Privacy Policy

Type of website: Healthcare-related private practice

Effective date: 4/30/2025

www.lighthouseslp.com (the "Site") is owned and operated by Lighthouse Speech Therapy, PLLC. Lighthouse Speech Therapy, PLLC can be contacted at:

admin@lighthouseslp.com

(815) 200-9558

203 West Main Street Rockton, IL 61072

Purpose

The purpose of this privacy policy (this "Privacy Policy") is to inform users of our Site of the following: The personal data we will collect; Use of collected data; Who has access to the data collected; The rights of Site users; and The Site's cookie policy. This Privacy Policy applies in addition to the terms and conditions of our Site.

Consent

By using our Site users agree that they consent to:

1. The conditions set out in this Privacy Policy; and

2. The collection, use, and retention of the data listed in this Privacy Policy.

Personal Data We Collect

We only collect data that helps us achieve the purpose set out in this Privacy Policy. We will not collect any additional data beyond the data listed below without notifying you first.

Data Collected Automatically

When you visit and use our Site, we may automatically collect and store the following information: Clicked links; and Content viewed.

Data Collected in a Non-Automatic Way

We may also collect the following data when you fill out a patient inquiry form, which includes a voluntary text box to include relevant information regarding your therapy needs.

1. First and last name;

2. Age;

3. Date of birth;

4. Email address; and

5. Phone number

How We Use Personal Data

Data collected on our Site will only be used for the purposes specified in this Privacy Policy or indicated on the relevant pages of our Site. We will not use your data beyond what we disclose in this Privacy Policy. The data we collect automatically is used for tracking analytics and site traffic, as well as to inform our therapy practices and select treatment best suited to your needs.

Who We Share Personal Data With

You may voluntarily choose to include health-related information, including but not limited to medical history, appointments, diagnoses, treatments, and other personal health data when filling out our patient inquiry form. This data is protected under the Health Insurance Portability and Accountability Act of 1996 (HIPAA), and we are committed to ensuring the confidentiality and security of this information. For more information regarding HIPAA compliancy, please visit https://www.hhs.gov/hipaa/for-professionals/security/laws-regulations/index.html.

Other Disclosures

We will not sell or share your data with other third parties, except in the following cases:

1. If the law requires it;

2. If it is required for any legal proceeding;

3. To prove or protect our legal rights; and

4. To buyers or potential buyers of this company in the event that we seek to sell the company.

If you follow hyperlinks from our Site to another Site, please note that we are not responsible for and have no control over their privacy policies and practices.

How Long We Store Personal Data

The HIPAA Security Rule mandates that all PHI records, including those related to compliance, must be retained for a minimum of six years in the state of Illinois. You will be notified if your data is kept for longer than this period.

How We Protect Your Personal Data

At Lighthouse Speech Therapy, PLLC, we are committed to maintaining the confidentiality and security of your health information. We implement a range of security measures to protect your data, particularly HIPAA-protected information and treatment-related records. Our security practices include the following:

Google Workspace and Signed BAA: We use Google Workspace to facilitate email communication and document storage. Google Workspace is compliant with HIPAA regulations, and we have a signed Business Associate Agreement (BAA) in place with Google to ensure that any HIPAA-protected information shared via email or stored in our Google Workspace accounts remains secure.

Two-Factor Authentication (2FA): To further safeguard access to our systems, we require two-factor authentication (2FA) for all staff members accessing sensitive information. This additional layer of security helps prevent unauthorized access and ensures that only authorized personnel can view or manage your health data.

HIPAA-Protected Parent Portal on Jane App: All HIPAA-protected information and treatment-related details are securely exchanged through the HIPAA-protected Parent Portal on Jane App, our trusted medical records system. Jane App utilizes advanced encryption and security measures to ensure the confidentiality and integrity of all data exchanged between us and our clients. This platform is fully compliant with HIPAA and ensures that all communications and records are handled securely. We take the security of your personal health information seriously and continuously review and update our security practices to meet the highest industry standards. While we take all reasonable precautions to ensure that user data is secure and that users are protected, there always remains the risk of harm. The Internet as a whole can be insecure at times and therefore we are unable to guarantee the security of user data beyond what is reasonably practical.

How to Access, Modify, Delete, or Challenge the Data Collected

If you would like to know if we have collected your personal data, how we have used your personal data, if we have disclosed your personal data and to who we disclosed your personal data, or if you would like your data to be deleted or modified in any way, please contact our privacy officer here:

Stefanie McWilliams M.S., CCC-SLP

smcwilliams@lighthouseslp.com

(815) 200-9558

203 W Main Street Rockton, IL 61072

How to Opt-Out of Data Collection, Use or Disclosure

In addition to the method(s) described in the How to Access, Modify, Delete, or Challenge the Data Collected section, we provide the following specific opt-out methods for the forms of collection, use, or disclosure of your personal data specified below:

1. You can opt-out of the use of your personal data for marketing emails or SMS messaging. You can opt-out by updating your email or SMS preferences under "Your Account" through our Jane App Parent Portal.

Cookie Policy

A cookie is a small file, stored on a user's hard drive by a website. Its purpose is to collect data relating to the user's browsing habits. You can choose to be notified each time a cookie is transmitted. You can also choose to disable cookies entirely in your internet browser, but this may decrease the quality of your user experience. We do not use cookies on our Site.

Modifications

This Privacy Policy may be amended from time to time in order to maintain compliance with the law and to reflect any changes to our data collection process. When we amend this Privacy Policy we will update the "Effective Date" at the top of this Privacy Policy. We recommend that our users periodically review our Privacy Policy to ensure that they are notified of any updates. If necessary, we may notify users by email of changes to this Privacy Policy.

Contact Information

If you have any questions, concerns or complaints, you can contact our privacy officer,

Stefanie McWilliams M.S., CCC-SLP, at:

smcwilliams@lighthouseslp.com

(815) 200-9558

203 W Main Street Rockton, IL 61072