Pages

Multilingual Translate Banner - Social Potential
🌐
Read this website in your language | 用您的語言閱讀本網站 | Đọc trang web này bằng ngôn ngữ của bạn
1 喺瀏覽器上面搵「翻譯」圖示(通常喺網址列旁邊,好似個地球咁嘅圖示 🌐)
2 撳一下「翻譯」圖示,然後揀「中文(繁體)」或者「廣東話」
3 如果搵唔到「翻譯」圖示:喺網頁度禁右鍵(或者喺手機上面長撳),然後揀「翻譯去中文」
Search
No Waitlist Widget - Social Potential (Final Version)
No Waitlist Explore Your Options With Us
Learn What Support Could Look Like
Privacy Policy - Social Potential, LLC

Privacy Policy

Last Updated: February 13, 2026

Introduction

Social Potential, LLC ("we," "us," or "our") is committed to protecting the privacy and confidentiality of your personal information. This Privacy Policy describes how we collect, use, disclose, and safeguard your information when you visit our website (sopobehavior.com) or receive Applied Behavior Analysis (ABA) services from us.

As a healthcare provider in California, we comply with the Health Insurance Portability and Accountability Act (HIPAA), the California Confidentiality of Medical Information Act (CMIA), and the California Consumer Privacy Act (CCPA) where applicable.

Information We Collect

A. Healthcare Information

(Protected Health Information - PHI)

When you become a client of Social Potential, we collect and maintain the following types of information:

  • Contact Information: Name, address, phone number, email address
  • Health and Medical Information: Diagnostic information, treatment records, progress notes, behavioral assessments, and other health-related data necessary for providing ABA services
  • Insurance Information: Insurance provider details, policy numbers, and billing information
  • Demographic Information: Date of birth, gender, and other identifying information
  • Guardian/Parent Information: Contact details and information about legal guardians or parents

B. Website Visitor Information

When you visit our website, we may automatically collect:

  • Technical Information: IP address, browser type, device information, operating system
  • Usage Data: Pages viewed, time spent on pages, links clicked, and other browsing behavior
  • Cookies and Tracking Technologies: Our website may use cookies and similar technologies to enhance user experience and analyze website traffic

C. Contact Form Information

When you submit a contact form on our website, we collect:

  • Name
  • Email address
  • Message content
  • Any other information you voluntarily provide

How We Use Your Information

Healthcare Services (PHI)

We use your protected health information for:

  • Treatment: Providing, coordinating, and managing your ABA therapy services
  • Payment: Billing insurance companies and processing payments for services rendered
  • Healthcare Operations: Quality improvement, staff training, business planning, and other operational activities
  • Legal Requirements: Complying with applicable laws, regulations, and court orders

Website and Marketing

We use website visitor information for:

  • Responding to inquiries submitted through contact forms
  • Improving our website functionality and user experience
  • Analyzing website traffic and usage patterns
  • Communicating about our services (only with your consent)

How We Share Your Information

Healthcare Information (PHI)

We do not share your protected health information except in the following circumstances:

With Your Written Authorization:

  • We will only share your health information with third parties (such as schools, other healthcare providers, or therapists) when you have completed and signed a valid Release of Information form

Without Your Authorization (as permitted by law):

  • Insurance Companies: For billing and payment purposes
  • Legal Requirements: When required by federal or state law, court orders, or legal proceedings
  • Law Enforcement: When required by law or in response to valid legal process
  • Business Associates: To contractors and vendors who perform services on our behalf (subject to HIPAA-compliant agreements)

We require all third parties who receive PHI to maintain its confidentiality and security.

Website Information

We may share website visitor information with:

  • Service Providers: Third-party vendors who help us operate our website and business (e.g., web hosting, email services)
  • Legal Compliance: When required by law or to protect our legal rights

We do not sell your personal information to third parties.

Your Privacy Rights

HIPAA Rights (Healthcare Clients)

As a client receiving healthcare services, you have the right to:

  • Access: Request and receive a copy of your health records
  • Amendment: Request corrections to your health information
  • Accounting: Receive a list of certain disclosures we have made of your health information
  • Restriction: Request restrictions on how we use or disclose your health information (we are not required to agree to all requests)
  • Confidential Communications: Request that we communicate with you in a specific way or at a specific location
  • Notice: Receive a copy of our Notice of Privacy Practices (HIPAA Notice)
  • Revoke Authorization: Withdraw your consent for disclosures at any time (except where we have already acted on your authorization)

California Privacy Rights (CCPA)

If you are a California resident and website visitor (not yet a healthcare client), you have the right to:

  • Know: Request information about the personal information we collect, use, and disclose
  • Access: Request a copy of the personal information we have collected about you
  • Deletion: Request deletion of your personal information (subject to certain exceptions)
  • Opt-Out: Opt-out of the sale of personal information (note: we do not sell personal information)
  • Non-Discrimination: Exercise your privacy rights without receiving discriminatory treatment

Important Note: Once you become a healthcare client, your health information is protected under HIPAA, which generally exempts that information from CCPA. The CCPA rights above apply primarily to website visitors and prospective clients.

Data Retention

  • Client Records: We retain client health records for a minimum of seven (7) years from the date of last service, or seven (7) years after a minor reaches age 18, whichever is longer, in compliance with California law
  • Website Data: We retain website visitor information only as long as necessary for the purposes described in this policy or as required by law
  • Contact Form Submissions: Inquiry information is retained for up to one (1) year unless you become a client

Data Security

We implement appropriate physical, technical, and administrative safeguards to protect your information from unauthorized access, disclosure, alteration, or destruction. These measures include:

  • Secure, password-protected electronic health record systems
  • Encryption of sensitive data in transit and at rest
  • Limited access to personal information on a need-to-know basis
  • Employee and contractor training on privacy and security obligations
  • Regular security assessments and updates

However, no method of transmission or storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

Employee and Contractor Information

We collect and maintain personal information about our employees and contractors for employment, payroll, benefits administration, and compliance purposes. Employee and contractor data is handled in accordance with applicable employment and privacy laws.

Children's Privacy

Our services are often provided to minors. We collect and use information about children only with parental or legal guardian consent and in accordance with HIPAA and applicable California laws. Parents and legal guardians have the right to access, amend, and control the use of their child's information.

Cookies and Tracking Technologies

Our website may use cookies and similar tracking technologies. You can control cookies through your browser settings. Disabling cookies may affect website functionality.

Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will post the updated policy on our website with a new "Last Updated" date. Continued use of our services after changes constitutes acceptance of the updated policy.

Contact Us

If you have questions about this Privacy Policy or wish to exercise your privacy rights, please contact us:

Social Potential, LLC
Email: info@sopobehavior.com
Website: sopobehavior.com

Notice of Privacy Practices

This Privacy Policy serves as our Notice of Privacy Practices under HIPAA. If you are a healthcare client, you have the right to receive a separate, detailed Notice of Privacy Practices upon request.

Acknowledgment: By using our website or services, you acknowledge that you have read and understood this Privacy Policy.