We follow strict standards to protect your personal and health information under the Health Information Act (HIA) and professional regulations for Registered Social Workers.

1. We Collect Only What We Need

We collect only the minimum information required to provide safe, effective therapy:

- Contact and demographic information

- Relevant health and mental health history

- Session notes and treatment plans

- Emergency contact information

We do not collect information unrelated to your care.

2. Your Information Is Kept Secure

We use secure, encrypted systems to store and manage your records:

- Encrypted Electronic Health Record (EHR)

- Password-protected, encrypted devices

- No storage of records on personal devices

- Secure document transfer (no identifiable information through SMS)

- Telehealth delivered through encrypted platforms

3. Your Information Is Used Only for Care

We only use your information for:

- Therapy and treatment planning

- Crisis or safety response

- Billing and administrative purposes

- Consultation or supervision (with identifiers removed when possible)

Your information is never shared for marketing and never sold.

Sharing Your Information

We share your information only when:

- You provide written consent

- Required by law (risk of harm, court order)

- Necessary for safety concerns

You may withdraw or limit consent anytime.

Your Rights as a Client

You have the right to:

- Access your records

- Request corrections

- Ask how your information has been used

- Withdraw consent for sharing (unless required by law)

- Receive copies of privacy-related policies

We respond to all access/correction requests within 30 days.

How Long We Keep Your Records

Records are retained for:

- 10 years after last service, OR

- For minors: 10 years after age 18

Records are destroyed securely after the retention period.

Privacy Breach Prevention & Response

Our protocol includes:

- Immediate containment

- Investigation and documentation

- Notification of affected individuals

- Reporting to OIPC when required

Mobile & Virtual Practice Safeguards

Additional safeguards include:

- Limited/no paper transportation of records

- Encrypted devices

- Secure telehealth platforms

- Sessions held in private, safe settings

Our Commitment

We follow:

- Alberta Health Information Act (HIA)

- CASW/CASWBC professional standards

- Information Manager Agreements

- Best practices in privacy and cybersecurity