Privacy Policy & HIPAA Notice of Privacy Practices

Contact Us

Effective Date: September 15, 2025

Entity: Maverick Behavioral Health, Licensed by the Texas Health and Human Services Commission

Website: www.mavericktreatment.com

Contact Email: info@mavericktreatment.com

Mailing Address: 425 Westpark Way, Suite 103, Euless, TX 76040

1) Who We Are

Maverick Behavioral Health (“Maverick,” “we,” “our,” “us”) is a Texas-licensed behavioral health provider. Protecting your privacy—and especially your health information—is a core obligation. This combined policy governs how we collect, use, disclose, and protect general website data and Protected Health Information (“PHI”). It consolidates all unique provisions from our HIPAA Policy, our Website Privacy Policy, and our internal Notice contained in our compliance binder.
 

 

2) Scope & Applicability

  • Website & Digital Services: Applies to information collected through mavericktreatment.com (forms, chat, analytics, and embedded content).
  • Patients & PHI: Applies to PHI we create or receive in connection with treatment, payment, and healthcare operations.
  • Substance Use Disorder Records: In addition to HIPAA, certain substance use disorder treatment records are protected by 42 C.F.R. Part 2. When applicable, we comply with Part 2’s heightened confidentiality rules, including restrictions on redisclosure without your written consent, except where permitted or required by law.
  • Conflicts of Law: Where federal or Texas law provides stronger protections, those controls.

 

 

3) Information We Collect via the Website (Non‑PHI)

  • Personal Information you submit (e.g., name, email, message content).
  • Technical Information (e.g., IP address, device and browser data) used for security, spam detection, and performance.
  • Uploaded Media: Avoid uploading files with embedded location metadata (e.g., EXIF GPS data).

We do not sell, rent, or trade your personal information to third parties.

 

 

4) Cookies & Similar Technologies

We may use cookies and similar technologies for:

  • Session management (recognizing repeat visitors and secure login sessions).
  • Site performance and analytics.
  • Convenience features (remembering input you’ve already provided).

You may disable cookies in your browser; some site features may not function properly without them. Cookies on our site do not contain PHI.

 

 

5) Embedded Content & Third‑Party Services

Our site may include embedded content or links (e.g., videos, articles, social media, chat widgets). These third parties may collect data, use cookies, and apply their own tracking in accordance with their privacy policies. Maverick does not control third‑party practices; review their policies before interacting with their content.

 

 

6) How We Use and Disclose Website (Non‑PHI) Information

We may use or share website information to:

  • Respond to your inquiries or requests submitted through forms.
  • Secure our systems, detect fraud/abuse, and maintain site performance.
  • Comply with legal and regulatory obligations.

If you become a patient, PHI handling is governed by the HIPAA sections below.

 

 

7) Data Security & Retention

We use administrative, technical, and physical safeguards designed to protect information we maintain. We retain information only as long as necessary for the purposes described in this policy, for legitimate business needs, or as required by law and regulation.

 

 

8) HIPAA Notice of Privacy Practices (PHI)

8.1 How We May Use and Disclose PHI Without Your Written Authorization

  • Treatment: Coordinate or manage your care with other providers involved in your treatment.
  • Payment: Bill and obtain payment from health plans or other payors; coordinate benefits.
  • Healthcare Operations: Quality assessment and improvement, compliance, auditing, training, and related administrative functions.
  • Public Health & Safety: For certain public health activities (e.g., reporting disease, suspected abuse/neglect, adverse reactions, product recalls) and to prevent or reduce a serious threat to health or safety.
  • Research: As permitted by law and applicable oversight.
  • Legal Requirements & Oversight: When required by law, in response to court/administrative orders, subpoenas, law enforcement requests, or for health oversight activities.
  • Organ & Tissue Donation; Medical Examiner/Funeral Director: As necessary to facilitate donation or carry out post‑mortem duties.
  • Workers’ Compensation, Law Enforcement & Certain Government Purposes: As permitted for workers’ comp, law enforcement, or other specialized government functions (e.g., national security).
  • Business Associates: We may share PHI with vendors who perform services for us (e.g., IT, billing, cloud services) under written agreements requiring HIPAA‑compliant safeguards and limiting their use/disclosure.
  • Breach Notification: We will notify you without unreasonable delay if a breach occurs that may have compromised the privacy or security of your PHI.

