Overview
This Privacy Policy describes how Dr. Lindsay Campbell, a licensed therapist serving clients throughout California ( “I,” “me,” or “the practice ”), collects, uses, and safeguards information when you visit this website or reach out through it.
This policy covers the websiteonly. Information you share inside the therapy room — what I'll call “protected health information” or PHI — is governed separately under the Health Insurance Portability and Accountability Act (HIPAA) and described in a dedicated Notice of Privacy Practices, which I provide during client onboarding and is available on request.
I never sell, rent, or trade your information. Not now, not ever.
What I collect
Two kinds of information may be collected when you use this site:
Information you share directly
- Contact form submissions — name, email, phone (optional), and whatever you choose to write in the message.
- Consultation scheduling — your selected date and time, plus any preferences you note.
- Direct outreach by email or phone — whatever you share in that conversation.
Information collected automatically
- Basic server logs (IP address, browser type, pages viewed) — standard for any web hosting.
- Website analytics through Google Analytics— page views, referrers, general location at the city level, and how visitors move through the site. This uses cookies and similar identifiers, so it's measured in aggregate rather than being truly anonymous.
- Conversion measurement through Google Ads— if you arrive from one of my ads, a click identifier (“gclid”) lets me see which ad brought you here and whether you took an action like submitting the form. This tells me whether my advertising is working — it is not used to retarget you, show you personalized ads, or build a profile about you.
- Functional cookies that remember preferences during your visit.
How it's used
I use the information collected to:
- Respond to your inquiry or scheduling request.
- Send appointment reminders and follow-ups (only with consent).
- Improve the website — what's clear, what's confusing, what people are looking for.
- Measure which ads bring people to the site, so advertising budget isn't wasted — without retargeting you or showing you personalized ads.
- Comply with legal and tax obligations.
I use Google Ads only to measure which ads lead people here — not for retargeting, personalized advertising, or building profiles. Because this is a healthcare practice, I keep advertising deliberately measurement-only. Your information is never sold, and it is not shared for cross-context behavioral advertising.
Third-party services
This site relies on a few external services to operate:
- Vercel — for website hosting and content delivery.
- Scheduling platform — to manage consultation calls (their data practices are governed by their own privacy policy).
- Google Analytics — to understand site traffic and how visitors use the pages.
- Google Ads — to measure which ads lead people to the site, with ad personalization and remarketing turned off.
- Email delivery — when reminders or replies are sent.
Each of these providers has its own privacy practices. I choose tools with reputations for taking user data seriously, and I'm happy to discuss specifics if you ask.
Data security
The website is served over HTTPS with modern encryption. Forms are transmitted securely. The scheduling platform and video sessions are operated on HIPAA-compliant infrastructure when handling clinical conversations.
No transmission method is 100% secure — that's the honest truth of the internet — but I take reasonable technical and organizational steps to protect the information you share. If you ever have a concern about a suspected breach or vulnerability, please email me directly.
Your rights (California)
If you're a California resident, the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA) give you specific rights about your personal information:
- Right to know — what information I have about you and where it came from.
- Right to delete — request deletion of personal information (with some narrow legal exceptions).
- Right to correct — request that I correct inaccurate information.
- Right to opt out of sale or sharing— I don't sell your information, and I've turned off ad personalization and remarketing so it isn't shared for cross-context behavioral advertising. You can also opt out of analytics and ad measurement anytime using the tools under Cookies & analytics.
- Right to non-discrimination— exercising these rights won't affect the care or services you receive.
To exercise any of these rights, email me directly or use the contact form. I'll respond within 45 days, as required by law.
Clinical data & HIPAA
This website is for general visitors. It is not a portal for clinical communication, session content, or therapy records.
Please don't share clinical details — diagnoses, session content, medication history — through the website contact form. If you're a current client and need to reach me with something sensitive, use the secure client portal or call directly.
Therapy records (notes, treatment plans, clinical correspondence) are protected health information governed by HIPAA and described in my full Notice of Privacy Practices — a separate document you'll receive when you become a client, and which is available on request.
Children's privacy
This website is intended for adults. I do not knowingly collect personal information from children under 13 through this site. If you believe a child has submitted information through the contact form or scheduling tool, please reach out and I will remove it.
Updates & contact
Privacy practices evolve. I may update this policy periodically — material changes will be reflected by an updated date at the top of the page.
Questions, concerns, or requests about this policy? Please reach out through the contact form or directly by email. I'll respond personally and promptly.
This policy was last updated on June 1, 2026.