🔒 Privacy Policy – Canyon Brook Clinic LLC

🔒 Privacy Policy – Canyon Brook Clinic LLC

Last Updated [6/2025]

Canyon Brook Clinic LLC (“we,” “our,” or “us”) values your privacy. This Privacy Policy explains how we collect, use, and protect your information when you visit our website or use our therapy services.

Minors

We do not provide services or sell products to children. However, we may sell products to adults for use by children. Regardless of the intended end user of our products, only adults should purchase anything from our website. If a product we offer is legal only for adults to use or possess, no adult should purchase the product for illegal use or possession by a minor.

If you are less than 18 years old, you may use our website only with the permission, active involvement, and supervision of an adult parent or legal guardian. If you are a minor, please do not provide us or other website visitors with any personal information.

1. Information We Collect

We may collect the following types of information:

Log information: Like most online service providers, we collect information that web browsers, mobile devices, and servers typically make available, including the browser type, IP address, unique device identifiers, language preference, referring site, the date and time of access, operating system, and mobile network information. We collect log information when you use our Services — for example, when you create or make changes to your website on WordPress.com.
Personal Identifiable Information (PII): Name, email, phone number, address.
Health Information (PHI): Medical history, mental health conditions, treatment records.
Technical Data: IP address, browser type, device information, and cookies.
Jetpack Site Activity: We collect visitor activities related to the management of the Site, such as login attempts/actions and comment submission and management actions. For more information, please see the Jetpack Privacy Center.
Jetpack Site Activity: We collect visitor activities related to the management of the Site, such as login attempts/actions and comment submission and management actions. For more information, please see the Jetpack Privacy Center.
Other Information Provided by Our Users
We also collect any other information that our Users provide to us about visitors to their Sites. For example, a User may upload a directory or other information about Site visitors and customers to the “backend” administrative platform for managing the Site.

2. How We Use Your Information

We use your data to:

To provide our Services. For example, to set up and maintain your account, enroll you in our electronic management system while maintaining HIPPA laws.
To ensure quality, maintain safety, and improve our Services. For example, by providing automatic upgrades and new versions of our Services. Or, for example, by monitoring and analyzing how users interact with our Services so we can create new features that we think our users will enjoy and that will help them create and manage websites more efficiently or make our Services easier to use.
To market our Services and measure, gauge, and improve the effectiveness of our marketing. For example, by targeting our marketing messages to groups of our users (like those who have a particular plan with us or have been users for a certain length of time), advertising our Services, analyzing the results of our marketing campaigns (like how many people purchased a paid plan after receiving a marketing message), and understanding and forecasting user retention.
To protect our Services, our users, and the public. For example, by detecting security incidents; detecting and protecting against malicious, deceptive, fraudulent, or illegal activity; fighting spam; complying with our legal obligations; and protecting the rights and property of Canyon Brook Clinic LLC and others, which may result in us, for example, declining a transaction or terminating Services.
To fix problems with our Services. For example, by monitoring, debugging, repairing, and preventing issues.
To customize the user experience. For example, to personalize your experience by serving you relevant notifications and advertisements for our Services, recommending content through our Reader post suggestions, and providing new essays and stories through Longreads for your reading pleasure.
To communicate with you. For example, by emailing you to ask for your feedback, share tips for getting the most out of our products, or keep you up to date on Canyon Brook Clinic LLC; texting you to verify your payment; or calling you to share offers and promotions that we think will be of interest to you. If you don’t want to hear from us, you can opt out of marketing communications at any time. (If you opt out, we’ll still send you important updates relating to your account.)

3. HIPAA Compliance

Canyon Brook Clinic LLC complies with the Health Insurance Portability and Accountability Act (HIPAA). We protect your Protected Health Information (PHI) through secure storage, transmission, and limited access.

4. Sharing Information

We do not sell your data. We may share information:

Legal and regulatory requirements: We may disclose information about you in response to a subpoena, court order, or other governmental request. For more information on how we respond to requests for information about WordPress.com users, please see our Legal Guidelines. Additionally, if you have a domain registered with WordPress.com, we may share your information to comply with the Internet Corporation for Assigned Names and Numbers’ (ICANN) regulations, rules, or policies. For example, your information relating to your domain registration may be available in the WHOIS database, or we may be required to share your information with ICANN-approved Dispute Resolution Service Providers. Please see our Domain Registrations and Privacy support document for more details.
With your consent: We may share and disclose information with your consent or at your direction. For example, we may share your information with third parties when you authorize us to do so, like when you connected your site to a social media service through our Publicize feature.
Business transfers: In connection with any merger, sale of company assets, or acquisition of all or a portion of our business by another company, or in the unlikely event that Canyon Brook Clinic goes out of business or enters bankruptcy, user information would likely be one of the assets that is transferred or acquired by a third party. If any of these events were to happen, this Privacy Policy would continue to apply to your information and the party receiving your information may continue to use your information, but only consistent with this Privacy Policy.

