SECTION 1: INFORMATION AND PERSONAL DATA COLLECTED
1.1. We collect the following information about you when you engage our services, register for an account, register for our training or seminars, book/schedule an appointment, take our online tests, use our telepsychology platform, and when you transact with us regarding our services. Information we collect and store include:
1.2. Our website and telepsychology platform also automatically track information such as internet protocol (IP) address, browser types, device used to access the site, date and time of access, and location of access. This information is used to monitor transactions and for website analytics.
1.3. Our payment channels (i.e. Mobile Banking, Paymongo, PayPal, or GCash) may collect information related to your payment transactions which may include credit card information, bank account information, billing address, name, contact information, and e-mail. This information is not accessible nor available to us and are solely stored and managed by the payment channels.
SECTION 2: PURPOSE OF PERSONAL DATA COLLECTION
ACPS collects your information and personal data for the following purposes:
2.1. Personal information collected in the course of our services that includes those stated in clause 1.1. of the preceding section are used for case management, patient/client management, technical and customer support, e-commerce and related services, transactions between ACPS and the client, billing, collection of payment, and assisting law enforcement efforts on collecting debts and bills;
2.2. To assist in the development of assessment reports, evaluation reports, or psychological reports;
2.3. To guide treatment planning and decision-making;
2.4. For monthly utilization reports and analytics;
2.5. For information collected in relation to seminars, workshops, or continuing professional development programs, such information may be used for regulatory and reportorial purposes required by regulatory bodies such as the Professional Regulatory Commission; and,
2.6. For outcomes research.
SECTION 3: DISCLOSURE OF INFORMATION AND PERSONAL DATA
3.1. The Center does not disclose information and personal data to third parties, unless we have acquired your written, digital, or recorded consent or as provided by law.
3.2. Professional Information acquired in relation to continuing development programs is transmitted to the Professional Regulation Commission and included in the reportorial requirements set by the said Commission.
3.3. Information and Personal data obtained will be kept confidential, subject to provisions of applicable laws.
SECTION 4: STORAGE, DELETION, AND DISPOSAL OF INFORMATION
4.1. The Center stores your personal data and information within its physical file storages and case files, electronic health records, servers, databases, and storage in relation to the purposes stated in this Policy.
4.2. The Center has contracted the services of third-party providers for our Platforms. Our Platforms store data on their servers which are based in the United States of America. All data on the platforms are encrypted and stored securely and in compliance with privacy laws.
4.3. The Center destroys documents and deletes information related to the availed services one (1) year after the services have been terminated.
4.4. For CPD Programs, we delete personal and professional information one (1) calendar year after the said information have been submitted to the Professional Regulation Commission, when applicable, for reportorial and monitoring purposes.
4.5. We may store information longer if we deem necessary and as permitted by Law. In such cases, documents are anonymized and identifying information are redacted.
4.6. Physical documents containing personal data are stored in secured locations accessible only to the Center’s authorized personnel.
SECTION 5: DATA PROTECTION MEASURES
5.1. The Center makes all reasonable arrangements to ensure that personal data and information that we collect and store are protected against unauthorized access, collection, use, disclosure, copying, modification, disposal, or similar risks. Our employees, mental health service providers, and staff are trained on how to properly handle data.
5.2. Our websites and Platforms use security software, programs, and/or services to help secure the stored data. Unfortunately, transmission of information via the internet is not completely secure. We do our best to protect your data, but we cannot guarantee the security of the data you transmit to our site. Any transmission is at your own risk.
5.3. The client/patient takes personal responsibility for information transmitted to our websites and through e-mail. The Center is not responsible for security of the user’s own browser, internet connection, or device.
SECTION 6: ACCESS TO YOUR INFORMATION
6.1. Our clients have the right to access and request a copy of the information we hold and the ways in which we have used and disclosed that information.
6.2. The Center reserves the right to charge a minimum fee for the access to or the copy of the information.
6.3. Information such as answers to psychological tests, psychological test scores, and information in psychological test materials cannot be provided to the Clients as per policies on the use of test materials.
7.1. The Center shall not be liable for information collected, stored, and disposed by our payment gateways. Payment gateways and systems have their respective Privacy Policies and those shall apply for the data and information they collect and manage.
7.2. The Center shall also not be liable for the handling and storage of information submitted to or collected and stored by regulatory bodies.
7.3. The Center has contracted the services of third-party providers for our Platforms. The third-party providers have been selected with data privacy and security as a primary consideration. Our Platform providers guarantee that their data processing is compliant with privacy laws and the security of data that is collected and stored. However, the third-party Platform providers shall be responsible and takes liability for the security of data collected and stored in their servers and databases.
SECTION 8: NOTIFICATION OF CHANGES