Legal & Privacy

Privacy
Policy

Effective Date: June 1, 2026  ·  Peniel Mental & Behavioral Health PLLC

Your privacy is sacred to us. This policy explains how we collect, use, protect, and respect your personal health information in full compliance with HIPAA and applicable federal and state laws.

HIPAA Compliant
Encrypted & Secure
Patient-First
Privacy Policy – Peniel Mental Health
Your Information Is Protected

We never sell or share your data without consent.

Jump to Section
01Information We Collect 02How We Use It 03HIPAA Rights 04Data Protection 05Third Parties 06Cookies 07Minors 08Contact Us
01
Section 01

Information We Collect

At Peniel Mental & Behavioral Health PLLC, we collect information necessary to provide you with safe, effective, and personalised psychiatric care. The types of information we may collect include:

  • Personal Identifiers: Full name, date of birth, address, phone number, and email address.
  • Protected Health Information (PHI): Diagnoses, treatment records, medication history, clinical notes, and session summaries.
  • Insurance & Financial Information: Insurance policy details, billing records, and payment information.
  • Technical Data: IP addresses, browser type, device identifiers, and usage data when accessing our website or telehealth platform.
  • Communications: Emails, messages, and notes submitted through our contact forms or patient portal.
Our CommitmentWe collect only the minimum necessary information required to deliver exceptional care. We never collect data for marketing purposes without your explicit consent.
02
Section 02

How We Use Your Information

Your information is used solely to provide, coordinate, and improve the care and services you receive at Peniel Mental & Behavioral Health PLLC. Specifically, we use your information to:

  • Provide psychiatric evaluations, medication management, and telepsychiatry services.
  • Coordinate care with other healthcare providers you authorise us to communicate with.
  • Process insurance claims and billing in connection with your treatment.
  • Send appointment reminders, follow-up communications, and care-related notifications.
  • Maintain accurate and complete medical records as required by law.
  • Improve the safety, quality, and effectiveness of our services through internal analysis.
  • Comply with legal and regulatory obligations under federal and Texas state law.
We Will NeverSell, rent, trade, or disclose your personal or health information to any third party for commercial purposes — ever.
03
Section 03

Your HIPAA Rights

As a patient, you are protected by the Health Insurance Portability and Accountability Act (HIPAA). You have the following rights regarding your Protected Health Information (PHI):

  • Right to Access: Request and receive a copy of your health records in paper or electronic format.
  • Right to Amend: Request corrections to your health records if you believe they are inaccurate or incomplete.
  • Right to Restrict: Request that we limit how we use or share your PHI for treatment, payment, or operations.
  • Right to Confidential Communications: Request that we contact you using a specific method or at a specific location.
  • Right to an Accounting: Request a list of disclosures we have made of your PHI.
  • Right to a Notice: Receive a written copy of this Privacy Policy and our Notice of Privacy Practices.
  • Right to File a Complaint: File a complaint with us or with the U.S. Department of Health and Human Services if you believe your rights have been violated.

To exercise any of these rights, please contact our privacy officer directly. We will respond to all valid requests within 30 days.

04
Section 04

How We Protect Your Data

We take the security of your health information with the utmost seriousness. Our security measures include both technical and organisational safeguards designed to prevent unauthorised access, disclosure, or misuse of your information.

  • All electronic health records are stored on HIPAA-compliant, encrypted platforms with restricted access controls.
  • Our telehealth platform uses end-to-end encryption for all video sessions and communications.
  • Access to patient records is strictly limited to authorised clinical and administrative staff only.
  • All staff members receive ongoing HIPAA training and privacy compliance education.
  • We perform regular security reviews and risk assessments of our systems and processes.
  • Physical records, where applicable, are stored in secured, access-controlled facilities.
Security Incident ResponseIn the unlikely event of a data breach affecting your PHI, we will notify you as required by HIPAA’s Breach Notification Rule within the required timeframes.
05
Section 05

Third-Party Disclosures

We may share your information only under the following limited and lawful circumstances. In all cases, we require that any third party receiving your information maintains appropriate safeguards consistent with HIPAA and applicable law.

  • Treatment Coordination: With other treating providers you authorise us to communicate with for continuity of care.
  • Insurance & Billing: With your insurance company or billing service solely to process claims related to your treatment.
  • Legal Requirements: When required by law, court order, or governmental authority, including mandatory reporting obligations.
  • Business Associates: With HIPAA-compliant business associates (such as our telehealth platform provider) under strict data use agreements.
  • Public Health Duties: To public health authorities as required by law for disease prevention and control.
  • With Your Written Consent: For any purpose beyond those listed above, we will always obtain your explicit written authorisation first.
06
Section 06

Cookies & Website Data

Our website uses standard cookies and analytics tools to improve your browsing experience and understand how visitors interact with our site. We use this information to improve our services, not to identify individual users.

You may disable cookies through your browser settings at any time. Doing so will not affect your ability to receive care or access our clinical services. We do not use cookies to track your health information or activities outside of our website.

07
Section 07

Minors

We provide services to individuals aged 8 and above. For patients under 18, a parent or legal guardian must provide written consent for treatment and has the right to access their child’s health records in accordance with applicable law.

In certain circumstances, Texas law may permit minor patients to receive specific types of care confidentially. Our providers will guide families through these requirements with sensitivity, clarity, and respect.

08
Section 08

Contact Our Privacy Team

If you have any questions about this Privacy Policy, wish to exercise your rights, or need to report a privacy concern, please reach out to us. We are committed to responding promptly and transparently.

Peniel Mental & Behavioral Health PLLC
9896 Bissonnet St, Suite 315, Houston, TX 77036
Phone: (346) 318-5725
Fax: (713) 405-2722
Email: penielmbh@gmail.com
www.penielmentalhealth.com

This Privacy Policy was last updated on June 1, 2026. We reserve the right to update this policy periodically. Any changes will be posted on this page with a revised effective date.

Questions About Your Privacy?

We are here to help. Our team takes your rights and your privacy seriously — always.

Contact Us