Privacy Policy

Who we are

Our website address is: http://www.restorativepractices.com

What personal data we collect and why we collect it

Comments

When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Restorative Practices service to see if you are using it.

Cookies

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you log out of your account, the login cookies will be removed.

Embedded content from other websites

While most of the content on the site is hosted on our servers, or by our streaming service, some pages on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.  These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.  RestorativePractices.com does not pass data to third-party sites.

Analytics

We collect de-identified aggregated data as part of our analytics, to monitor usage on our platform, and to calculate royalties for our instructors on the platform.  All usage data is de-identified and aggregated.  Protected Health Information is not passed through our analytics.

Who we share your data with

We do not share data with third parties.  If you are an employee of an organization with an Enterprise Licensing Agreement, you may opt-in to have Personal Health Information, or certain assessment or usage data made visible to your supervisors or Human Resources department.  This is an opt-in service, at your discretion as an Authorized User.  Your employer cannot pressure you to Opt-in.  If you are the patient or client of a Practitioner with a Practitioner Licensing Agreement, you may opt-in to have Personal Health Information, or certain assessment or usage data made visible to your Practitioner.  This is an opt-in service, at your discretion as an Authorized User.  Your Practitioner cannot pressure you to Opt-in.

How long we retain your data

As a consumer subscriber (Authorized User) of the Restorative Practices Learning platform,

What rights you have over your data

In order to customize content for you on the website, and provide you the most tailored and useful experience, you will have the opportunity to interact with filters and guiding tools to identify relevant content on the platform. These tools may ask you questions about your stress responses, situations you have encountered, past experiences, etc. The purpose of these questions is to identify the most useful practices to support your well-being. Our data collection practices and data security are HIPAA compliant.  While this site is not a medical site, and is not providing medical advice, and not a therapeutic site, and is not providing therapy, the privacy of your data is great importance to us.  Our website tracks and tags these filters to provide you relevant content. If you have an account on this site you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

How we protect your data

All personal health data (PHI) that you enter into the website is held in a HIPAA compliant database.  This allows us to lawfully store, transmit, and otherwise process protected health information.  Our database management protocols and data protection satisfies the applicable subcontracting requirements under HIPAA and the HITECH Act.

What data breach procedures we have in place

What third parties we receive data from

What automated decision making and/or profiling we do with user data

Industry regulatory disclosure requirements