8.2 Uses and Disclosures Requiring Your Written Authorization

Certain uses/disclosures require your prior written authorization, including (as applicable under HIPAA/Part 2 and Texas law):

  • Most uses/disclosures of psychotherapy notes.
  • Marketing communications (unless a permitted face‑to‑face communication or a nominal promotional gift).
  • Sale of PHI.
  • Any other use/disclosure not described in this Notice.

If you authorize a use or disclosure, you may revoke your authorization at any time in writing, except to the extent we have already relied on it.

8.3 Your Choices

Subject to law, you may direct us regarding certain uses/disclosures. For example, you may ask us to:

  • Share information with family, friends, or others involved in your care.
  • Share information for disaster relief.
  • Include or exclude your information from directories (where applicable).

For fundraising contacts permitted by law, you can ask us not to contact you again.

8.4 Your Rights Regarding PHI

You have the right to:

  • Access: See or get an electronic or paper copy of your medical record and other health information we maintain. We will provide a copy or summary, usually within 30 days of your request. A reasonable, cost‑based fee may apply.
  • Amend: Request corrections to your records if you believe they are incorrect or incomplete. If we deny, we will tell you why in writing within 60 days.
  • Restrictions: Ask us not to use/share certain information for treatment, payment, or operations. We are not required to agree unless you paid for an item/service out‑of‑pocket in full and request that we not disclose related information to your health plan for payment or operations.
  • Confidential Communications: Request that we contact you in specific ways or at alternative locations. We will honor reasonable requests.
  • Accounting of Disclosures: Receive a list of certain disclosures of your PHI (excluding TPO and other excluded disclosures) for the preceding six years; one free annually, reasonable fees thereafter.
  • Copy of this Notice: Request a paper or electronic copy of this Notice at any time.
  • Personal Representative: If someone has medical power of attorney or is your legal guardian, that person can exercise your rights as permitted by law.

8.5 Special Confidentiality Protections for SUD Records (42 C.F.R. Part 2)

When applicable, we do not disclose substance use disorder treatment records without your written consent, except as expressly permitted by Part 2 (e.g., medical emergencies, research/audits, court orders) or other applicable law. Part 2 prohibits re‑disclosure by recipients unless further disclosure is expressly permitted by the consent or by Part 2.

8.6 Our Legal Duties

We are required by law to:

  • Maintain the privacy and security of your PHI.
  • Provide this Notice describing our privacy practices and follow its terms.
  • Notify you promptly in the event of a breach of your PHI.

We may change this Notice and the revised version will apply to PHI we already maintain. The current Notice will be posted on our website and available upon request.

 

 

9) Website User Choices (Non‑PHI)

  • Email Preferences: You can opt out of non‑transactional emails by following unsubscribe instructions in those messages.
  • Cookies/Tracking: You can control or disable cookies using your browser or device settings.

 

 

10) Children’s Privacy

Our website is not intended for children under 13, and we do not knowingly collect personal information online from children under 13 without appropriate consent as required by law.

 

 

11) Complaints or Questions

You may file a complaint or ask questions without fear of retaliation.

  • With Maverick: Privacy Official, Maverick Behavioral Health, 425 Westpark Way, Suite 103, Euless, TX 76040; info@mavericktreatment.com
  • With the U.S. Department of Health & Human Services, Office for Civil Rights (OCR): File online at https://www.hhs.gov/ocr/privacy/hipaa/complaints/ or by mail to 200 Independence Avenue, S.W., Washington, D.C. 20201.

 

 

12) Updates to this Policy

We may revise this combined Privacy Policy & HIPAA Notice from time to time to reflect changes in law or our practices. The updated version will include a new effective date and will be posted on our website and available upon request.