5. Cookies and Tracking

We may use cookies for website performance and analytics. You can adjust browser settings to block cookies.

6. How Long We Keep Information

We generally discard information about you when it’s no longer needed for the purposes for which we collect and use it — described in the section above on How and Why We Use Information — and we’re not legally required to keep it.

For example, we keep web server logs that record information about a visitor to one of Canyon Brook Clinic’s websites, like the visitor’s IP address, browser type, and operating system, for approximately 30 days. We retain the logs for this period of time in order to, among other things, analyze traffic to Canyon Brook Clinic’s websites and investigate issues if something goes wrong on one of our websites.

As another example, when you delete a post, page, or comment from your WordPress.com site, it stays in your Trash folder for thirty days in case you change your mind and would like to restore that content, because starting from scratch is no fun. After the thirty days are up, the deleted content may remain on our backups and caches until purged.

If you are a job applicant, we will keep your personal data during the application process, and for a certain period thereafter. To determine that period, we take into account a number of factors, like our legal and regulatory obligations (such as equal opportunity obligations) and whether we may need to retain personal data for internal business purposes like analyzing our applicant pool.

Data Retention

We will keep your data for as long as we need it to provide you with products and services, comply with applicable law, resolve any disputes between us or with third parties, and to enforce any contracts between us.

California Privacy Rights

If you are a California resident and our customer, Cal. Civ. Code § 1798.83 permits you to request certain information about our disclosure of personal information to third parties for their direct marketing purposes. To request this information, please send an email to Loretta@canyonb.com or write us at the following address:

Canyon Brook Clinic
5441 S Macadam Ave #4633
Portland, OR 97239
USA

If you reside in the State of California, you may have certain privacy rights under the California Consumer Privacy Act of 2018, Cal. Civ. Code § 1798.100 to § 1798.199 (“CaCPA”). However, the CaCPA does not apply to us for one or more of the following reasons: (1) we are a small or medium-sized enterprise (“SME”) that is not a “business” as such term is defined in Subsection 1798.140(c) of the CaCPA; and (2) other laws apply to us that conflict with and/or supersede the CaCPA.

Even though we do not have a legal obligation to do so, we may respond to your requests made per the CaCPA. However, these voluntary responses are not a waiver of our legal rights and obligations under the laws of Arizona and USA or the arbitration provisions found within our website’s Terms and Conditions of Use.

European Union Privacy Rights

If you reside in the European Union, you may have certain privacy rights under Regulation (EU) 2016/679, the General Data Protection Regulation (“GDPR”), to the extent the GDPR does not conflict with the laws of Arizona and USA. Even if we do not have a legal obligation to do so, we may respond to your requests made per the GDPR. However, voluntary responses are not a waiver of our legal rights and obligations under the laws of Arizona and USA or the arbitration provisions found within our website’s Terms and Conditions of Use.

Small Or Medium-Sized Enterprise Status

We are a small or medium-sized enterprise (“SME”). This means that because of the size of our business, to the extent (if any) the GDPR governs our relationship with you, some of GDPR’s obligations do not apply because we are an SME.

How To Make A Request

To make a GDPR request, please send an email to Loretta@canyon.com or write us at the following address:

Canyon Brook Clinic
5441 S Macadam Ave #4633
Portland, OR 97239
USA

We will respond within thirty (30) days of receipt of your request.

Requests To Access Personal Data

If we grant your request to access personal data, we will: (1) confirm whether or not we are processing your personal data; (2) provide you with a copy of any of your personal data that we possess; and (3) provide you with information about how we process such data (e.g. purposes, categories, recipients, etc.).

Requests To Delete Data

If you request that we delete your personal data that we possess, we will do so unless: (1) the data is needed to exercise the right of freedom of expression; (2) we have a legal obligation to keep the data; (3) we must keep the data for reasons of public interest; or (4) the data has been processed so that it is anonymized.

Any personal data we processed unlawfully will be deleted. If you were a minor when we collected the personal data, we will delete the data upon request.

If we believe any third parties have acquired your personal data through us, we will take reasonable steps to inform them that you have requested erasure of such data.

