Privacy Policy

At NeurodivUrgent, we are committed to protecting the privacy and confidentiality of our clients. This privacy policy outlines how we collect, use, and safeguard your personal and health information.

Self-Screen

The Self-Screen is designed to collect the minimum information needed to calculate and retrieve screening results. The self-screen does not ask for or store your name, email address, phone number, date of birth, appointment details, IP address, browser fingerprint, analytics ID, or other direct contact information.

When you submit the self-screen, the system stores only your item-level questionnaire responses, calculated scores, scoring version, submission date, and a randomly generated lookup ID. The lookup ID is created by the AWS-hosted self-screen application using cryptographically secure random values. It is not based on your name, contact information, device, or any other personal identifier.

The self-screen is displayed on the NeurodivUrgent website through an embedded frame. This helps keep questionnaire responses and lookup IDs within the AWS-hosted self-screen system rather than passing them through Squarespace. Squarespace displays the page, but it does not receive or store your questionnaire responses or lookup ID.

Self-screen data is stored in HIPAA-compliant AWS services under an active AWS BAA. Although the self-screen is intentionally designed to avoid collecting direct identifiers, the responses may still relate to health information. NeurodivUrgent therefore treats the self-screen database as electronic protected health information and protects it using administrative, technical, and physical safeguards, including encrypted storage, encrypted transmission, restricted administrator access, and multi-factor authentication for access to and review of users’ responses.

Self-screen submissions are retained for 365 days and then deleted according to the system’s retention protocol. If you decide to move forward with an evaluation with 365 days of completing the Self Screen and provide your Unique ID so that your results can be connected to your care, your self-screen results will be added to your medical record. Once added to your medical record, they are retained for seven years in accordance with NeurodivUrgent’s medical-record retention policy and applicable HIPAA privacy and security requirements.

Completing the self-screen does not create a provider-patient relationship, establish a diagnosis, or replace a clinical evaluation. The self-screen is intended to help you and NeurodivUrgent determine whether a formal evaluation may be appropriate.

Website

General Website Use

When you visit the NeurodivUrgent website, certain basic technical information may be processed automatically by the website platform or related service providers to help the site load, function, remain secure, and display correctly. This may include information such as browser type, device type, pages visited, referring pages, and general site-usage information.

The general website is informational. It is not designed to collect clinical information, medical history, or other sensitive health information directly through the website platform.

Scheduling Widget

The website includes an embedded scheduling widget provided by IntakeQ. If you use that widget to schedule, request, or manage an appointment, the information you enter is submitted through IntakeQ’s embedded system rather than through the general website platform.

The IntakeQ scheduling widget is HIPAA-compliant and designed to protect sensitive information. It uses robust data encryption so that information entered through the widget is transmitted and stored within a compliant digital environment.

Cookies and Tracking

We use cookies and similar technologies to support website functionality, improve the browsing experience, and understand how visitors use the website. Cookies are small data files stored on your device that help the site remember preferences, load properly, and improve performance.

You may have the option to accept or decline certain cookies. Most web browsers automatically accept cookies, but you can usually change your browser settings to block or delete cookies. Some parts of the website may not function as intended if cookies are disabled.

Website Platform

The NeurodivUrgent website is hosted and supported by third-party website services, including Squarespace. These services may process limited technical and usage information necessary to operate, secure, and maintain the website.

The Self-Screen and the IntakeQ scheduling widget are handled separately from the general website platform. Questionnaire responses, lookup IDs, appointment requests, and scheduling-related health information are submitted through those embedded systems, not stored by Squarespace as general website content.

External Links

Our website may include links to third-party websites or services. We are not responsible for the privacy practices, security, or content of external websites outside NeurodivUrgent’s control.

Patient Portal

NeurodivUrgent uses IntakeQ as its secure patient portal for patient-facing administrative and clinical workflows. Through IntakeQ, clients may complete intake forms and consent documents, schedule or manage appointments, make payments, exchange documentation, receive or send secure messages, and complete other practice-related tasks.

IntakeQ is designed for HIPAA-compliant healthcare use, and NeurodivUrgent maintains an active Business Associate Agreement with IntakeQ/PracticeQ for services involving protected health information. IntakeQ uses safeguards intended to protect sensitive data, including encryption for data in transit and at rest, secure client messaging, secure document exchange, two-factor authentication, periodic risk analysis, and third-party HIPAA compliance verification. These safeguards help ensure that information submitted through the patient portal is transmitted, stored, and accessed within a secure digital environment.

Access to patient information in IntakeQ is limited to authorized practice personnel who need the information for treatment, scheduling, payment, documentation, practice operations, or compliance purposes.

In addition to IntakeQ, NeurodivUrgent may store digital patient records in a HIPAA-compliant cloud storage platform, OneDrive for Business/Microsoft 365, under an active Business Associate Agreement with Microsoft. These records are maintained using appropriate access controls and security safeguards to protect patient confidentiality.

Patient portal and clinical records are retained according to NeurodivUrgent’s record-retention policies and applicable legal, ethical, and HIPAA privacy and security requirements.

General Confidentiality

All information collected as part of the formal evaluation process is confidential and may not be revealed to anyone without your written permission, except where disclosure is required by law. Legal exceptions to confidentiality include include imminent harm to self or others, abuse or neglect of a vulnerable person, and legal orders such as subpoenas.

Access to Information

Current and former clients have the right to access the personal and health information we retain about them. Requests for access should be made in writing and may be associated with a reasonable fee.

Changes to our Privacy Policy

We may update this privacy policy periodically. The latest version will always be posted on our website.

Last Updated 6/1/26