Last Updated: [April, 2025]
This Privacy Policy discloses the information practices of Cortica applicable to the information provided or obtained through this website and any associated websites, including any electronic forms contained therein (collectively, the “Website”). For purposes of this Privacy Policy, “Cortica” includes all Cortica-branded centers and affiliates, and its/their affiliates, subsidiaries, investors, officers, directors, employees, agents, representatives, and assigns.
By accessing or using our Website, you consent to the collection, use, and sharing of your personal information as described in this Privacy Policy.
1. Scope & Relationship to Other Policies
Scope: This Privacy Policy applies to personal information collected online through the Website.
Healthcare/PHI: Some personal information, such as Protected Health Information (“PHI”), may be governed by our Notice of Privacy Practices (HIPAA-related) rather than by this policy. Please consult our Notice of Privacy Practices for information on how we handle PHI.
Changes: We may update this Privacy Policy at any time. The “Last Updated” date at the top reflects the date of the most recent changes.
2. Notice at Collection
Pursuant to the California Consumer Privacy Act (“CCPA”) as amended by the California Privacy Rights Act (“CPRA”), we must provide a “Notice at Collection” describing the categories of personal information we collect and the purposes for which we use it.
Categories of Personal Information We Collect
Identifiers (e.g., name, email address, postal address, phone number, IP address).
Financial Information (e.g., credit card number, billing address) when you pay for services.
Internet/Electronic Activity (e.g., browsing history on our Website, device information, cookies).
Geolocation Data (if you grant permission, e.g., approximate location).
Professional or Employment-Related Information (if you choose to provide it, such as a résumé submission).
Inferences Drawn from the above (e.g., preferences or characteristics based on your interactions with our Website).
Protected Health Information (“PHI”): Where applicable, such data is subject to our Notice of Privacy Practices.
We retain personal information for as long as necessary to fulfill the business or commercial purposes outlined in this Policy (or as required by law), which may vary by data category. For specific retention periods, see “Data Retention” below.
Purposes for Collection
We collect and use your personal information for one or more of the following business or commercial purposes:
To provide and manage services requested by you (including billing, payment processing, and scheduling).
To communicate with you about Website updates, Cortica services, or relevant notices.
To personalize your experience, including delivering targeted advertisements (if applicable).
To secure and maintain our Website (e.g., fraud detection and prevention).
To analyze usage and improve our services, marketing, and Website functionality.
To satisfy legal, regulatory, or contractual obligations.
If you choose not to provide certain requested personal information, some Website features may be unavailable.
3. How We Collect Your Information
Directly from You: When you complete forms on our Website, make a purchase or payment, request information, or communicate with us (by email, phone, etc.).
Automatically: Through cookies, web beacons, log files, and similar technologies as you navigate our Website. These capture device information, browsing patterns, and usage data.
From Third Parties: Our service providers (e.g., payment processors, analytics), or if you authorize third parties to share information with us (e.g., sign in via a social media account).
If you submit or post information in public forums, message boards, or testimonials on our Website, such information may be publicly viewable, so please exercise caution.
4. Use of Tracking Technologies
We and our service providers use cookies, web beacons, tokens, and similar technologies to:
Facilitate access and account management, including remembering preferences and user authentication.
Analyze Website usage for performance and improvement (via Google Analytics or similar).
Deliver personalized content and advertisements.
Measure the effectiveness of our marketing campaigns.
If you would prefer not to accept cookies, you can use our cookie consent management tool (where available). Moreover, most browsers will allow you to change the setting of cookies by adjusting the settings on your browser to: (i) notify you when you receive a cookie, which lets you choose whether or not to accept it; (ii) disable existing cookies; or (iii) set your browser to automatically reject cookies. Be aware that disabling cookies may negatively affect the functionality of this and many other websites that you visit. Disabling cookies will usually result in also disabling certain functionalities and features of the Services.
Depending on your device and operating system, you may not be able to delete or block all cookies. In addition, if you want to reject cookies across all your browsers and devices, you will need to do so on each browser on each device you actively use. These settings will typically be found in the "options" or "preferences" menu of your browser. In order to understand these settings, the following links may be helpful, otherwise you should use the "Help" option in your browser for more details.
Cookie settings in Internet Explorer(Link is external) (Link opens in new window) Cookie settings in Firefox(Link is external) (Link opens in new window) Cookie settings in Chrome(Link is external) (Link opens in new window) Cookies settings in Safari web(Link is external) (Link opens in new window) and iOS(Link is external) (Link opens in new window)
You may also set your email options to prevent the automatic downloading of images that may contain technologies that would allow us to know whether you have accessed our email and performed certain functions with it.
If you would like to find out more about cookies and other similar technologies, please visit www.allaboutcookies.org. or the Network Advertising Initiative's online sources at www.networkadvertising.org(Link is external) (Link opens in new window).
5. Sharing and Disclosure of Personal Information
We disclose personal information for business or commercial purposes to:
Service Providers/Contractors: These entities process personal information on our behalf under written contracts (e.g., payment processors, cloud hosting, analytics providers).
Affiliates: Companies related by common ownership or control.
Legal or Regulatory Authorities: When required by law, court order, or to protect Cortica’s rights or property.
Business Transfers: In the event of a merger, acquisition, or asset sale, your information may be transferred to a successor entity.
With Your Consent: Or if the disclosure is otherwise consistent with this Policy or permitted by law.
Sale or Sharing of Personal Information
Under the CCPA/CPRA, “sale” or “sharing” is defined broadly.
