Privacy Policy:

Please read this Privacy Policy carefully before using this Website.

Privacy Policy Consent

The Website and its Content is owned by Kelsey Torgerson, LCSW owner and DBA Compassionate Counseling St. Louis, LLC (“Company”, “we”, or “us”). The term “you” refers to the user or viewer of our Website (“Website”).

This Privacy Policy describes how we collect, use, process and distribute your information, including Personal Data (as defined below) used to access this Website. We will not use or share your information with anyone except as described in this Privacy Policy. The use of information collected through our Website shall be limited to the purposes under this Privacy Policy, and also our Terms of Use if you’re a client or customer.

Please read this Privacy Policy carefully. We reserve the right to change this Privacy Policy on the Website at any time without notice. In the event of a material change, we will let you know via email and / or a prominent notice on our Website.

Use of any personal information or contribution that you provide to us, or which is collected by us on or through our Website or its content is governed by this Privacy Policy.  By using our Website or its content, you consent to this Privacy Policy, whether or not you have read it. 

Information We May Collect

We collect personal information from you so that we can provide you with a positive experience when utilizing our Website or content.  We will only collect the minimum amount of information necessary for us to fulfill our obligation to you.  We may collect:

  1. A name and an email address so we can deliver our newsletter to you - you would be affirmatively consenting to this by providing this information to us in our contact forms.

  2. Billing information including name, address and credit card information so that we can process payment to deliver our products or services to you under our contractual obligation.

  3. A name and an email address if you complete our contact form with a question. We may send you marketing emails with either your consent or if we believe we have a legitimate interest to contact you based on your contact or question.

  4. Information from you from a co-branded offer. In this case, we will make clear as to who is collecting the information and whose privacy policy applies. If both / all parties are retaining the information you provide, this will also be made clear, as will links to all privacy policies.

Please note that the information above (“Personal Data”) that you are giving to us is voluntary, and by providing this information to us you are giving consent for us to use, collect and process this Personal Data. You are welcome to opt-out or request for us to delete your Personal Data at any point by contacting us at help@mallorygrimste.com.

If you choose not to provide us with certain Personal Data, you may not be able to participate in certain aspects of our Website or Content.

Other Information We May Collect

1.      Anonymous Data Collection and Use

To maintain our Website’s high quality, we may use your IP address to help diagnose problems with our server and to administer the Website by identifying which areas of the Website are most heavily used, and to display content according to your preferences. Your IP address is the number assigned to computers connected to the Internet. This is essentially "traffic data" which cannot personally identify you, but is helpful to us for marketing purposes and for improving our services. Traffic data collection does not follow a user’s activities on any other websites in any way. Anonymous traffic data may also be shared with business partners and advertisers on an aggregate basis.

2.      Use of "Cookies"

We may use the standard "cookies" feature of major web browsers. We do not set any personally identifiable information in cookies, nor do we employ any data-capture mechanisms on our Website other than cookies. You may choose to disable cookies through your own web browser’s settings. However, disabling this function may diminish your experience on our Website and some features may not work as intended.

What We Do with Information We Collect

 1.      Contact You

We may contact you with information that you provide to us based on these lawful grounds for processing:

a) Consent. We may contact you if you give us your clear, unambiguous, affirmative consent to contact you.

b) Contract.  We will contact you under our contractual obligation to deliver goods or services you purchase from us.

c) Legitimate Interest.  We may contact you if we feel you have a legitimate interest in hearing from us.  For example, if you sign up for a webinar, we may send you marketing emails based on the content of that webinar.  You will always have the option to opt out of any of our emails.

 2.      Process Payments

We will use the Personal Data you give to us in order to process your payment for the purchase of goods or services under a contract. We only use third party payment processors that take the utmost care in securing data and comply with the GDPR. 

3.      Targeted Social Media Advertisements

We may use the data you provide to us to run social media advertisements and / or create look-alike audiences for advertisements.

4.      Share with Third Parties

We may share your information with trusted third parties such as our newsletter provider in order to contact you via email, or our merchant accounts to process payments, and Google / social media accounts in order to run advertisements and our affiliates.

Viewing by Others

Note that whenever you voluntarily make your Personal Data available for viewing by others online through this Website or its content, it may be seen, collected and used by others, and therefore, we cannot be responsible for any unauthorized or improper use of the information that you voluntarily share (i.e., sharing a comment on a blog post, posting in a Facebook group that we manage, sharing details on a group coaching call, etc.).

