Privacy Policy

Our Website, https://centerforocd.com (“Site”), and the software we use collect some personal data from its users (each, a “user”). We collect and process data for the purposes detailed below. This Privacy Policy governs the protocol The Center for OCD is working under a fictitious name and is a licensed DBA for the practice of psychotherapy (“The Center for OCD” “Center for OCD,” “we,” “us,” or “our”) follows in the collection, use, maintenance and disclosure of information collected from users of the Site. This Privacy Policy applies to the Site. You can read more about the Privacy Policy of our Web Host, WordPress.com, here. This details how privacy of visitors, like you, is handled on WordPress.com sites, including this one.

If you are a client of The Center for OCD, a Marriage & Family Therapy is working under a DBA, there are additional rights to privacy to which you are entitled. You can read more about these in the informed consent form that is reviewed and signed at the beginning of treatment. If you have misplaced your copy of this, please feel free to email and ask for another copy.

Your Rights and Legal Information

The California Consumer Privacy Act of 2018 (CCPA) gives consumers more control over the personal information that businesses collect about them and the CCPA regulations provide guidance on how to implement the law. This law secures privacy rights for California consumers, including:

  • The right to know about the personal information a business collects about them and how it is used and shared.
  • The right to delete personal information collected from them (with some exceptions).
  • The right to opt-out of the sale of their personal information (Please note: we do no sell personal information to anyone).
  • The right to non-discrimination for exercising their CCPA rights. This means that you will not receive discriminatory treatment for exercising your rights under the CCPA.
  • The right to be informed about their CCPA rights. This means that businesses must “disclose the consumer’s right to request deletion.”
  • The right to request that a business disclose what personal information they have collected on them in the past twelve months.
  • The right to lodge a complaint with a supervisory authority (click here to be redirected).

The General Data Protection Regulation (GDPR) is a regulation implemented under European Union (EU) law on data protection and privacy in the EU and the European Economic Area (EEA). It also addresses the transfer of personal data outside the EU and EEA areas. The GDPR’s primary aim is to enhance individuals’ control and rights over their personal data and to simplify the regulatory environment for international business. Under GDPR, individuals have certain rights, including:

  1. The right to be informed about the collection and use of their personal data. 
  2. The right of access or right to receive a copy of their personal data, and other supplementary information.
  3. The right to rectification of inaccurate personal data or to completion of incomplete data.
  4. The right to erasure of one’s personal data.
  5. The right to restrict processing of or suppress their personal data.
  6. The right to data portability, i.e. the right to obtain and reuse one’s personal data for their own purposes across different services.
  7. The right to object to the processing of their personal data in certain circumstances. Individuals have a right to stop their data being used for direct marketing. In some cases, sites may be able to continue processing data after an objection is made if they can show that they have a compelling reason for doing so.
  8. Rights in relation to automated decision making (making a decision solely by automated means without any human involvement); and profiling (automated processing of personal data to evaluate specific information about an individual). Profiling can be part of an automated decision-making process. This website does not use either automated individual decision-making or profiling.

The Site is not directed at children under the age of 13. We comply with the Children’s Online Privacy Protection Act (“COPPA”) and do not knowingly permit registration or submission of personally identifiable information by anyone under 13 years of age. This age requirement is posted each time We request personally identifiable information. If You believe information regarding a child under 13 has been submitted, please advise Us in writing and We will delete it. 

What Data and Categories of Data We Collect and How We Collect It

The data that may be collected by this Site are various types of personal and non-personal identification information. Personal identification Information includes any information regarding a natural person, a legal person, an institution or an association, which is, or can be, identified, even indirectly, by reference to any other information, including a personal identification number. We collect personal information from two main categories: Identifiers and Internet Activity. Identifiers include name, email address and IP address. Internet Activity includes information regarding a consumer’s interaction with the Site. Non-personal identification Information collected by the website may include the browser name, the type of computer and technical information about users means of connection to our Site, such as the operating system and the Internet service providers utilized and other similar information.

