New Patterns ABA ("we,""us," or "our") is committed to protecting the privacy andconfidentiality of our clients' personal information, in compliance with theHealth Insurance Portability and Accountability Act (HIPAA) and other applicableprivacy laws. This Messaging Privacy Policy ("Policy") describes howwe collect, use, disclose, and protect personal information when you provideyour mobile phone number on our website or through our services to receive textmessages (SMS/MMS) related to ABA therapy services, such as appointmentreminders, account updates, therapy progress notifications, and servicecommunications. This Policy applies only to messaging services and supplementsour general Notice of Privacy Practices.
By providing your mobile phone number andconsenting to receive messages, you agree to the terms of this Policy. If youdo not agree, please do not provide your phone number.
1. Information We Collect
When you opt in to receive text messages:
● Personal Information: We collect your mobilephone number, name, and any other details you provide (e.g., via website formsor client intake).
● Message Interaction Data: We may collect dataabout your interactions, such as message delivery status, response content,opt-in/opt-out timestamps, and device information (e.g., carrier name).
● Protected Health Information (PHI): We willnever send sensitive details (e.g., full treatment notes or diagnoses) via SMS.Standard SMS is not encrypted, so we limit PHI to minimize risks.
We do not collect this informationwithout your explicit consent. Data is collected via secure web forms or directSMS opt-in keywords (e.g., "START").
2. How We Use Your Information
We use the collected information solelyto:
● Deliver therapy-relatedcommunications, including appointment confirmations, reminders, billingupdates, and service alerts.
● Respond to your inquiries orrequests via SMS.
● Improve our messaging services(e.g., analyzing delivery rates for better reliability).
● Comply with legal obligations,such as HIPAA record-keeping.
We will not use your information formarketing or promotional purposes without separate consent. Message frequencyvaries based on your account activity (e.g., 1-4 messages per month forreminders).
3. How We Share Your Information
● No Third-Party Marketing: We do not sell,rent, or share your personal information or PHI with third parties formarketing or advertising.
● Service Providers: Information is shared onlywith trusted, HIPAA-compliant business associates, such as our SMS provider, tofacilitate message delivery. These providers are bound by Business AssociateAgreements (BAAs) requiring them to protect your data with encryption, accesscontrols, and audit logs.
● Legal Requirements: We may discloseinformation if required by law (e.g., court order) or to protect safety (e.g.,emergencies).
● No International Sharing: Data is stored andprocessed in the United States.
4. Data Security and HIPAA Compliance
● Safeguards: We use HIPAA-compliant platformswith end-to-end encryption for stored data, access controls (e.g., unique userIDs), and audit trails to track message access. However, standard SMStransmission is not encrypted, so we warn you of interception risks and obtainyour consent.
● PHI Handling: We follow the HIPAA Privacy andSecurity Rules. PHI is de-identified where possible, and we conduct regularrisk assessments and staff training.
● Data Retention: We retain messaging data(including PHI) for at least 6 years as required by HIPAA, or longer if neededfor treatment or legal purposes. After that, it is securely deleted unlessotherwise required.
● Children's Privacy: For minors receiving ABAservices, consent is obtained from legal guardians. We comply with theChildren's Online Privacy Protection Act (COPPA) where applicable.
No system is 100% secure. You acknowledgerisks like device theft or carrier delays by consenting.
5. Your Rights and Choices
● Opt-Out: Reply "STOP" to any messageto stop receiving texts. We will confirm within 24 hours and delete your opt-indata (except for legal retention).
● Opt-In Again: Reply "START" toresume.
● Access and Correction: Contact us to access,correct, or delete your data (subject to HIPAA limits).
● Assistance: Reply "HELP" for supportor contact our Privacy Officer.
● Withdrawal of Consent: You may revoke consentat any time, but this may limit our ability to communicate urgent therapyupdates.
Your consent is not a condition ofreceiving ABA services.
6. Changes to This Policy
We may update this Policy to reflectlegal changes or service improvements. Changes will be posted on our websitewith the updated effective date. Continued receipt of messages after changesconstitutes acceptance.