Effective Date: 01-September-2025

Spencer Recovery Centers, Inc. (“we,” “us,” or “our”) is committed to protecting the privacy and confidentiality of our website users (“you,” “your”) and any individuals who engage with our services. This Privacy Policy explains what information we collect, how we use it, how we protect it, with whom we share it, your rights, and how you can contact us.

1. Information We Collect

We may collect the following types of information:

a) Personal Information

Name

Contact information (such as email address, telephone number, mailing address)

Date of birth

Insurance information

Payment information (if applicable)

Other information you voluntarily provide (e.g., via contact forms, intake forms, surveys)

b) Health Information

Because we are a treatment center addressing addiction and mental health, we may collect sensitive health information, including but not limited to:

Substance abuse history

Mental health diagnosis

Treatment history

Medical records or clinical assessments

Medications

This kind of information is subject to special protections under laws like HIPAA (Health Insurance Portability and Accountability Act) in the U.S.

c) Non-personal / Technical Information

IP address

Browser type

Device type

Operating system

Pages visited

Referring/exit pages

Date/time stamps

We may collect this automatically when you access our site.

2. How We Use the Information

We use the information we collect for purposes including but not limited to:

Responding to your inquiries and providing you with the services you request

Verifying insurance and payment

Delivering treatment and coordinating care

Improving our services, facilities, and website

Compliance with legal, regulatory, or accrediting body requirements (including HIPAA, JCAHO, etc.)

Statistical analysis and reporting (in an aggregated or de‐identified form)

Sending you updates or relevant communications, if you consent

3. Legal Basis for Processing (if applicable)

If you are subject to laws such as HIPAA (and in certain U.S. states), we only process sensitive health information where permitted:

To carry out your treatment

To obtain payment for services

As required by law or regulation

With your explicit consent

4. Sharing & Disclosure of Information

We will not sell your personal data. We share information only in the following circumstances:

With healthcare providers, therapists, insurers, or other third parties as needed for your treatment, payment, or operations.

With third party service providers who assist us (e.g. IT, billing, analytics)—they must protect your information.

As required by law, regulation, subpoena, or court order.

In emergencies where disclosure is necessary to avoid serious harm.

In de‐identified or aggregated form for research or public reporting (with no personal identifiers).

5. HIPAA & Confidentiality

Because we are a healthcare provider, we abide by HIPAA and other related regulations:

We maintain the confidentiality of your Protected Health Information (PHI).

We only use or disclose PHI for treatment, payment, operations, or as otherwise required or permitted by law.

We require business associates and subcontractors who receive PHI from us to comply with HIPAA and confidentiality terms.

We maintain physical, administrative, and technical safeguards to protect PHI.

6. Cookies & Tracking Technologies

We and/or our service providers may use cookies, web beacons, tracking pixels, and similar technologies to collect technical information about visits to our site. These may be used to:

Analyze and improve our site’s performance

Understand how visitors use the site

Provide content, advertising, or promotions

You can disable cookies through your browser settings, but doing so may limit your ability to use certain features of the website.

7. Data Security

We implement reasonable and appropriate technical, administrative, and physical security measures to protect information from unauthorized access, use, alteration, or destruction. However, no method of transmission or storage is 100% secure, so we cannot guarantee absolute security.

8. Data Retention

We retain personal and health information for as long as necessary to fulfill the purposes for which it was collected, comply with legal and regulatory obligations, resolve disputes, and enforce our agreements.

After such time, we will securely destroy, delete, or de‐identify the information.

9. Your Rights

Depending on your location, you may have certain rights regarding your personal information, such as:

Right to access the personal information we hold about you

Right to correct or update inaccurate or incomplete information

Right to request deletion of your information (subject to legal and regulatory requirements)

Right to restrict or object to certain processing

Right to data portability

Right to withdraw consent at any time when processing is based on consent

If you wish to exercise any of these rights, please contact us using the contact information below.

10. Children

Our services are intended for adults. We do not knowingly collect personal data from minors under the age of 18 without parental consent. If we learn we have collected information from a child under 18 without consent, we will take steps to delete it.

11. Changes to this Privacy Policy

We may update this Privacy Policy from time to time. When we make changes, we will revise the “Effective Date” at the top. For substantial changes, we will try to notify you via our website or other means.

12. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, or wish to exercise any of your rights, you may contact:

Spencer Recovery Centers, Inc.
Address: 1316 S. Coast Hwy Laguna Beach, CA 92651
Phone: 800-334-0394
Email: [email protected]