We collect personal data from Site visitors who provide data directly to us, including names and email addresses. For example, you provide information when you:

  • Submit forms on the Site
  • Ask to join our mailing list
  • Leave a comment

If you contact us via this Site, we cannot guarantee the encryption or security of your Protected Health Information (PHI). Do not include PHI within any comments on this Site or messages sent through this Site. If you include PHI in comments on this Site or in messages sent via our contact forms, it creates no practitioner-client relationship or duty between the Practice and the user, including a duty to respond. If you transmit PHI through our contact forms or write it in comments, we disclaim any and all liability related to such transmission. 

If you are a client of The Center for OCD, you can subscribe to our mailing list on this Site. Please keep in mind that if you choose to comment on the Practice’s blog posts, you do so at your own risk. The Practice will not respond to your comments, and reserves the right to remove, at its sole discretion, any client comments listed on this website. Your comments may result in a breach of confidentiality.  We cannot be held liable if someone identifies you as a client after you take such actions. 

We also collect personal technical data, such as information about cookies. Such personal data can also be generated from technical processes such as contact forms, comments, cookies, analytics, and third party embeds. We may gather personal data about your visit to the Site. For example, we may collect: 

  • The network you use to access the Internet, like domain information.
  • The device that you are using, including the IP address, browser, and operating system. 
  • Which pages you visit while on our Site. 

We use “cookies,” i.e. small text files stored on your device (and maintained by your browser), that often include a randomized unique identifier so that the Site recognizes this cookie. By and large, we use cookies that are considered mandatory or technically necessary to provide the Site and its functionality to you. We also use cookies for Google Analytics, specifically for audience measurement purposes (described below). Please note that we do not use retargeting cookies on our website (e.g., cookies that track you on our Site and across other websites in order to serve you a targeted advertisement) or other cookies that may track your experience on the Site in order to build user profiles. Should our use of cookies change in the future, we will update this Privacy Policy. If you’d like to learn more about how our Web Host, WordPress, uses cookies, you can read their more detailed cookie policy here.

We do not use cookies to get information from your device for purposes unrelated to the site or your interaction with the site. You may stop or restrict cookies on your computer or purge them from your browser by adjusting your web browser preferences. You can consult the operating instructions that apply to your browser for instructions should you wish to do so. Note that if you “turn off,” purge, or disable cookies, although you may still use the site, you may not be able to use all of the features, functions, or services available on the site.

What Do We Use Your Data For?

  • To improve our Site. We always aim to improve our website offerings based on the information and feedback we receive from you.
  • To provide the information you request. If you submit your email through the form on our Site so that you can be kept updated on the ongoings of The Center for OCD, a working under a fictitious name and licensed as a DBA for the practice of psychotherapy you may receive content, surveys or other Site features from us. Please note: if you provide us with your email address via our contact form, we will not send out email updates unless you ask for them independently).If at any time you would like to unsubscribe from receiving future emails, we include unsubscribe instructions at the bottom of each email, or you may contact us via our Site.
  • To personalize user experience. We may use information in the aggregate to understand how our users as a group use the services and resources provided on our Site. For such purposes data are collected for traffic optimization and distribution, analytics, and interaction with external social networks and platforms
  • To provide authorities or relevant individuals with information related to the Site as required by law.
  • To protect our website, our users, and the public. For example, by detecting security incidents; detecting and protecting against malicious, deceptive, fraudulent, or illegal activity; fighting spam; complying with our legal obligations; and protecting the rights and property of our Site and others.
  • For your convenience. For example, if you leave a comment on our Site, you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
  • To fulfill any other purpose for which you provide information.

As a reminder, if you contact us via this Site, we cannot guarantee the encryption or security of your Protected Health Information (PHI). Do not include PHI within any comments on this Site or messages sent through this Site. If you include PHI in comments on this Site or in messages sent via our contact forms, it creates no practitioner-client relationship or duty between the Practice and the user, including a duty to respond. If you transmit PHI through our contact forms or write it in comments, we disclaim any and all liability related to such transmission. 

