we have made in this policy (or inform you of any changes and obtain necessary consents). Your privacy will remain a priority through any corporate changes.

In summary, we will keep this document current and transparent. The “effective date” at the top lets you know when it was last revised. Historical versions of our Privacy Policy can be requested if needed to see what terms applied at a given time. We appreciate your trust and will continue to earn it by treating your information with respect and integrity, and by keeping you informed of any important updates in our privacy or security practices.

Your privacy is important to us, and we are committed to addressing any questions or concerns you may have about this Privacy Policy or our practices. Please do not hesitate to reach out using any of the methods below:

• Privacy Officer: For any specific questions about your health information privacy or to exercise your HIPAA rights (access, amendment, accounting of disclosures, etc.), you may contact our designated Privacy Officer.
  Email: guidance@divinealignmentcenter.com (Attn: Privacy Officer)
  Phone: (855) 758-7464 (ask for the Privacy Officer or leave a message regarding a privacy inquiry)
  Mailing Address: Divine Alignment Center, Attn: Privacy Officer, (Please insert office mailing address here)
  *Please include your name and contact information and a brief description of your concern or request. Do not include highly sensitive information in email correspondence; if needed, simply request a call back or meeting for detailed discussions.*
• General Inquiries: For general questions about our services, this website, or non-privacy-specific issues, you can contact us at guidance@divinealignmentcenter.com or call (855) 758-7464. We will direct your question to the appropriate person.
• Reporting a Problem: If you believe your privacy rights have been violated or have a complaint about our privacy practices, you can send us a written complaint to the Privacy Officer at the mailing address or email above. You can also file a complaint with the U.S. Department of Health & Human Services, Office for Civil Rights. We can provide the contact information for the OCR regional office if needed. We support your right to report problems and will not retaliate against anyone for filing a complaint in good faith.

Business Hours: Our administrative office hours are (please insert hours, e.g., Monday-Friday, 9am-5pm). We will strive to respond to any privacy or policy-related inquiries within 2 business days. If you contact us on a weekend or holiday, we will get back to you as soon as possible when office hours resume.

Effective Date Reminder: This Privacy Policy is effective as of May 6, 2025. It remains in effect until superseded by an updated version. We stand by the commitments made in this policy unless we have communicated changes to you in accordance with the “Changes to This Policy” section above.

Thank you for taking the time to read our Privacy Policy. We value the trust you have placed in Divine Alignment Center. Protecting your privacy and providing you with high-quality, compassionate care are our top priorities. We look forward to continuing to serve you on your journey to healing and alignment, with your privacy and security well protected every step of the way.