Submission, Storage, Sharing and Transferring of Personal Data

Personal Data that you provide to us is stored internally or through a data management system. Your Personal Data will only be accessed by those who help to obtain, manage or store that information, or who have a legitimate need to know such Personal Data (i.e., our hosting provider, newsletter provider, payment processors or team members).

It is important to note that we may transfer data internationally. For users in the European Union, please be aware that we transfer Personal Data outside of the European Union. By using our Website and providing us with your Personal Data, you consent to these transfers in accordance with this Privacy Policy.

Data Retention

We retain your Personal Data for the minimum amount of time necessary to provide you with the information and/or services that you requested from us. We may include certain Personal Data for longer periods of time if necessary for legal, contractual and accounting obligations.

Confidentiality

We aim to keep the Personal Data that you share with us confidential. Please note that we may disclose such information if required to do so by law or in the good-faith belief that: (1) such action is necessary to protect and defend our rights or property or those of our users or licensees, (2) to act as immediately necessary in order to protect the personal safety or rights of our users or the public, or (3) to investigate or respond to any real or perceived violation of this Privacy Policy or of our DisclaimerTerms and Conditions, or any other Terms of Use or agreement with us.

Passwords

To use certain features of the Website or its content, you may need a username and password. You are responsible for maintaining the confidentiality of the username and password, and you are responsible for all activities, whether by you or by others, that occur under your username or password and within your account. We cannot and will not be liable for any loss or damage arising from your failure to protect your username, password or account information. If you share your username or password with others, they may be able to obtain access to your Personal Data at your own risk.

You agree to notify us immediately of any unauthorized or improper use of your username or password or any other breach of security. To help protect against unauthorized or improper use, make sure that you log out at the end of each session requiring your username and password.

We will use our best efforts to keep your username and password(s) private and will not otherwise share your password(s) without your consent, except as necessary when the law requires it or in the good faith belief that such action is necessary, particularly when disclosure is necessary to identify, contact or bring legal action against someone who may be causing injury to others or interfering with our rights or property.

How You Can Access, Update or Delete Your Personal Data

You have the right to:

  1. Request information about how your Personal Data is being used and request a copy of what Personal Data we use.

  2. Restrict processing if you think the Personal Data is not accurate, unlawful, or no longer needed.

  3. Rectify or erase Personal Data and receive confirmation of the rectification or erasure. (You have the “right to be forgotten”).

  4. Withdraw your consent at any time to the processing of your Personal Data.

  5. Lodge a complaint with a supervisory authority if you feel we are using your Personal Data unlawfully.

  6. Receive Personal Data portability and transference to another controller without our hindrance.

  7. Object to our use of your Personal Data.

  8. Not be subject to an automated decision based solely on automatic processing, including profiling, which legally or significantly affects you.

Unsubscribe

You may unsubscribe from our e-newsletters or updates at any time through the unsubscribe link at the footer of all email communications. If you have questions or are experiencing problems unsubscribing, please contact us at help@mallorygrimste.com.

Security

We take commercially reasonable steps to protect the Personal Data you provide to us from misuse, disclosure or unauthorized access. We only share your Personal Data with trusted third parties who use the same level of care in processing your Personal Data as we do. That being said, we cannot guarantee that your Personal Data will always be secure due to technology or security breaches. Should there be a data breach of which we are aware, we will inform you immediately.

Anti-Spam Policy

We have a no spam policy and provide you with the ability to opt-out of our communications by selecting the unsubscribe link at the footer of all e-mails. We have taken the necessary steps to ensure that we are compliant with the CAN-SPAM Act of 2003 by never sending out misleading information. We will not sell, rent or share your email address.

Third Party Websites

We may link to other websites on our Website. We have no responsibility or liability for the content and activities of any other individual, company or entity whose website or materials may be linked to our Website or its content, and thus we cannot be held liable for the privacy of the information on their website or that you voluntarily share with their website. Please review their privacy policies for guidelines as to how they respectively store, use and protect the privacy of your Personal Data.

Children’s Online Privacy Protection Act Compliance

We do not collect any information from anyone under 18 years of age in compliance with COPPA (Children’s Online Privacy Protection Act) and the GDPR (General Data Protection Regulation of the EU). Our Website and its content is directed to individuals who are at least 18 years old or older.

Notification of Changes

We may use your Personal Data, such as your contact information, to inform you of changes to the Website or its content, or, if requested, to send you additional information about us. We reserve the right, at our sole discretion, to change, modify or otherwise alter our Website, its content and this Privacy Policy at any time. Such changes and/or modifications shall become effective immediately upon posting our updated Privacy Policy. Please review this Privacy Policy periodically. Continued use of any of information obtained through or on the Website or its content following the posting of changes and/or modifications constituted acceptance of the revised Privacy Policy. Should there be a material change to our Privacy Policy, we will contact you via email or by a prominent note on our Website.

