Privacy Policy

PRIVACY POLICY AND NOTICE OF PRIVACY PRACTICES

(Privacy Policy last updated June 25, 2026)

Elite Performance EMDR (“we” or “us” or “our”) is committed to protecting and preserving the privacy of our website visitors and the confidentiality of our clients. This policy, together with our Terms of Use and Conditions, sets out the basis on which any personal data we collect from you (as a website visitor) or that you provide to us (as a website visitor or prospective client), will be processed by us when using http://EliteEMDR.com, and any other websites, mobile applications, other applications, and social media platforms controlled by us (collectively, the “Site”).

By using the Site, you are accepting the practices described in this Privacy Policy and Notice of Privacy Practices (“Privacy Policy”). Please note that this Privacy Policy primarily applies to your interactions with our Site as a visitor. For clients receiving therapeutic services, a separate and more detailed Notice of Privacy Practices regarding your Protected Health Information (PHI) will be provided and reviewed during the intake process, in accordance with the Health Insurance Portability and Accountability Act (HIPAA) and applicable state laws.

This Privacy Policy only applies to this Site and does not apply to any third-party websites, services or applications, even if they are accessible through our Site.

By using this Site, you consent to the use of information that you provide us in accordance with this Privacy Policy. We update this Privacy Policy from time to time, so please review this Privacy Policy regularly. If we materially alter our Privacy Policy, we will notify you of such changes by posting a notice on our Site. You are advised to consult this Privacy Policy regularly for any changes. Your continued use of the Site following the posting of changes will constitute your acknowledgment of the changes. If you do not agree with the changes, then you should stop using the Site.

We have structured our Site so that you can visit it without identifying yourself or revealing any personal information. If you choose to provide us with information by which you can be identified, you can be assured that it will only be used in accordance with this Privacy Policy.

If you contact us through the Site or other means, we may keep a record of your contact information and correspondence. We may also use your email address and any other information you provide in your message to respond to you.

Website Privacy Notice (for general visitors)
Please read this Privacy Policy carefully to fully understand how we collect, share, and protect information about you as a visitor to our Site. This Privacy Policy is incorporated into and is a part of the Terms of Use and Conditions of this Site. To access the Terms of Use and Conditions, click here.

By accessing and using the Site, you agree that you have read and understand this Privacy Policy and that you accept and consent to the privacy practices and uses or disclosures of information about you that are described herein.

To deliver personalized and relevant information to you through our Site, we or third-party services collect certain information from users. Please do not provide any sensitive or confidential health information, including Protected Health Information (PHI), through general contact forms, unencrypted emails, or any public sections of this Site. If you should do so inadvertently, we will use and disclose that information in the same manner as any other non-confidential information you provide to us (e.g., to respond to your inquiry), but cannot guarantee its security in transit outside of our secure client portal.

Information We Collect
In operating our Site, we may collect and process the following data about you as a website visitor:

• Website Usage Data: Details of your visits to our Site and the resources that you access, including, but not limited to, traffic data, location data, weblogs, and other communication data, including your IP address, the date and time you accessed or left the Site, your internet browser and device type, enabling benchmarking and technical support, and which pages you viewed. This Site uses cookies and reporting software from Squarespace, Google Analytics, and potentially other third-party analytics services, to deliver its services and analyze general Site traffic based on your usage. Your IP address and usage may be shared with Squarespace, Google Analytics, and any other third-party services, along with other performance and security metrics of your visit, to ensure quality of service, generate usage statistics, detect and address abuse, and improve user experience.

• Information You Provide Directly: Information that you provide directly to us by filling in forms on our Site (for example, to contact us, you must provide your name, email address, telephone number, and other information), or other means of providing personal data. We advise you not to provide any special or sensitive personal data or Protected Health Information (PHI) through general contact forms, emails, and other non-secure communications.

We use the information we collect from website visitors for various purposes, and we rely on specific legal bases to do so under applicable data protection laws:

• To Provide and Maintain Our Service: We process your data to operate our Site and provide you with information about our services. Legal Basis: Legitimate Interest in operating our business.

• To Communicate with You: We use your contact information to respond to your inquiries and provide you with information you request. Legal Basis: Your Consent, as given when you contact us.

• To Improve Our Site and Services: We analyze usage data to understand trends, monitor site performance, and improve the user experience. Legal Basis: Legitimate Interest in developing our products and services.

• For Security and Fraud Prevention: We use technical data to protect the security of our Site and to prevent and investigate potential abuse. Legal Basis: Legitimate Interest in protecting our assets and users.

• To Comply with Legal Obligations: We may process your information where we are legally required to do so, such as in response to a court order or subpoena. Legal Basis: Compliance with a Legal Obligation.

How We Use Cookies

A “cookie” is a piece of text that asks permission to be placed on your computer’s hard drive or other form of memory, whether temporary or not. Once you agree, this cookie file is stored on your computer. They help us and our affiliates to improve our Site. They ensure that the content from our Site is presented in the most effective manner for you and your computer.

