Confidentiality & Privacy Policy

Applicable in the Commonwealth of Pennsylvania

At our practice, your privacy and confidentiality are of the utmost importance. We are committed to protecting your personal health information in accordance with Pennsylvania law, the Health Insurance Portability and Accountability Act (HIPAA), and standards of ethical care.

Confidentiality in Therapy

The information you share during sessions is confidential and will not be disclosed without your written authorization, except in situations where disclosure is required by law. As licensed mental health professionals in Pennsylvania, we are mandated reporters and must take appropriate action in the following circumstances:

  • Suspected abuse or neglect of a child, dependent adult, or elderly person must be reported immediately to the appropriate protective services or authorities.

  • If you pose a serious threat of harm to another person, we are required to take steps to warn the potential victim and notify law enforcement.

  • If there is a serious risk of harm to yourself, we will make every effort to collaborate with you in ensuring your safety. However, if necessary, we may take additional protective actions without your consent as permitted under Pennsylvania law.

These exceptions are in place to promote safety and uphold our legal and ethical responsibilities.

HIPAA Compliance

We comply with all federal regulations under the Health Insurance Portability and Accountability Act (HIPAA). This includes the secure storage and handling of all health records, as well as your rights to:

  • Access your medical and mental health records

  • Request corrections to your records

  • Know how your information is shared or disclosed

  • Receive a copy of our full HIPAA Notice of Privacy Practices upon request

Your personal health information (PHI) is never shared with outside parties without your explicit written permission, except in the legal exceptions noted above.

Telehealth & Digital Privacy

We offer secure, HIPAA-compliant telehealth services via Doxy.me, a platform designed specifically for healthcare providers. Here’s how we protect your digital privacy:

  • End-to-End Encryption: Your video sessions are encrypted in real time and are never recorded or stored.

  • No Downloads Required: Doxy.me works through your browser, minimizing security risks from apps or software installations.

  • Data Minimization: We do not collect unnecessary data through telehealth sessions. Doxy.me complies with HIPAA, GDPR, and HITECH Act security and privacy standards.

  • Secure Environment: Please ensure that you attend sessions from a private, quiet space to help protect your own confidentiality on your end.

We continually monitor and update our digital practices to align with evolving HIPAA standards and Pennsylvania laws.

If you have any questions about your privacy rights or how your information is protected, we encourage you to ask. Your comfort and trust are central to the therapeutic process.