North Star Psychological Services, PLLC Website Privacy Policy

Effective Date: May 16, 2026
Last Updated: May 16, 2026

North Star Psychological Services, PLLC respects your privacy. This Website Privacy Policy explains how we collect, use, disclose, retain, and protect information when you visit our website at https://northstarpsychdc.com, submit a website inquiry, or communicate with us through contact information listed on our website.

North Star Psychological Services, PLLC is a mental health practice located in Washington, DC. We provide psychological services to adults and teens, including in-person and telehealth services.

This Website Privacy Policy applies to information collected through our website and related online communications. It does not replace our clinical confidentiality obligations, informed consent documents, or HIPAA Notice of Privacy Practices.

North Star Psychological Services, PLLC provides a separate HIPAA Notice of Privacy Practices that explains how protected health information may be used and disclosed in connection with clinical care and describes patient rights under HIPAA. If you are a client, please review that notice in addition to this Website Privacy Policy.

1. Scope of This Website Privacy Policy

This Website Privacy Policy applies to information we may collect when you:

  • Visit our website

  • Submit a contact form through our website

  • Request information about therapy services

  • Contact us by email, phone, or voicemail using information listed on the website

  • Interact with website analytics, cookies, advertising tags, or website functionality

  • Use our website to learn about in-person or telehealth services

This Website Privacy Policy does not fully describe how protected health information is used and disclosed once you become a client. Information shared as part of clinical care may be governed by HIPAA, District of Columbia law, professional confidentiality rules, informed consent documents, intake materials, and our HIPAA Notice of Privacy Practices.

Submitting a website inquiry does not create a therapist-client relationship. A therapist-client relationship begins only after appropriate intake steps, consent forms, and acceptance into care.

2. HIPAA, Clinical Privacy, and Website Communications

North Star Psychological Services, PLLC is a HIPAA-covered healthcare provider. We are committed to protecting the privacy and confidentiality of protected health information in accordance with applicable federal law, District of Columbia law, and professional obligations.

Information you share during therapy, intake, scheduling, billing, telehealth, or other clinical communications may be protected by HIPAA and professional confidentiality rules.

However, general website communications may not have the same level of security as clinical systems designed for protected health information. This includes ordinary email, voicemail, and website contact forms.

Please do not include detailed clinical information in ordinary email, voicemail, or website forms. This includes detailed symptoms, diagnoses, medication information, trauma history, eating disorder behaviors, self-harm details, substance use information, safety concerns, legal information, or other sensitive personal details. A brief message such as “I’m looking for therapy for anxiety,” “I’d like to schedule a consultation,” or “I’m interested in teen therapy” is enough for us to respond.

Do not use the website, email, voicemail, or contact forms for emergencies, crisis situations, urgent clinical concerns, or time-sensitive safety issues.

3. Information We Collect

We may collect information in the following ways.

Information You Provide Directly

When you contact us through the website, by email, by phone, or by voicemail, you may choose to provide information such as:

  • Name

  • Email address

  • Phone number

  • Preferred method of contact

  • Whether you are seeking services for yourself or someone else

  • Whether you are seeking adult or teen therapy

  • General information about the type of support you are looking for

  • Scheduling preferences

  • Any message or details you choose to submit

You are not required to include detailed clinical history in a website inquiry. We encourage you to keep website inquiries brief and general.

Website and Device Information

When you visit our website, certain information may be collected automatically, including:

  • IP address

  • Browser type

  • Device type

  • Operating system

  • Pages viewed

  • Date and time of visit

  • Referring website or search engine

  • General location information based on IP address

  • Interactions with pages, links, forms, or other website features

  • Advertising or analytics identifiers, where applicable

  • Information about whether a visitor clicked an advertisement or interacted with a general website feature

This information helps us maintain the website, understand how visitors use it, improve content, evaluate website performance, support advertising measurement, and support website security.

Cookies, Tags, and Similar Technologies

Our website may use cookies, tags, pixels, scripts, and similar technologies. Cookies are small files placed on your device that help websites function, remember preferences, understand website traffic, support analytics, measure advertising performance, and improve user experience.

We may also use log files, tags, scripts, pixels, and similar technologies to understand how visitors interact with the website and to measure the general performance of advertising campaigns.

You can adjust your browser settings to block or delete cookies. Depending on your browser or device, you may also be able to limit cross-site tracking, reset advertising identifiers, or use analytics opt-out tools. Some website features may not work properly if cookies are disabled.