Computers, phones, and web browsers have the ability to decline cookies. This can be done by activating the setting in your web browser that allows you to decline cookies. Although most Internet browsers automatically accept Cookies, you can instruct your browser, by editing its options, to stop accepting Cookies or to prompt you before accepting a Cookie from the websites you visit. You may also delete the cookies used by this Site through your web browser. Note that this Privacy Policy covers only our use of Cookies and does not include the use of Cookies by other third parties. Please note that should you choose to decline cookies, you may be unable to access particular parts of our Site.

Use of Your Information (Website Visitors)

The information we collect and store about you as a website visitor is primarily used to enable us to provide our website services to you in the best possible manner. In addition, we may use the information for the following purposes:

• To provide you with information relating to our services;

• To provide third parties with statistical information about the users of our Site (i.e., to Google Sites, Google Analytics, etc.);

• To monitor and conduct an analysis of our Site traffic and usage patterns based on aggregated or anonymized data;

• To analyze trends;

• To investigate and help prevent security issues and abuse of our services; and

• To analyze your behavior and submitted data while using this website and tools to improve our products and services.

Note that your browser settings may allow you to automatically transmit a “Do Not Track” signal to sites and online services you visit. There is no consensus among industry participants as to what “Do Not Track” means in this context. Like many websites and online services, we currently do not alter our practices when we receive a “Do Not Track” signal from a visitor’s browser. To learn more about “Do Not Track,” please visit http://www.allaboutdnt.com.

Google Analytics cookies are used to measure Site visits and usage. We have entered a data processing agreement with Google, and only anonymized IP addresses are used. You can opt out of Google Analytics by using Google’s opt-out browser add-on: https://support.google.com/analytics/answer/181881.

For the main website, www.EliteEMDR.com, Google Sites and its hosting tools do not provide public users a direct means to turn off tracking for its websites, except for what is provided in the Do Not Track options for your web browsers. Inquiries regarding Google Sites data usage should be directed to Google Sites.

Security

To ensure the security of your information, we have implemented commercially suitable physical, electronic, and managerial procedures to safeguard and protect the data we collect on our Site. For Protected Health Information (PHI) processed through our secure client portal (e.g., Sessions Health) or electronic health record (EHR) system, we employ additional, robust security measures in compliance with HIPAA.

Nonetheless, the transmission of information via the Internet is not completely secure; therefore, we cannot guarantee the security of data sent to us electronically on our general Site (e.g., via unencrypted contact forms), and the transmission of such data is entirely at your own risk.

In the event of a security system breach compromising your unencrypted personal information collected through this Site, we will notify you and the appropriate regulatory agencies as required by applicable state and federal laws, including California Civil Code Section 1798.82, so that you can take appropriate protective steps. Please note that breaches involving Protected Health Information (PHI) are governed by separate protocols outlined in our Notice of Privacy Practices, in strict accordance with HIPAA and applicable California healthcare laws.

Data Retention
We will retain your personal information (as a website visitor) only for as long as is necessary for the purposes set out in this Privacy Policy. We will retain and use your information to the extent necessary to comply with our legal obligations (for example, if we are required to retain your data to comply with applicable laws), resolve disputes, and enforce our legal agreements and policies. Usage data collected automatically is generally retained for a shorter period, except when it is used to strengthen security or improve the functionality of our Site, or when we are legally obligated to retain this data for longer periods.

For Protected Health Information (PHI) collected from clients receiving therapy services, data retention periods are governed by HIPAA, state licensing board requirements, and other applicable healthcare laws. These retention periods are typically much longer and are outlined in your separate Notice of Privacy Practices and Informed Consent.

International Data Transfers

Your information, including personal data, may be transferred to, and maintained on, computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ from those of your jurisdiction. If you are located outside the United States and choose to provide information to us, please note that we transfer the data, including personal data, to the United States for processing and storage. Our principal place of business and domicile is California, United States, where we conduct our operations. Your consent to this Privacy Policy, followed by your submission of such information, represents your agreement to that transfer.

Disclosing Your Information
Where applicable, we may disclose your personal information (as a website visitor) to any affiliated business entities or third parties necessary to provide products and website services to you. This includes, where applicable, our subsidiaries and our holding company and its other subsidiaries (if any), as well as third parties involved in the administration and operation of our website products and services (e.g., website hosting, analytics providers).

We may also disclose your personal information to third parties:

• Where we sell any or all of our business and/or our assets to a third party.

• Where we are legally required to disclose your information.

• When we are contractually obligated to disclose it (e.g., to our website hosting provider).

For Protected Health Information (PHI) of clients, disclosure is strictly governed by HIPAA and applicable state laws, as outlined in your separate Notice of Privacy Practices and Informed Consent. Such disclosures require client authorization, are for treatment, payment, or healthcare operations, or are otherwise permitted or required by law (e.g., mandated reporting).

