Effective Date: February 1, 2025
Last Updated: June 1, 2026

THIS NOTICE DESCRIBES HOW MEDICAL INFORMATION ABOUT YOU MAY BE USED AND DISCLOSED AND HOW YOU CAN GET ACCESS TO THIS INFORMATION. PLEASE REVIEW IT CAREFULLY.

Resilient Corazones Counseling PLLC (“we,” “us,” “our”) is a HIPAA covered health care provider. HIPAA requires covered providers to develop and distribute a Notice of Privacy Practices and to make it available on their website.

1. Our Uses and Disclosures of Protected Health Information (PHI)

We may use and disclose your PHI without your written authorization for the following purposes:

A. Treatment

We may use and share your PHI to provide, coordinate, or manage your therapy services. For example, we may share information with other health care providers involved in your care when appropriate.

B. Payment

If applicable, we may use and disclose your PHI to obtain payment for services (for example, providing documentation for reimbursement requests). Resilient Corazones Counseling is primarily self-pay; if you request documentation (such as a superbill), we may use PHI to prepare it.

C. Health Care Operations

We may use and disclose your PHI for certain operational activities necessary to run the practice, such as quality assessment, training, licensing, audits, and business administration.

2. Other Uses and Disclosures That May Be Made Without Your Authorization

HIPAA and other laws allow or require certain disclosures in specific situations, including (examples listed are not exhaustive):

  • As Required by Law (e.g., to comply with legal processes)
  • Public Health and Safety (when permitted)
  • Health Oversight Activities (e.g., audits, investigations)
  • Judicial and Administrative Proceedings (e.g., court orders, subpoenas, consistent with applicable law)
  • Law Enforcement (when required or permitted by law)
  • To Avert a Serious Threat to Health or Safety (consistent with applicable law and ethical standards)

3. Uses and Disclosures That Require Your Written Authorization

In most cases, we will not use or disclose your PHI for purposes outside of treatment, payment, and health care operations unless you sign a valid written authorization.

You may revoke an authorization at any time in writing, except to the extent we have already acted on it.

4. Your Rights (Regarding Your PHI)

You have the right to:

A. Get a Copy of This Notice

You may request a paper or electronic copy at any time. HIPAA requires that we make this notice available.

B. Inspect and Get a Copy of Your Records

You may request access to your clinical record and other PHI we maintain about you, with limited exceptions.

C. Request Corrections (Amendments)

If you believe information in your records is incorrect or incomplete, you may request an amendment.

D. Request Confidential Communications

You may ask us to contact you in a specific way (for example, by phone only, or at a different address).

E. Request Restrictions

You may request limitations on how we use or disclose your PHI for treatment, payment, or operations. We are not required to agree to all restrictions.

F. Get an Accounting of Certain Disclosures

You may request a list of certain disclosures made in the past, as defined by HIPAA.

G. Choose Someone to Act for You

If you have a legal guardian or someone with medical power of attorney, that person may exercise rights on your behalf (we will request documentation).

H. File a Complaint

If you believe your privacy rights have been violated, you may file a complaint with us and/or with the U.S. Department of Health and Human Services (HHS) Office for Civil Rights. We will not retaliate for filing a complaint. HHS provides guidance and model notices that explain complaint rights and NPP requirements.

5. Our Responsibilities

We are required by law to:

  • Maintain the privacy and security of your PHI
  • Provide you with this Notice of our legal duties and privacy practices
  • Follow the terms of this Notice currently in effect
  • Notify you if a breach occurs that may have compromised the privacy or security of your information

HIPAA requires covered entities to provide an NPP describing privacy practices and individuals’ rights.

6. Telehealth, Technology, and Privacy

We provide therapy services via secure telehealth. Florida law sets standards for telehealth practice and requires providers to meet the prevailing professional standard of care.

Client location requirement: You must be physically located in Florida at the time of the telehealth session and must be a Florida resident. If you are temporarily outside Florida, services cannot be provided.

Telehealth privacy tips: To protect your privacy during telehealth, consider:

  • Using a private location where you cannot be overheard
  • Using a private, secure internet connection when possible
  • Using a personal device rather than a shared device
  • Using headphones for additional privacy

7. Communication by Email / Website Forms

Email is not always a fully secure method. We ask that you avoid sending highly sensitive information by email or through website forms. If you become a client, we may review communication options as part of informed consent.

8. Couples Therapy Records

When we provide couples therapy, the couple is typically maintained as one clinical chart. Upon request, we can explain how records and releases work.

9. Changes to This Notice

We may change this Notice, and the changes will apply to all PHI we maintain. If we make changes, we will update the Effective Date and post the updated Notice on our website as required. HIPAA requires covered entities to make the notice available and to post it on their website if they have one.

10. Contact for Privacy Questions or Complaints

Privacy Contact:
Michelle Savage, LMFT
Resilient Corazones Counseling PLLC
Phone: (407) 721-5984
Email: michelle@resilientcorazonescounseling.com

If you have questions about this Notice, want to exercise your rights, or want to file a complaint with us, contact the Privacy Contact listed above.