4. Website Hosting and Contact Forms

Our website is hosted on Squarespace and uses Squarespace website functionality, including website forms.

Website forms are intended only for brief, non-urgent, general inquiries. Please do not submit diagnoses, detailed symptoms, treatment history, medication information, insurance details, trauma history, eating disorder behaviors, self-harm details, crisis information, or other sensitive health information through the website form.

When you submit a form through the website, the information you provide may be processed by Squarespace or other website service providers as part of operating the website and delivering your inquiry to us. Squarespace and other website service providers may also collect technical and usage information when you interact with the website.

If we need additional information from you, we may direct you to an appropriate intake, scheduling, or clinical communication process.

5. Analytics and Website Tracking

We use website analytics tools to better understand how visitors find and use our website. These tools may collect information such as pages visited, time spent on the website, browser type, device type, general location, referring website or search engine, and interactions with general website features.

We use analytics to improve website performance, understand which content is helpful to visitors, evaluate general website traffic trends, support advertising measurement, and maintain website security.

North Star Psychological Services, PLLC does not use analytics tools to make clinical decisions. We do not intentionally share the content of therapy inquiries, contact form messages, or clinical communications with analytics providers.

Because mental health websites can involve sensitive care-seeking activity, we aim to use analytics and tracking technologies carefully. We do not configure analytics tools to collect contact form contents, clinical messages, diagnosis-related information, treatment history, medication information, insurance details, or information submitted in connection with requesting care.

Current analytics tools may include:

  • Google Analytics 4, configured in a limited manner

  • Squarespace Analytics

  • Google tag or Google Tag Manager, used to manage and measure certain website tags

For Google Analytics 4, North Star Psychological Services, PLLC has turned off Google Signals, remarketing audiences, granular location and device data, and ad personalization.

6. Google Ads, Google Tag, Conversion Tracking, and Advertising Measurement

North Star Psychological Services, PLLC uses or may use Google Ads, Google tag, Google Tag Manager, and related Google advertising or conversion measurement tools to support current or future advertising campaigns and to understand whether visitors interact with our website after viewing or clicking an advertisement.

These tools may collect or receive information such as IP address, browser type, device type, pages viewed, referring website or search engine, ad click information, cookie identifiers, approximate location derived from IP address, date and time of visit, and whether a visitor took a general action on the website.

North Star Psychological Services, PLLC does not sell therapy inquiry information.

We do not knowingly share contact form messages, therapy inquiries, clinical communications, diagnoses, symptoms, medication information, trauma history, eating disorder behaviors, self-harm details, insurance information, or detailed health-related information with Google Ads or other advertising platforms for targeted advertising.

We do not configure Google Ads, Google Tag, Google Tag Manager, or other advertising tools to collect contact form field values, message contents, clinical communications, diagnosis-related information, treatment history, medication information, insurance details, or other detailed health information submitted through the website.

We use advertising and conversion tracking tools in a limited manner intended to measure general website and advertising performance. For example, these tools may help us understand whether an advertisement led to a website visit or another general website interaction. They are not intended to collect the substance of a therapy inquiry or to make clinical decisions.

North Star Psychological Services, PLLC does not use Google Analytics remarketing audiences or ad personalization. We also do not use advertising tools to target people based on specific diagnoses, symptoms, clinical conditions, therapy inquiry contents, or information submitted through a contact form.

We aim to avoid advertising practices that could feel intrusive or inappropriate for people seeking mental health support. Mental health service pages may involve sensitive topics such as anxiety, OCD, depression, trauma, eating disorders, bipolar disorder, psychosis, grief, ADHD, life transitions, men’s mental health, women’s mental health, and other personal concerns.

7. How We Use Information

We may use information collected through the website to:

  • Respond to inquiries

  • Provide information about therapy services

  • Determine whether our practice may be an appropriate fit

  • Schedule consultations or appointments

  • Communicate about administrative matters

  • Support in-person and telehealth services

  • Improve website content and usability

  • Understand general website traffic and performance

  • Measure advertising and website performance

  • Maintain website security

  • Prevent misuse, fraud, or unauthorized access

  • Comply with legal, ethical, professional, and regulatory obligations

  • Protect the safety, rights, and security of clients, prospective clients, clinicians, staff, and others

If you become a client, some administrative communications may become part of your clinical or billing record. If you do not become a client, we may retain inquiry records for a limited period for administrative, legal, quality, or compliance purposes.

