Skip to main content

Privacy Policy

Effective Date: 05/05/2026
Last Updated:

David Potts, LCSW (“we,” “us,” or “I”) is committed to protecting the privacy and confidentiality of visitors to this website, as well as the clients who entrust us with their care. This Privacy Policy outlines how we collect, use, and safeguard information when you visit our website or utilize our online scheduling services.

Please note that this policy governs website data collection. For information regarding how your Protected Health Information (PHI) is handled during clinical treatment, please refer to our Notice of Privacy Practices provided during your initial intake.

1. HIPAA Compliance & Clinical Confidentiality
As a Licensed Clinical Social Worker (LCSW), I adhere strictly to the Health Insurance Portability and Accountability Act (HIPAA). Any communication regarding your mental health, clinical history, or psychotherapy sessions is considered Protected Health Information (PHI).

I do not collect, store, or transmit PHI through this website.
Clinical communications, intake paperwork, and telehealth sessions are conducted exclusively through secure, HIPAA-compliant, encrypted third-party platforms separate from this public website.
By using this website, you agree that no sensitive clinical information should be submitted via standard website contact forms or email.
2. Information We Collect Automatically (Website Usage Data)
When you visit davidapotts.com, certain technical data is collected automatically by our web hosting platform to ensure the site functions properly. This data does not personally identify you and includes:

IP Address
Browser type and version
Operating system
Referring/exit pages and URLs visited
Date and time of visit
Pages viewed and time spent on pages
3. Information You Voluntarily Provide
We only collect personally identifiable information if you voluntarily submit it to us through the following means:

Online Scheduling (Calendly): If you use our online booking system to schedule an appointment, you will be asked to provide your name, email address, and phone number. Please do not include clinical details (e.g., “I need help for depression”) in your scheduling notes, as this standard scheduling tool is not a HIPAA-compliant environment for clinical data.
Contact Forms/Email: If you reach out via a website contact form or direct email, your name and email address will be collected to respond to your inquiry.
4. How We Use Your Information
The non-clinical information we collect is used strictly for the following purposes:

To facilitate and confirm your appointment booking.
To respond to your general inquiries about services, availability, or fees.
To analyze website traffic and improve the user experience on our website.
To maintain the security and integrity of the website.
5. Third-Party Services
To provide a premium online experience, we rely on trusted, industry-standard third-party services. These entities may have access to the technical data mentioned in Section 2:

Calendly (Scheduling): Used to provide real-time appointment availability. Calendly’s Privacy Policy
WordPress / YOOtheme Pro (Website Hosting & Design): Used to host and build the infrastructure of this website.
Google Analytics (Optional – Delete if you do not use this): We may use Google Analytics to understand how visitors interact with our site. This data is anonymized and does not track personal health information. Google’s Privacy Policy
6. Data Security
We implement appropriate technical and organizational security measures to protect your non-clinical data against unauthorized access, alteration, disclosure, or destruction. This website utilizes SSL/TLS encryption (HTTPS) to secure data transmitted between your browser and our server.

7. Telehealth Disclaimer
If you engage in telehealth (video or phone sessions), you will be required to review and sign a separate Telehealth Consent Form. That form details the specific security protocols, encryption standards, and privacy measures used for your clinical sessions, which are entirely separate from this website’s infrastructure.

8. Your Rights Regarding Website Data
Depending on your jurisdiction, you may have the right to:

Request access to the personal data we hold about you (excluding clinical PHI, which is governed by separate HIPAA regulations).
Request that we update or delete any non-clinical personal data collected via website forms or scheduling.
To exercise these rights, please contact us using the information provided below.
9. Changes to This Privacy Policy
We reserve the right to update or modify this Privacy Policy at any time. Any changes will be effective immediately upon posting the revised policy on this page. We encourage you to review this page periodically for any updates.

10. Contact Information
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

David Potts, LCSW