Privacy Policy

Effective Date: September 30, 2025
Last Updated: September 30, 2025

Introduction

Tricia Johnson Wellness, PLLC ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website [yourwebsite.com] and use our services.

Please read this privacy policy carefully. If you do not agree with the terms of this privacy policy, please do not access the website.

Important Distinction: Website vs. Clinical Services

This Privacy Policy applies to information collected through our website only.

For clinical services: If you become a client and enter into a therapeutic relationship with us, your protected health information (PHI) is governed by our separate HIPAA Notice of Privacy Practices, which you will receive during the intake process. That notice provides detailed information about how your clinical information is protected under HIPAA and state confidentiality laws.

Website information is NOT covered by HIPAA and does not receive the same level of protection as clinical health information.

Information We Collect

Information You Provide Directly

We may collect information that you voluntarily provide to us, including:

Contact Forms & Email Inquiries:

  • Name

  • Email address

  • Phone number

  • Message content

  • Any other information you choose to provide

Newsletter Subscriptions:

  • Email address

  • Name (if provided)

  • Preferences and interests

Free Resource Downloads:

  • Email address

  • Name

  • Any demographic information you choose to provide

Important: Do NOT include sensitive personal information, mental health information, or details about your mental health concerns in website forms or emails. These communications are not secure and are not confidential.

Information Collected Automatically

When you visit our website, certain information may be automatically collected:

Device & Usage Information:

  • IP address

  • Browser type and version

  • Operating system

  • Pages visited and time spent on pages

  • Referring website

  • Date and time of visit

Cookies and Tracking Technologies: We use cookies and similar tracking technologies to enhance your experience. Cookies are small data files stored on your device. You can set your browser to refuse cookies, but some features of our website may not function properly.

Types of cookies we use:

  • Essential cookies: Necessary for website functionality

  • Analytics cookies: Help us understand how visitors use our site (via Google Analytics or similar)

  • Marketing cookies: Used to deliver relevant content (if applicable)

How We Use Your Information

We use the information we collect to:

  • Respond to your inquiries and provide customer service

  • Send newsletters and email updates (only if you've subscribed)

  • Deliver free resources you've requested

  • Improve our website and user experience

  • Analyze website traffic and usage patterns

  • Comply with legal obligations

  • Notify you about our services and programs (with your consent)

Legal Basis for Processing (If Applicable)

We process your personal information based on:

  • Consent: You have given clear consent for us to process your information

  • Legitimate interests: Processing is necessary for our legitimate business interests

  • Legal obligation: Processing is necessary to comply with the law

How We Share Your Information

We DO NOT sell, rent, or trade your personal information to third parties for marketing purposes.

We may share your information in the following limited circumstances:

Service Providers:
 We may share information with third-party service providers who perform services on our behalf, such as:

  • Email marketing platforms (e.g., Flodesk)

  • Website hosting providers

  • Analytics providers (e.g., Google Analytics)

  • Payment processors (for paid services)

These providers are contractually obligated to protect your information and use it only for the purposes we specify.

Legal Requirements:
We may disclose your information if required by law, court order, or governmental regulation, or if we believe disclosure is necessary to:

  • Comply with legal process

  • Protect our rights or property

  • Protect the safety of our users or the public

Business Transfers:
If our practice is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.

Data Security

We implement reasonable security measures to protect your information from unauthorized access, alteration, disclosure, or destruction. However:

  • No internet transmission is 100% secure. We cannot guarantee absolute security.

  • Website communications are NOT encrypted in the same way clinical communications are.

  • Do not send sensitive information through our website contact forms or email.

Your Privacy Rights

Depending on your location, you may have the following rights:

Access: Request a copy of the personal information we hold about you

Correction: Request correction of inaccurate information

Deletion: Request deletion of your information (subject to legal obligations)

Opt-Out: Unsubscribe from marketing emails at any time using the unsubscribe link

Cookie Control: Adjust your browser settings to refuse cookies

To exercise these rights, please contact us using the information provided below.

State-Specific Privacy Information

Illinois Residents

Under Illinois law, you have the right to know what personal information we collect and how it's used. You may also have rights under the Illinois Biometric Information Privacy Act (BIPA) if applicable.

Missouri Residents

Missouri residents may have additional rights under state privacy laws regarding the collection and use of personal information.

Vermont Residents

Vermont residents have rights under Vermont's data broker and privacy laws, including the right to opt out of the sale of personal information (which we do not engage in).

Children's Privacy

Our website is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately.

Third-Party Websites

Our website may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies before providing any personal information.

Email Marketing & Communication Preferences

If you subscribe to our email list:

  • You will receive newsletters, tips, and updates about our services

  • You can unsubscribe at any time using the link in every email

  • We use Flodesk to manage our email list

  • Your email address will never be sold or shared with third parties for their marketing purposes

Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required by law.

  • Contact form inquiries: Retained for 2 years

  • Email subscribers: Retained until you unsubscribe

  • Analytics data: Retained according to our analytics provider's policy

International Data Transfers

Our website is operated in the United States. If you are located outside the United States, please be aware that information we collect will be transferred to and processed in the United States.

HIPAA Notice

This Privacy Policy does NOT replace our HIPAA Notice of Privacy Practices that governs protected health information (PHI) for clinical services.

If you become a client, you will receive a separate, comprehensive HIPAA Notice of Privacy Practices that explains:

  • How your clinical health information is protected

  • Your rights regarding your health records

  • How we may use and disclose your health information

  • Our legal obligations under HIPAA and state law

Clinical health information receives significantly stronger privacy protections than website information.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by:

  • Posting the new policy on this page

  • Updating the "Last Updated" date

  • Sending an email to subscribers (for material changes)

Your continued use of our website after changes are posted constitutes acceptance of the updated policy.

Contact Us

If you have questions about this Privacy Policy or wish to exercise your privacy rights, please contact us:

Tricia Johnson Wellness, PLLC
1870 W. Winchester Rd., Ste 148
Libertyville, IL 60048
(847)916-0034
tricia@triciajohnsonwellness.com

For clinical/HIPAA-related privacy questions: Please contact us directly at tricia@triciajohnsonwellness.com or refer to the HIPAA Notice of Privacy Practices provided during intake.

By using our website, you acknowledge that you have read and understood this Privacy Policy.