8. Practice Software, Google Workspace, Ensora, and Telehealth Platforms

North Star Psychological Services, PLLC uses third-party software and technology providers to support clinical and administrative operations. These may include Ensora for electronic health records, practice management, intake, scheduling, billing, or related practice operations; Google Workspace for email, calendar, document storage, and administrative communications; and Zoom, Doxy and RemotEMDR for telehealth services.

When these tools are used to create, receive, maintain, or transmit protected health information on our behalf, we use versions, settings, and contractual safeguards designed to support HIPAA compliance, including Business Associate Agreements when required.

North Star Psychological Services, PLLC provides telehealth services using Zoom, Doxy and RemotEMDR.

Telehealth involves the use of electronic communications technology to provide care remotely. Telehealth can offer convenience and access, but it also involves privacy and security considerations. When telehealth is provided by a HIPAA-covered healthcare provider, related health information may be protected by HIPAA.

North Star Psychological Services, PLLC uses a HIPAA-supporting version of Zoom, Doxy and RemotEMDR for telehealth in a manner designed to support HIPAA compliance, including appropriate privacy and security settings and a Business Associate Agreement when required.

Clients are encouraged to choose a private location, use a secure internet connection when possible, and avoid participating in telehealth sessions in places where others can overhear.

The specific telehealth procedures, risks, and expectations may be addressed in intake materials, informed consent documents, and clinical policies.

9. Teens and Parent or Guardian Involvement

North Star Psychological Services, PLLC provides services to adults and teens.

When services involve a teen, privacy and confidentiality may be affected by the teen’s age, consent requirements, parent or guardian involvement, safety concerns, court orders, legal obligations, and professional standards.

If a teen contacts us through the website, or if a parent or guardian contacts us about a teen, we may use the information provided to respond, assess fit, and discuss appropriate next steps. Clinical confidentiality, parental access, and consent issues are addressed separately during intake and depend on applicable law, safety considerations, and professional obligations.

This Website Privacy Policy addresses website privacy only. Confidentiality and parent or guardian access to clinical information are addressed in informed consent documents, intake materials, clinical policies, and, where applicable, our HIPAA Notice of Privacy Practices.

10. How We Share Information

We may share information in limited circumstances, including the following.

Service Providers

We may use service providers to help us operate the website, communicate with prospective clients, provide telehealth services, support administrative functions, maintain security, measure advertising performance, or comply with professional obligations. These may include:

  • Website hosting providers

  • Website form providers

  • Analytics providers

  • Advertising and conversion tracking providers, including Google Ads and related Google Tag Technologies

  • Google Workspace for email, calendar, document storage, and administrative communications

  • Phone or voicemail systems

  • Zoom, Doxy and RemotEMDR for telehealth services

  • Ensora for electronic health records, practice management, intake, scheduling, billing, or related practice operations

  • Technology support providers

  • Security tools

  • Professional advisors, such as legal, compliance, accounting, or risk-management consultants

These service providers may access information only as needed to perform services for us. Where a vendor creates, receives, maintains, or transmits protected health information on our behalf, we enter into a Business Associate Agreement when required by HIPAA. Where HIPAA does not require a Business Associate Agreement, we use reasonable contractual, administrative, and technical safeguards where appropriate.

Legal, Safety, and Compliance Purposes

We may disclose information when we believe it is necessary or appropriate to:

  • Comply with applicable laws, regulations, subpoenas, court orders, or legal processes

  • Respond to lawful requests from government authorities

  • Protect against fraud, security threats, or misuse of the website

  • Protect the safety of clients, prospective clients, clinicians, staff, or the public

  • Meet professional, ethical, licensing, or regulatory obligations

  • Protect our legal rights or defend against legal claims

Business Changes

If North Star Psychological Services, PLLC is involved in a merger, restructuring, transfer of assets, sale, or similar business change, information may be transferred as part of that process, subject to applicable privacy, confidentiality, and legal obligations.

11. Email, Phone, Voicemail, and Contact Forms

When you contact us by email, phone, voicemail, or website form, we may use the information you provide to respond to your inquiry.

Please understand that ordinary email, voicemail, and website forms may not be fully secure. For that reason, please avoid sending detailed clinical information through these channels.

Do not use ordinary email, voicemail, or website forms for emergencies, crisis concerns, urgent clinical needs, or time-sensitive safety issues.