The collection and transfer of data occurs on one of the following bases, depending on the type of transfer and the surrounding factual situation:

  • You explicitly consent to the collection and transfer.
  • The transfer is necessary to provide sufficient data to comply with your request. This will apply when, for example, you are signing up for our mailing list.
  • The transfer is necessary for the establishment, exercise, or defense of legal claims. This would apply if there developed a dispute between you and The Center for OCD, a working under a fictitious name for the practice of psychotherapy regarding our website services.
  • The transfer is required to produce personal data to legal authorities upon presentation of a subpoena, court order, search warrant, or other legal process.

The use of data for additional purposes by the owner, may in some cases, and for legal purposes, require specific consent by the user or the data subject.

What Third Parties Process Which Data on Our Behalf?

Akismet Anti-Spam

Function: helps keep spam under control by filtering out spam comments–hundreds of millions, every day!

Data processing information: Akismet collects information about visitors who comment on Sites that use Akismet anti-spam service. The information includes the commenter’s IP address, user agent, referrer, and Site URL, along with other information directly provided by the commenter such as their name, username, email address…oh, and the comment itself, of course.

Remember, do not include PHI within any comments on this Site or messages sent through this Site. 

Creative Mail

Function: collects email addresses that users volunteer and is used to send out updates about The Center for OCD, a working under a fictitious name for the practice of psychotherapy.

Data processing information: Creativ.eMail shall process the personal data on behalf of the developer for the purpose, which will include the following processing activities: storage, retrieval, use, disclosure, erasure, destruction and access of the personal data. The duration of the processing shall be for the term of the API Terms and Conditions. The category of data subject is the users and the personal data processed by Creativ.eMail includes and shall be limited to the following categories of data: (i) identification and contact information (such as name, email address, address, title and contact details) of users’ customers and other contacts; (ii) information gathered in connection with enabling the developer to provide offerings to users relating to users’ contacts, including (a) analytics and information about marketing emails sent by Creativ.eMail on behalf of user (including open rates and similar usage data) and (b) device, browser and information related to users’ contacts identified through use of the offerings. The personal data processed by Creativ.eMail may contain special categories of personal data.

Crowdsignal Forms

Function: helps site owners create quizzes, surveys, and polls that fit their brand and vision.

Data processing information: When a visitor completes a poll, quiz, or other type of survey prepared by a user via Crowdsignal.com, Crowdsignal collects the visitor’s responses to those surveys, and other information that the survey owner requires for a poll/quiz/survey response, like an e-mail address. Crowdsignal collects information about visitors who respond to a Crowdsignal survey. The information that they collect includes IP address, browser type, operating system, user agent, and the web page last visited.

Google Analytics

Function: analytics.

Data processing information: Google Analytics collects a lot of data about how people use a website, including:

  • Time of visit, pages visited, and time spent on each page of the webpages
  • Referring site details (such as the URI a user came through to arrive at this Site)
  • Type of web browser
  • Type of operating system (OS)
  • Flash version, JavaScript support, screen resolution, and screen color processing ability
  • Network location and IP address.
  • Document downloads
  • Clicks on links leading to external websites
  • Errors when users fill out forms
  • Clicks on videos
  • Scroll depth
  • Interactions with site-specific widgets.

Google Analytics uses cookies, to obtain high-level “audience measurement” data such as the referral web domain, type of operating system/browser used, date and time of visit, and other information relating to activities on the Site to understand its usage better, analyze trends, and optimize the Site experience. To help ensure such data within Google Analytics cannot be linked back to an identifiable user.

Jetpack

Function: security, performance and marketing tools.

Data processing information: Jetpack collects visitor activities related to the management of the Site, such as login attempts/actions and comment submission and management actions. For more information, please see the Jetpack Privacy Center. Jetpack collects information about a visitor’s interactions with a Site, including the “likes” and “ratings” left by visitors to the Site. Jetpack may determine the approximate location of a visitor’s device from the IP address. Jetpack collects and uses this information to, for example, tally how many people visit their Sites from certain geographic regions. If you’d like, you can read more about our Site Stats feature for WordPress.com sites and Jetpack sites.

