This Privacy Policy explains what information ITSCO.health collects, how we use it, and when we share it. It also describes important privacy rights related to health information.
ITSCO.health is part of The Mental Range Collective, which includes ITSCO and related programs and operations.
1) Scope (What This Policy Covers) This Policy covers information collected through:
● ITSCO.health (website, portals, and related digital features)
● communications you have with us (including text messages)
● and, if you receive services, information that may be Protected Health Information (PHI) under HIPAA
If there is a conflict between this Policy and any signed consent/authorization you provide, the signed consent/authorization controls for that specific situation.
2) Key Privacy Promises (Twilio-Focused)
● We do not sell your personal information or PHI.
● We do not share your personal information or text message content with third parties for their independent marketing or advertising purposes.
● We do not use or disclose PHI for marketing purposes unless you give us explicit authorization.
● We may share information only as needed to provide services (for example, with service providers who help us operate ITSCO.health under strict contractual privacy obligations), or as required/permitted by law.
3) Information We Collect
A) Information you provide to us
Depending on how you use ITSCO.health, we may collect:
● Contact details (name, email, phone number, address)
● Account and login information
● Scheduling and service-related details
● Communications you send to us (including portal messages and texts)
● Payment-related information (if applicable)
If you are receiving services, some of the information you provide may be PHI.
03-04-2026 PAGE 1
B) Automatically collected information (website/app usage)
When you access ITSCO.health, we may automatically collect usage and device information such as:
● IP address, device type/identifiers, browser type/language
● Pages viewed, time spent, click activity, dates/times of access
● Referring/exit pages and diagnostic information
C) Cookies and analytics
We may use cookies and similar technologies to operate and improve ITSCO.health, including analytics tools that help us understand how visitors use the site.
You can usually control cookies through your browser settings. If you disable cookies, some features may not work properly.
D) Texting / SMS information
If you opt in to texting, we may collect:
● Your mobile number
● Message content you send/receive with us
● Message metadata (timestamps, delivery status)
Message and data rates may apply based on your carrier and plan.
4) How We Use Information
We use information for purposes such as:
● Providing, coordinating, and managing care and related services (treatment)
● Billing and receiving payment (payment)
● Running and improving operations, quality improvement, internal management (health care operations)
● Communicating with you about scheduling, services, and operational needs (including reminders and coordination)
● Maintaining security, preventing fraud/abuse, and enforcing policies
● Complying with legal obligations
5) When We Share Information
A) Service providers (vendors)
We may share information with service providers who perform services on our behalf (for example: billing support, cloud storage, communications platforms, or analytics). These providers are required by contract to protect the information and may only use it to provide services to us. If PHI is involved, we require HIPAA-appropriate safeguards and agreements when applicable.
B) Legal requirements and public safety
We may disclose information as required or permitted by law (for example: court orders/subpoenas, required reporting, oversight activities, and serious threats to health/safety).
C) With your authorization
If we want to use or disclose PHI for a purpose not described in this Policy, we will ask for your written authorization. You may revoke your authorization in writing, subject to legal limitations.
6) Marketing, Advertising, and Sale of Information
● We do not sell PHI.
● We do not use or disclose PHI for marketing unless you authorize it.
● We do not share your personal information or text message content with third parties for their independent marketing/advertising.
We may communicate with you about scheduling, services, administrative notices, or service-related updates. That is not third-party marketing.
7) Sensitive Information (Extra Protections)
Some information may have extra protections under federal/state law, including substance use disorder records, psychotherapy notes, and certain confidential mental health communications.
8) Your HIPAA Privacy Rights (If We Maintain PHI About You)
You may have rights regarding your PHI, including:
● The right to inspect and get a copy of your records
● The right to request an amendment to incorrect/incomplete records
● The right to request an accounting of certain disclosures
● The right to request restrictions on certain uses/disclosures (limits apply)
To exercise rights, contact the Privacy Officer (Section 12).
9) Security
We use reasonable administrative, technical, and physical safeguards to protect information. However, no internet-based system can be guaranteed 100% secure.
10) Children and Minors
ITSCO serves children and families. We follow applicable laws and appropriate consent processes for minors. In some cases, certain records may be protected from parent/guardian access under applicable law.
11) Changes to This Privacy Policy
We may update this Policy from time to time. When we do, we will update the “Last Updated” date and post the revised Policy on ITSCO.health.
12) Contact (Questions, Requests, or Complaints)
Privacy Officer, The Mental Range Collective
Michael Mendez
437 Windchime Place
Colorado Springs, CO 80919
833-444-8726
PO@ITSCO.health