Eldergreen logo, landscape orientation

Privacy Policy

Last updated: June 9, 2025

1. Introduction

Eldergreen, LLC (“we,” “us,” “our”) is committed to safeguarding client privacy. This Privacy Policy explains what data we collect, why we collect it, how we secure it, and the rights you have over your information.

2. What Information We Collect

  • Personal identifiers (name, email).
  • Intake and session notes you choose to share.
  • Device & usage data when you visit our website (IP address, browser type, interaction logs, cookies).
  • No payment card data – all payments are processed externally.

3. Legal Bases & Purpose of Processing

We process information only when we have a valid reason, such as:
(a) delivering coaching services,
(b) responding to client requests,
(c) ensuring security, or
(d) complying with applicable law.

4. How We Use & Share Information

  • Service delivery. Scheduling sessions, maintaining encrypted session notes, and providing resources.
  • Analytics. We use privacy‑first analytics to understand website performance (only aggregated, de‑identified data).
  • No marketing sales. We never sell or barter client data.
  • Limited disclosure. We disclose data only when required by law, court order, or with your explicit consent.

5. Confidentiality & Security Measures

  • End‑to‑end encryption. All electronic client records are stored using AES‑256 encryption at rest; transmission is protected by TLS 1.2+.
  • Separate credentials. Client files are kept in a HIPAA‑ready cloud vault with multifactor authentication.
  • Administrative safeguards. Devices are password‑protected, regularly patched, and audited.

6. Communication Policy

  • No sensitive data over email, SMS, or voicemail. We will instead direct you to our encrypted client portal for anything personal or clinical.
  • No social‑media disclosures. We do not post or comment publicly about clients or client experiences in any form.

7. Data Retention & Your Rights

  • Retention. Unless local regulations require longer storage, practice notes are kept for 7 years after your final session, then securely deleted.
  • Right to erasure. You may request deletion (“purge”) of all personal data at any time; we will comply unless legal obligations require retention.
  • Access & correction. You may request a copy of your data or correction of inaccuracies.
  • Opt‑out of analytics cookies via our cookie banner.

8. Payments

All payments are handled by a PCI‑DSS‑compliant third‑party processor (currently Stripe). We never store your credit‑card or payment method details.

9. Children’s Privacy

Our services are intended for adults 18+. We do not knowingly collect information from minors.

10. International Users

While our practice is based in the United States, we welcome global visitors. Data may be stored on servers outside your jurisdiction; we will protect it under this Policy.

11. Changes to This Policy

We may update this Policy periodically. Notice of material changes will appear on this page with a revised “Last updated” date.

12. Contact

For questions, requests, or concerns, please email support@eldergreenintegration.com