We may keep records of inquiries and administrative communications as part of practice operations, legal compliance, quality control, scheduling, documentation, or dispute-resolution needs.

12. Data Retention

We retain information for as long as reasonably necessary for the purposes described in this Website Privacy Policy, unless a longer retention period is required or permitted by law, professional standards, ethical obligations, insurance requirements, billing obligations, dispute-resolution needs, or clinical recordkeeping requirements.

Website analytics, advertising, and conversion measurement data may be retained according to the settings and retention practices of Google Analytics 4, Google Ads, Google tag, Squarespace Analytics, or other analytics or advertising tools we use.

Clinical, administrative, scheduling, intake, billing, email, calendar, document, telehealth, and practice-management information may be retained according to the settings and retention practices of Ensora, Google Workspace, Zoom, Doxy and RemotEMDR or other clinical and administrative tools we use, as well as our own legal, ethical, professional, and clinical recordkeeping obligations.

Website form submissions, emails, voicemails, and administrative communications may be retained as part of practice operations.

If you become a client, some inquiry, intake, administrative, billing, or scheduling information may become part of your clinical or billing record. Clinical records, if applicable, are retained according to legal, ethical, professional, and clinical requirements. Clinical records may not be deleted upon request if retention is required or permitted by law.

13. Security

We take reasonable administrative, technical, and physical steps to protect information collected through the website.

However, no website, email system, form, analytics tool, advertising tag, telehealth platform, phone system, voicemail system, or electronic communication method is completely secure. We cannot guarantee that information transmitted through the website or ordinary electronic communications will be completely protected from unauthorized access.

Please use discretion when deciding what information to send electronically. Do not use the website, email, voicemail, or contact forms for emergencies, urgent clinical concerns, or detailed clinical disclosures.

14. Your Choices

You may choose not to submit personal information through the website. You may contact us by phone if you prefer not to use a website form.

You may also be able to:

  • Disable cookies through your browser settings

  • Use available analytics opt-out tools

  • Adjust your browser or device settings to limit certain advertising identifiers or cross-site tracking

  • Request correction of inaccurate contact information

  • Ask questions about how website information is used

  • Request deletion of certain website inquiry information, subject to legal, ethical, clinical, billing, recordkeeping, safety, or compliance limits

Privacy-related requests may be sent to: admin@northstarpsychdc.com.

If your request involves protected health information or clinical records, it may be handled under our HIPAA Notice of Privacy Practices, informed consent documents, and applicable law.

15. Children’s Privacy

Our website is intended for individuals seeking information about therapy services for adults and teens. It is not intended for use by young children.

We do not knowingly collect personal information from young children through the website without appropriate consent. If a parent or guardian believes a child has submitted information through the website, they may contact us at: admin@northstarpsychdc.com.

16. Links to Other Websites

Our website may include links to third-party websites, resources, directories, maps, articles, professional organizations, crisis resources, or other online services.

We are not responsible for the privacy practices, security, or content of third-party websites. We encourage visitors to review the privacy policies of any third-party websites they use.

17. Data Breaches and Security Incidents

If we become aware of a security incident involving personal information, we will evaluate the incident and provide notifications as required by applicable law.

A security incident involving protected health information may require assessment and notification under HIPAA. Other personal information may be subject to District of Columbia or other applicable breach-notification laws.

If a security incident involves personal information of District of Columbia residents, we will evaluate notification obligations under DC law, including any required notice to affected individuals and the Office of the Attorney General.

18. Visitors Outside Washington, DC

North Star Psychological Services, PLLC is based in Washington, DC. Our website is intended primarily for individuals seeking information about services connected to our Washington, DC practice.

If you access the website from outside Washington, DC, or outside the United States, you understand that information may be processed in the United States, where privacy laws may differ from those in your location.

19. Changes to This Website Privacy Policy

We may update this Website Privacy Policy from time to time to reflect changes in our practices, website tools, legal obligations, or services.

When we update this Website Privacy Policy, we will revise the “Last Updated” date at the top of the page. Continued use of the website after an update means you acknowledge the revised policy.

20. Contact Us

For questions about this Website Privacy Policy, website privacy practices, or privacy-related requests, please contact us:

North Star Psychological Services, PLLC
1350 Connecticut Avenue NW, Suite 203
Washington, DC 20036
United States

Privacy Contact: Jennifer Spatzer
Email: admin@northstarpsychdc.com