Compliance with Laws and Law Enforcement

Elite Performance EMDR cooperates with government and law enforcement officials, as well as private parties, to enforce and comply with the law. We may disclose any information about you, including personally identifiable information to government or law enforcement officials or private parties as we, in our sole discretion, believe necessary or appropriate to respond to claims, legal process (including subpoenas), to protect the property and rights of Elite Performance EMDR or a third party, the safety of the public or any person, to prevent or stop any illegal, unethical, or legally actionable activity, or to comply with the law.

For client Protected Health Information (PHI), any disclosures to law enforcement or government officials are made strictly in accordance with HIPAA regulations and other applicable state and federal laws regarding mandatory reporting and client confidentiality.

Business Transfers
If any or all of the assets of Elite Performance EMDR are acquired by, or merged with, another entity, we will share some or all of your information (including website visitor data and, under strict HIPAA-compliant business associate agreements, client PHI) with this entity.

Third-Party Website and Interaction
By accessing other third-party websites or applications through our Site, you are consenting to the terms and privacy policies of those websites. We do not accept any responsibility or liability for their policies whatsoever, as we have no control over them.

Users Only of Legal Age of Majority
Our Site is designed and intended for those who have reached the age of majority (18 years of age). By using our Site, you affirm that you are at least 18 years of age or older. We are not liable for any damages that may result from a user’s misrepresentation of age.

Our Site is not intended for individuals aged 17 years or younger. We do not knowingly collect personal information from individuals aged 17 years or younger. If we become aware that we have collected personal information from an individual aged 17 years or younger without verification of parental consent, we will take steps to remove that information if possible (we use third-party services such as Google) that may prevent our Site from being able to disclose this information without going through the third-party services directly). If you are a parent or guardian and believe your child has provided us with personal information, please contact us.

Our Site and/or service does not intend to collect data about visitors/users who are aged 17 years or younger without permission from parents or guardians. We cannot verify whether a visitor is aged 17 years or younger. We encourage parents to be involved in their children’s online activities to prevent the collection of data about children without parental consent.

No one aged 13 years or under is authorized to submit any information, including personally identifiable information, on our Site. Under no circumstances may anyone aged 13 years or under use our Site.

We do not intend to collect personal information as defined by the U.S. Children’s Privacy Protection Act (“COPPA”) (“Children’s Personal Information”) in a manner that COPPA does not permit, and for any children’s or mixed-use portions of the Site (if any), we will comply with COPPA. If you are a parent or guardian and believe we have collected Children’s Personal Information in a manner not permitted by COPPA or other similar regulations, please contact us by sending a letter to the address listed below (Attention: Legal), and we will remove such data to the extent required by COPPA or other regulations if stated that are within our control and means to do so.

Parents may wish to consider commercially available parental control protections to limit what minors can access online. Examples include: www.netnanny.com; www.webwatcher.com; and www.sentrypc.com. We do not endorse and are not responsible for these third-party services.

Your Data Protection Rights (Website Visitors)

Depending on your location and the laws of your jurisdiction, you may have the following rights regarding your personal data collected as a website visitor:

• The right to access: You have the right to request copies of your personal data.

• The right to rectification: You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.

• The right to erasure (also known as the “right to be forgotten”): You have the right to request that we delete your personal data under certain conditions.

• The right to restrict processing: You have the right to request that we restrict the processing of your personal data, under certain conditions.

• The right to object to processing: You have the right to object to our processing of your personal data, under certain conditions.

• The right to data portability: You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.

If you wish to inquire about or exercise these rights, please contact us using the contact details provided below. Although we do not directly require personal information from you (beyond basic contact forms) and are limited to the information provided to us by Google Sites, Google Analytics, etc., should you wish to receive details that we hold about you, please contact us using the contact details below and provide enough detail for us to determine the information provided by Google Sites, Google Analytics, etc., if feasible without encroaching on other users’ protections and rights. Please note that we may ask you to verify your identity before responding to such requests. Please note that, for all intents and purposes, we are located and operate solely in the United States, specifically in the state of California.

Please note that much of the automated data collected during your use of the Site is processed and stored by third-party service providers (e.g., Google Sites, Google Analytics). We will assist you in exercising your rights by providing the information we directly control.

For clients receiving therapy services, your rights regarding your Protected Health Information (PHI) are more extensive and are specifically outlined in the HIPAA-compliant Notice of Privacy Practices provided to you during intake.

If you have any complaints about our Site, please inform us as soon as possible at the address below.

Contacting Us

We welcome any queries, comments, or requests you may have regarding this Privacy Policy and Notice of Privacy Practices. Please do not hesitate to contact us at:

Elite Performance EMDR
765 N. Main Street

#131-A6

Corona, CA 92878

jennifer@eliteemdr.com