Sale: The exchange of personal information for monetary or other valuable consideration.
Sharing: Disclosing personal information for cross-context behavioral advertising (targeted ads) purposes.
Cortica does not sell personal information as defined by the CCPA/CPRA. If this practice changes, we will update this Privacy Policy and provide an opt-out mechanism.
We also do not share personal information for cross-context behavioral advertising. If we begin to do so, we will provide a “Do Not Sell or Share My Personal Information” link on our homepage.
6. Your California Privacy Rights
If you are a California resident, you may have the following rights regarding your personal information, subject to certain limitations:
Right to Know/Access: Request that we disclose the categories or specific pieces of personal information we have collected, used, disclosed, or sold about you in the past 12 months.
Right to Delete: Request that we delete personal information we have collected from you, subject to certain exceptions.
Right to Correct: Request that we correct inaccurate personal information about you.
Right to Opt-Out of Sale/Sharing: If we ever sell or share your personal information (as defined by CPRA), you can direct us to stop.
Right to Limit Use of Sensitive Personal Information: If we collect Sensitive Personal Information (“SPI”) and use it for non-exempt purposes, you have the right to limit such use.
Right to Non-Discrimination: We will not discriminate against you for exercising any of these rights.
How to Exercise Your Rights
Email: privacy@corticacare.com
Verification: We may need to verify your identity before fulfilling certain requests (e.g., confirming specific pieces of personal information).
Authorized Agents: You may designate an authorized agent to make a request on your behalf by providing written authorization or a valid power of attorney.
We will respond to verifiable consumer requests within the time frames required by law, typically 45 days, with a possible extension of an additional 45 days if necessary.
7. Right to Limit Use/Disclosure of Sensitive Personal Information
Certain personal information you provide may be categorized as Sensitive Personal Information (“SPI”) under CPRA (e.g., government identifiers, precise geolocation, health information).
We use SPI only for purposes permitted by law (e.g., to provide services, detect fraud, ensure security, etc.).
If our use of your SPI goes beyond these “necessary” purposes, you have the right to limit that use. We will provide a “Limit the Use of My Sensitive Personal Information” link if/when it becomes relevant.
8. Data Retention
We keep your personal information for as long as reasonably necessary to fulfill the purposes for which it was collected, including to meet legal, regulatory, or other compliance obligations. The retention period may vary depending on the category of data and the context in which it was collected.
Billing information: Retained as required by financial and accounting regulations.
Service inquiries: Retained for as long as needed to address your requests.
Legal obligations: Extended retention if needed for regulatory, legal, or security purposes.
9. Security Measures
We use reasonable administrative, technical, and physical security measures to protect personal information. These measures may include encryption of sensitive information (e.g., credit card details) and secure data storage.
However, no method of transmission or electronic storage is 100% secure. We cannot guarantee absolute data security, and you agree that you provide your personal information at your own risk.
10. Children’s Privacy
This Website is not directed to individuals under 18 years of age, and we do not knowingly collect personal information from such individuals. If we discover we have inadvertently collected personal information from someone under 18, we will promptly delete it unless legally obligated to retain it. If you believe we may have collected personal information from a minor, please contact us at privacy@corticacare.com.
11. Public Forums & Testimonials
Information you disclose on public areas of the Website (e.g., message boards, blogs, or comment sections) may be viewed by other users or the public. Exercise caution when posting information publicly.
In alignment with BACB ethical guidelines, Cortica does not permit clinical employees to solicit or use testimonials about behavior-analytic services from current patients on their web pages or in any other electronic or print material. For information on patient stories or media releases, please consult our terms in the Notice of Privacy Practices.
12. Marketing Communications & Choices
By using the Website, you consent to receive certain marketing or administrative emails from us or third parties acting on our behalf. You may opt out of marketing emails at any time by clicking “unsubscribe” in the email or contacting us at privacy@corticacare.com. Please note:
Opting out of our marketing emails does not automatically opt you out of third-party communications initiated by you or delivered by third-party providers.
We may still send you transactional or administrative messages (e.g., service updates, appointment reminders, payment confirmations).
13. Non-Discrimination
We will not discriminate against any consumer for exercising their privacy rights, such as by denying services, charging different prices, or providing a different level or quality of services—unless otherwise permitted by law (e.g., limited programs that are directly related to the value of the data).
14. Third-Party Websites
Our Website may contain links to third-party sites. We are not responsible for the privacy practices of those websites. We encourage you to review their privacy policies before disclosing information. Cortica expressly disclaims any liability for controversies, claims, or damages arising from third-party websites or their content.
15. International Users
Our Website is operated from the United States. If you are visiting from outside the U.S., please note that your personal information may be transferred to and processed in the U.S. and other countries where our service providers operate. Your use of our Website indicates your consent to this transfer.
16. Business/B2B & Employee Data
For business-to-business (B2B) contacts or our own employees, the CPRA extends certain rights to personal information collected in these contexts. Where required by law, we will provide a separate Employee or B2B Privacy Notice outlining how we collect and use that information, and how individuals can exercise any applicable rights.
17. Contact Us
If you have any questions about this Privacy Policy, your personal information, or to submit a request under the CCPA/CPRA, you may contact us at:
Email: privacy@corticacare.com
Mail:
Cortica, Inc.
6160 Cornerstone Court East, Suite 100
San Diego, CA 92121
Attn: Cortica Privacy Officer
We will make every effort to respond promptly and to address your concerns.
End of Privacy Policy