Data Controller and Processors

We are the data controllers as we are collecting and using your Personal Data.  We use trusted third parties as our data processors for technical and organizational purposes, including for payments and email marketing. We use reasonable efforts to make sure our data processors are GDPR- compliant.

If you have any questions about this Privacy Policy, please contact us at kelsey@compassionatecounselingstl.com or 8000 Bonhomme Ave. Suite 412, Clayton, MO 63105, USA. 


Last Updated: March 2021

NPP for Current Clients:

NOTICE OF PRIVACY PRACTICES FOR THERAPY CLIENTS OF COMPASSIONATE COUNSELING ST. LOUIS (as stated, use of this website is not intended as therapy, and the NPP is only relevant for clients receiving therapeutic care from the therapists of Compassionate Counseling St. Louis, LLC)

THIS NOTICE DESCRIBES HOW HEALTH INFORMATION MAY BE USED AND DISCLOSED AND HOW YOU CAN GET ACCESS TO THIS INFORMATION FOR THERAPY CLIENTS. PLEASE REVIEW IT CAREFULLY.

I. OUR PLEDGE REGARDING HEALTH INFORMATION:

We understand that health information about you and your health care is personal. We are committed to protecting health information about you. We create a record of the care and services you receive from us. We need this record to provide you with quality care and to comply with certain legal requirements. This notice applies to all of the records of your care generated by this mental health care practice. This notice will tell you about the ways in which we may use and disclose health information about you. We also describe your rights to the health information we keep about you, and describe certain obligations we have regarding the use and disclosure of your health information. We are required by law to:

• Make sure that protected health information (“PHI”) that identifies you is kept private. • Give you this notice of our legal duties and privacy practices with respect to health information. • Follow the terms of the notice that is currently in effect. • We can change the terms of this Notice, and such changes will apply to all information we have about you. The new Notice will be available upon request.

II. HOW WE MAY USE AND DISCLOSE HEALTH INFORMATION ABOUT YOU:

The following categories describe different ways that we use and disclose health information. For each category of uses or disclosures we will explain what we mean and try to give some examples. Not every use or disclosure in a category will be listed. However, all of the ways we are permitted to use and disclose information will fall within one of the categories.

For Treatment Payment, or Health Care Operations: Federal privacy rules (regulations) allow health care providers who have direct treatment relationship with the patient/client to use or disclose the patient/client’s personal health information without the patient’s written authorization, to carry out the health care provider’s own treatment, payment or health care operations. We may also disclose your protected health information for the treatment activities of any health care provider. This too can be done without your written authorization. For example, if a clinician were to consult with another licensed health care provider about your condition, we would be permitted to use and disclose your personal health information, which is otherwise confidential, in order to assist the clinician in diagnosis and treatment of your mental health condition.

Disclosures for treatment purposes are not limited to the minimum necessary standard. Because therapists and other health care providers need access to the full record and/or full and complete information in order to provide quality care. The word “treatment” includes, among other things, the coordination and management of health care providers with a third party, consultations between health care providers and referrals of a patient for health care from one health care provider to another.

Lawsuits and Disputes: If you are involved in a lawsuit, we may disclose health information in response to a court or administrative order. We may also disclose health information about your child in response to a subpoena, discovery request, or other lawful process by someone else involved in the dispute, but only if efforts have been made to tell you about the request or to obtain an order protecting the information requested.

III. CERTAIN USES AND DISCLOSURES REQUIRE YOUR AUTHORIZATION:

  1. Psychotherapy Notes. We do keep “psychotherapy notes” as that term is defined in 45 CFR § 164.501, and any use or disclosure of such notes requires your Authorization unless the use or disclosure is:

    a. For our use in treating you.

    b. For our use in training or supervising mental health practitioners to help them improve their skills in group, joint, family, or individual counseling or therapy.

    c. For our use in defending myself in legal proceedings instituted by you.

    d. For use by the Secretary of Health and Human Services to investigate our compliance with HIPAA.

    e. Required by law and the use or disclosure is limited to the requirements of such law.

    f. Required by law for certain health oversight activities pertaining to the originator of the psychotherapy notes.

    g. Required by a coroner who is performing duties authorized by law.

    h. Required to help avert a serious threat to the health and safety of others.