Automattic

We use a number of plugins by Automattic. While the individual plugins and the data they collect are described above, you can read their overarchingPrivacy Notice here: https://automattic.com/privacy-notice/

Data Removal, Completion or Updating

You have the right to access your information, to update your information and to provide additional information to complete a previous incomplete submission. You also have the right to request complete deletion of your data. If we receive a valid, verified request from a consumer, we will ensure that you are granted access to your data or that your data will be removed, completed or udpated.

If you would like to access, remove, complete or update your data, please send us your full name and email address in an email to info@centerforocd.com with the subject DATA ACCESS, DATA REMOVAL, DATA COMPLETION or DATA UPDATING, as applicable. We will use the collected information to verify your request and to allow you to access, remove, complete or update your data. You can also send a physical letter with the information to 14271 Jeffery Road #704 Irvine, Ca. 92620 in order to access, remove, complete or update your data.

We do have the right to deny a request if consumers fail to satisfactorily identify themselves or verify their right to access information on behalf of someone. We will keep these denials on file with a detailed description of the reason for the denial. Some exceptions that would permit us to retain the records after your request include:

  1. Transactional reasons
  2. Security reasons
  3. Identifying and fixing errors
  4. Free Speech considerations
  5. CalECPA Compliance
  6. Research for Public Interest reasons
  7. Expected Internal Use
  8. Legal Compliance
  9. Other Internal Uses

If no exception exists, we will permanently and completely erase the personal information on our existing systems with the exception of archived or back-up systems and we will direct service providers to delete their records of your personal information as well.

As a California resident, you also have the right to designate an agent to exercise these rights on your behalf. We may require proof that you have designated the authorized agent to act on your behalf and to verify your identity directly with us. Please contact us at kelley@centerforocd.com for more information if you wish to submit a request through an authorized agent.

How We Protect Your Information

We use appropriate data collection, storage and processing practices and security measures to protect against unauthorized access, alteration, disclosure or destruction of your personal information and data stored on our Site. In the unfortunate event of a data security breach, we will notify users whose personal information may have been breached.

Sharing Your Personal Information

We do not sell or rent personal data to anyone. That said, for users over the age of 18, we may share your basic demographic information (such as your name, IP address, and physical or email address, etc.) with others, such as our contractors, trusted partners and affiliates as necessary to operate our business, and as permitted by law. As detailed above, we do disclose personal information to third parties through the use of plugins. If we share data to perform statistical analysis, send email or postal mail, provide customer support, or arrange for deliveries, such third parties are required to maintain the confidentiality of your information. We do not share personal information with third parties for their direct marketing purposes.

What About Aggregated Data?

We may aggregate (combine) data about visitors, who are over 18 years of age, to the Site in a non-identifiable manner and use it for Our business purposes in a way that is unrelated to your use of the Site. 

  • E.g., we might aggregate data for product development and improvement activities and disclose such aggregated data to third parties. 
  • No personally identifiable information is available or used in this process. 

What About Governmental and Legal Disclosures?

Except as described above, we do not disclose the identities of visitors or users of the Site unless we are required to do so by or, or unless we believe, in good faith, that sharing is necessary:

  • to protect your safety or the safety of others, 
  • to protect our rights, 
  • to investigate fraud, or 
  • to respond to a government request. 

We will respond to any subpoena received from a government agency (i.e., the Securities and Exchange Commission or law enforcement agencies) without prior notice to you. Unless prohibited by law or by a valid court order, we will attempt to notify you of any subpoena received from any other party (i.e., for civil litigation) which requires us to disclose your identity. We will wait ten (10) days, or a lesser amount of time as required by the deadline in the subpoena, before providing the information requested by the subpoena.

What About Do Not Track?