Objections To Processing Of Personal Data

If your request is an objection to the processing of your personal data for directing marketing purposes, we will cease using your data for such purposes.

As a general rule, we will comply with objections to processing personal data except: (1) where it is not technically or commercially feasible to do so; or (2) we have a legal obligation that overrides your individual rights and freedoms.

Portability Requests

If we collected personal data from you because of a contract between us or based on your consent, and we processed that data by automated means (in structured machine-readable format), you can request that data be transmitted by us to another company or organization.

We will provide such data to the recipient third party in a commonly used open format electronic file (e.g. CSV, JSON, XML, etc.).

Denied Requests

If we reject your request, we will provide you with the reason(s) for doing so. You may then choose to file a complaint with the Data Protection Authority and request a judicial remedy to the extent such a request is not in conflict with the laws of laws of Arizona and USA or the arbitration provisions of our website’s Terms and Conditions of Use).

Processing Fees

As a general rule, there is no fee for processing your GDPR request. However, we reserve the right to refuse your request or charge a reasonable fee for processing it if the request is manifestly unfounded or excessive. For example, it would be excessive to make a repetitive second request to access your personal data one month after we provided you with the data from a prior request.

Automated Processing

We may make decisions through automated processing (e.g. algorithms) of personal data that are legally binding or significantly affect you.

Any such automated decision-making is done per your express consent or because it is necessary for reasons of substantial public interest under applicable law.

Such an automated decision may be made based on relevant law. However, if the decision is made for other reasons, we will inform you of the process’ logic and potential consequences of the decision. To the extent that the GDPR does not conflict with the laws of Arizona and USA or the arbitration provisions found within our website’s Terms and Conditions of Use, you may also have a right to obtain human intervention and contest the automated decision.

Force Majeure

We, our principals, employees, and agents shall not be liable for failure to perform any of our obligations under this policy during any period in which we cannot perform due to fire, earthquake, flood, or other natural disaster, epidemic, pandemic, explosion, casualty, war, terrorism, embargo, riot, civil disturbance, act of public enemy, act of God, or the intervention of any government authority, or similar cause beyond our control.

Policy Changes

The terms of this privacy policy may change from time to time. If such changes are made, we will notify you by a notice posted on our website’s home page of the changes that have been made. If you disagree with the changes that have been made, please contact us (by email, using a website contact form, or in writing by mail), and any changes made to this policy will not apply to information we have collected from you prior to making the changes.

By continuing to access our website after changes to this privacy policy go into effect, you are agreeing to be legally bound by the revised policy.

If you are concerned about the topic covered by this website privacy policy, you should read it each time before you use our website.

Questions or Concerns

Any questions or concerns about this website privacy policy should be brought to our attention by sending an email to Loretta@canyonb.com and providing us with information relating to your concern.

You may also mail your concerns to us at the following address:

Canyon Brook Clinic
5441 S Macadam Ave #4633
Portland, OR 97239
USA

7. Your Rights

You have the right to:

Withdraw consent (where applicable)

8. Data Security

While no online service is 100% secure, we work very hard to protect information about you against unauthorized access, use, alteration, or destruction, and take reasonable measures to do so. We monitor our Services for potential vulnerabilities and attacks. We use encryption, firewalls, and secure third-party platforms to protect your data.

9. Contact Us

If you have questions about this policy, please contact:
📧 Lorett@canyonb.com
📍 Canyon Brook Clinic
5441 S Macadam Ave #4633
Portland, OR 97239
USA

📜 Terms and Conditions – Canyon Brook Clinic LLC

Effective Date: [6/2025]

These Terms and Conditions govern your use of the Canyon Brook Clinic LLC website and therapy services. By accessing our website or booking services, you agree to these terms.

1. Services

We offer therapy and wellness services, which may include in-person and telehealth sessions.

2. Eligibility

Services are intended for users 18 years or older. Minors may be seen with parental or guardian consent.

3. Intellectual Property

All content on this site (text, graphics, logos) is owned by Canyon Brook Clinic LLC and protected by copyright law.

4. Limitation of Liability

Our services do not guarantee results. We are not liable for any indirect or incidental damages resulting from use of our services or website.

⚠️ Disclaimer – Canyon Brook Clinic LLC

1. Not Medical Advice

The content on our website is for informational purposes only and does not constitute medical or mental health advice. Always consult a qualified professional.

2. No Emergency Services

We do not provide emergency care.
If you are in crisis or in danger, call 911 or go to the nearest emergency room.

3. No Client Relationship via Website

Using this website or contacting us via forms does not establish a therapist-client relationship until formal intake and consent procedures are completed.