  2. Marketing Purposes. Compassionate Counseling St. Louis will not use or disclose your PHI for marketing purposes.

  3. Sale of PHI. Compassionate Counseling St. Louis will not sell your PHI in the regular course of our business.

IV. CERTAIN USES AND DISCLOSURES DO NOT REQUIRE YOUR AUTHORIZATION. Subject to certain limitations in the law, we can use and disclose your PHI without your Authorization for the following reasons:

  1. When disclosure is required by state or federal law, and the use or disclosure complies with and is limited to the relevant requirements of such law.

  2. For public health activities, including reporting suspected child, elder, or dependent adult abuse, or preventing or reducing a serious threat to anyone’s health or safety.

  3. For health oversight activities, including audits and investigations.

  4. For judicial and administrative proceedings, including responding to a court or administrative order, although my preference is to obtain an Authorization from you before doing so.

  5. For law enforcement purposes, including reporting crimes occurring on my premises.

  6. To coroners or medical examiners, when such individuals are performing duties authorized by law.

  7. For research purposes, including studying and comparing the mental health of patients who received one form of therapy versus those who received another form of therapy for the same condition.

  8. Specialized government functions, including, ensuring the proper execution of military missions; protecting the President of the United States; conducting intelligence or counter-intelligence operations; or, helping to ensure the safety of those working within or housed in correctional institutions.

  9. For workers' compensation purposes. Although our preference is to obtain an Authorization from you, we may provide your PHI in order to comply with workers' compensation laws.

  10. Appointment reminders and health related benefits or services. We may use and disclose your PHI to contact you to remind you that you have an appointment with us. We may also use and disclose your PHI to tell you about treatment alternatives, or other health care services or benefits that we offer.

V. CERTAIN USES AND DISCLOSURES REQUIRE YOU TO HAVE THE OPPORTUNITY TO OBJECT.

  1. Disclosures to family, friends, or others. We may provide your PHI to a family member, friend, or other person that you indicate is involved in your care or the payment for your health care, unless you object in whole or in part. The opportunity to consent may be obtained retroactively in emergency situations.

VI. YOU HAVE THE FOLLOWING RIGHTS WITH RESPECT TO YOUR PHI:

  1. The Right to Request Limits on Uses and Disclosures of Your PHI. You have the right to ask us not to use or disclose certain PHI for treatment, payment, or health care operations purposes. We are not required to agree to your request, and we may say “no” if we believe it would affect your health care.

  2. The Right to Request Restrictions for Out-of-Pocket Expenses Paid for In Full. You have the right to request restrictions on disclosures of your PHI to health plans for payment or health care operations purposes if the PHI pertains solely to a health care item or a health care service that you have paid for out-of-pocket in full.

  3. The Right to Choose How We Send PHI to You. You have the right to ask us to contact you in a specific way (for example, home or office phone) or to send mail to a different address, and we will agree to all reasonable requests. You may also request that we contact you and provide health information over email/electronic means, and your recognize that email may not be a secure mode of communication.

  4. The Right to See and Get Copies of Your PHI. Other than “psychotherapy notes,” you have the right to get an electronic or paper copy of your medical record and other information that we have about you. We will provide you with a copy of your record, or a summary of it, if you agree to receive a summary, within 30 days of receiving your written request, and we may charge a reasonable, cost based fee for doing so.

  5. The Right to Get a List of the Disclosures We Have Made. You have the right to request a list of instances in which I have disclosed your PHI for purposes other than treatment, payment, or health care operations, or for which you provided me with an Authorization. We will respond to your request for an accounting of disclosures within 60 days of receiving your request. The list we will give you will include disclosures made in the last six years unless you request a shorter time. We will provide the list to you at no charge, but if you make more than one request in the same year, we will charge you a reasonable cost based fee for each additional request.

  6. The Right to Correct or Update Your PHI. If you believe that there is a mistake in your PHI, or that a piece of important information is missing from your PHI, you have the right to request that we correct the existing information or add the missing information. We may say “no” to your request, but we will tell you why in writing within 60 days of receiving your request.

  7. The Right to Get a Paper or Electronic Copy of this Notice. You have the right get a paper copy of this Notice, and you have the right to get a copy of this notice by e-mail. And, even if you have agreed to receive this Notice via e-mail, you also have the right to request a paper copy of it.

EFFECTIVE DATE OF THIS NOTICE

This notice went into effect on June 13, 2019

Acknowledgement of Receipt of Privacy Notice

Under the Health Insurance Portability and Accountability Act of 1996 (HIPAA), you have certain rights regarding the use and disclosure of your protected health information. By checking the box below, you are acknowledging that you have received a copy of HIPPA Notice of Privacy Practices.