Websites and web applications can track your movement on the web to tailor suggestions based on your interests. We may track your movement through the Site. If you do not want your browsing behavior to be tracked, your web browser allows you to set the Do Not Track (DNT) signal on your browser so that third parties know you do not want to be tracked. We suggest that you read the privacy policies of third party websites to see if those websites track your browsing. Information gathered using tracking technology will be used and disclosed as described in this Privacy Policy, and the privacy policies of the applicable third parties. To find out more about the “Do Not Track” feature, you may visit http://www.allaboutdnt.com.

Third Party Websites

Although we may link to third party websites as part of our own general information provided here, such websites are not maintained by or related to The Center for OCD. By clicking on any affiliate links, you agree that The Center for OCD is not responsible for any content contained on third party sites. The Center for OCD is not responsible for any cookies or other kinds of data collection that might exist on these websites and you should evaluate any third party website terms and conditions to understand their data collection or cookies policies. 

Interaction with External Social Networks and Platforms

Our Site includes links to Facebook, Twitter and Instagram. You can interact with social networks or other external platforms directly from our Site’s pages. The interaction and information obtained by this Site are always subject to the user’s privacy settings for each social network. If a service enabling interaction with social networks is installed it may still collect traffic data for the pages where the service is installed, even when users do not use it.

Depending on your privacy settings, our website may access your social media to post to your profile or share. All of that functionality, however, happens on the external social network or platform side so no personal data is collected on behalf of https://centerforocd.com.

How Your Data is Processed

The data controller processes the data of users in a lawful and proper manner and takes appropriate security measures to prevent unauthorized access, disclosure, modification or unauthorized destruction of the data. Processing is carried out using computers and devices, with organizational methods and logics strictly related to the stated purposes.

In addition to the owner, in some cases, access to the data may be available to external parties (such as third party technical service providers, mail carriers, hosting providers, IT companies, communications agencies).

Where Your Data is Processed

To the fullest extent possible, the data are processed at the headquarters of the data controller in Dana Point, California, United States of America, unless stated otherwise in the rest of this document. We cannot guarantee that all data will be processed in this manner because we do not have ultimate control or direction over how our data is processed. The data controllers also may access and process information from other locations from time to time. We make no representation that the information you provide will always be processed in this way. 

If you are visiting our websites from outside the United States, please be aware that we are located in the United States and that you may be sending information (including personal data) to the United States. That information may be transferred within the United States or back out of the United States to other countries. It is difficult to determine the precise locations to which the contents that may contain Personal Information are transferred. We have data processing agreements in place with our service providers consistent with applicable privacy and data security laws.

How Long We Retain Your Data

The data are kept for the time necessary to perform the service requested by the user, and the user can always ask for their suspension or removal (contact information below).

Changes to this Privacy Policy

The Site reserves the right to make changes to this Privacy Policy at any time by giving notice to its users on this page, and by ensuring protection of the personal information, in accordance with the law, in all cases. It is strongly recommended that Site users review this page often, referring to the date of the last modification listed at the bottom. You acknowledge and agree that it is your responsibility to review this Privacy Policy periodically and become aware of modifications.

Your Acceptance of These Terms

By using this Site, you signify your acceptance of this policy. If you do not agree to this policy, please do not use our Site. Your continued use of the Site following the posting of changes to this policy will be deemed your acceptance of those changes.

Contacting Us

If you have any questions about this Privacy Policy, the practices of this Site, or your dealings with this Site, please contact the data Controller at:

Kelley Franke

Email: info@centerforocd.com

Address: 14271 Jeffery Road #704 Irvine, Ca. 92620

The Privacy Policy was last updated on March 11th, 2022.

For more information about working with a therapist at

The Center for OCD call 949-779-2100

949-779-2100

info@centerforocd.com

©2022 by The Center for OCD.

Disclaimer: The information contained on this website is intended for informational and education purposes only and is not meant to be a replacement for therapy. If you are interested in treatment, you can email us and we will happily provide you with more information.