top of page

Privacy Policy &
Notice of Privacy Practice 

Effective Date: March 2, 2026

At Pure Light Behavioral Health Services, your privacy is the cornerstone of our clinical integrity. This notice describes how medical information about you may be used and disclosed and how you can get access to this information. 

1. Our Commitment to Your Digital Sanctuary

We utilize a multi-layered fully encrypted security workstream to protect your Protected Health Information (PHI):

  • Wix Platform & BAA: Our website is hosted on Wix, where we have manually enabled HIPAA compliance features and executed a formal Business Associate Agreement (BAA) to secure all data collected through onsite forms.

  • Spruce Health Integration: For all clinical communication, including messaging and telehealth, we utilize Spruce Health. We have a signed BAA with Spruce, ensuring all patient names, phone numbers, and clinical transcripts are stored in an encrypted, HIPAA-compliant environment.

  • Headway (Insurance & Scheduling): We partner with Headway to manage the administrative Business Office of your care. Headway serves as our secure, HIPAA-compliant portal for insurance verification, real-time scheduling, and billing. We maintain a signed BAA with Headway to ensure your financial and demographic data is handled with the highest integrity.

  • Encrypted Email: All administrative electronic correspondence is conducted via HIPAA-compliant, encrypted email services to ensure transmission security. 

2. Information We Collect

As a provider for stable, low-acuity adults, we collect:

  • Personal Data: Name, contact details, and insurance information.

  • Clinical Data: Health history, DSM-V diagnoses, and medication management records.

  • Technical Data: To maintain site quality, our Wix platform may collect limited technical data (IP addresses/browser type) that is never sold to third parties. 

3. Maryland-Specific Protections (MODPA) 

In accordance with the Maryland Online Data Privacy Act (MODPA), we maintain strict data minimized workstreams: 

  • Prohibition of Sale: We never sell your sensitive or health data for monetary or valuable consideration.

  • Geofencing Protection: We do not utilize geofencing technology to track or target individuals near our mental health facilities.

  • Confidentiality Agreements: All employees and contractors are bound by strict contractual duties of confidentiality before accessing any health data. 

4. Your Rights Under HIPAA

You have the following rights regarding your medical information:

  • Right to Access: You may request to inspect and receive an electronic copy of your medical records.

  • Right to Amend: You may ask us to correct information you feel is inaccurate.

  • Right to Restrict: You may request that we limit how we use or disclose your PHI for treatment or operations.

  • Accounting of Disclosures: You may request a list of times we’ve shared your information for purposes other than treatment or billing. 

5. Contact and Complaints

If you believe your privacy rights have been violated, you may file a complaint with us or the U.S. Department of Health and Human Services. There will be no retaliation for filing a complaint.

Sharon D. Williams, PMHNP-BC
Pure Light Behavioral Health Services, Southern Maryland

Email: info@purelightbhs.com
Secure Messaging via Client Portal: 

 

bottom of page