Prepay 3 months — $12/seat/mo

See offer
PsycSuit
PsycSuit

Privacy Policy

This policy describes how PsycSuit handles information when you use our website, apply for an account, or operate the practice management service. Your clinic remains responsible for patient notices and lawful bases under applicable health-privacy laws.

Last updated: May 2026. This page is a readable summary for applicants and clinicians. Your executed service agreement and regional addenda (e.g. DPA) control where they differ.

Who we are

Roles depend on what data is processed and where your practice operates.

  • Practice account data (signup, billing, staff administration): we act as a service provider to your organization.
  • Patient and clinical records you enter in the product: your clinic is generally the controller (or covered entity under US HIPAA); PsycSuit processes that information on your instructions as described in your BAA and/or DPA.

Information we collect

  • Account and signup details: practice name, address, owner contact, plan selection.
  • Staff profiles and authentication events (sign-in times, security settings).
  • Clinical and operational data you choose to store: patients, appointments, notes, billing, portal messages, and related files.
  • Technical data: IP address, browser type, cookies for sessions and security, and error logs needed to operate the service.

How we use information

  • Provide, secure, and improve the service you subscribe to.
  • Send transactional messages (approval, setup invites, password resets, appointment reminders when enabled).
  • Support, troubleshoot, and comply with law where required.
  • We do not sell patient lists or clinical content to advertisers.

When we share information

We use subprocessors (hosting, email, telehealth, optional AI) listed on the Trust center. We may disclose information if required by law, to protect rights and safety, or with your direction (e.g. exports you request).

Retention

We retain data while your subscription is active and for a limited period afterward as described in your agreement. Your practice should export records you must keep before closure. Audit logs may be purged on a schedule you configure.

Your rights

Depending on region, individuals may have rights to access, correct, delete, or restrict processing. Patients should contact your clinic first. Practice administrators can contact us for account-level requests.

Security

See the Trust & security page for technical safeguards (encryption, access control, audit trails).

Cookies

We use essential cookies for staff and portal sessions. We do not use third-party advertising cookies on the clinical application.

Children

The service is intended for licensed practices managing patients under their own policies. Practices are responsible for consent and guardian rules that apply to minors in their jurisdiction.

Changes

We may update this policy. Material changes will be communicated through the product or email where appropriate. Continued use after notice constitutes acceptance where permitted by law.

Contact

Privacy and security inquiries:

← Plans & pricing · Trust center · BAA · DPA