Information Collection and Use
While using our Service, we may ask you to provide us with certain personally identifiable
information that can be used to contact or identify you. Personally Identifiable Information
may include, but is not limited to, your email address, name, phone number, postal address,
other information (“Personal Information”).

We collect this information for the purpose of providing the Service, identifying and
communicating with you, responding to your requests/inquiries, servicing your purchase
orders, and improving our services.

Public Forum
This website may include public forums such as message boards, bulletin boards, chat
rooms, space for commenting (such as on blog posts), or similar activities through which
users can communicate with one another after logging in through a secure network. This
privacy policy does not protect you when you use public forums or provide information,
including Personally Identifiable Information (PII), about yourself. You should be aware that
any information shared in a public forum is public information and may be seen by third
parties that do not adhere to our Privacy Policy.

We urge you to exercise discretion and caution when deciding to disclose your Protected
Health Information (PHI) regarding your personal health information, or any other
information, through the forum. Further, we are not responsible for the content of any
messages posted in a forum capacity, and we retain the right to remove comments from our
website at any time and without notice.

Log Data
We may also collect information that your browser sends whenever you visit our Service
(“Log Data”). This Log Data may include information such as your computer’s Internet
Protocol (“IP”) address, browser type, browser version, the pages of our Service that you
visit, the time and date of your visit, the time spent on those pages and other statistics.
In addition, we may use third party services such as Google Analytics that collect, monitor
and analyze this type of information in order to increase our Service’s functionality. These
third-party service providers have their own privacy policies addressing how they use such

Cookies are files with a small amount of data, which may include an anonymous unique
identifier. Cookies are sent to your browser from a web site and transferred to your device.
We use cookies to collect information in order to improve our services for you.

You can instruct your browser to refuse all cookies or to indicate when a cookie is being
sent. The Help feature on most browsers provide information on how to accept cookies,
disable cookies or to notify you when receiving a new cookie.
If you do not accept cookies, you may not be able to use some features of our Service and
we recommend that you leave them turned on.

Behavioral Remarketing
Legacy Recovery Center uses re-marketing services to advertise on third party web sites to you
after you visit our Service. We, and our third-party vendors, use cookies to inform, optimize
and serve ads based on your past visits to our Service.

Google AdWords remarketing service is provided by Google Inc.
You can opt-out of Google Analytics for Display Advertising and customize the Google
Display Network ads by visiting the Google Ads Settings page.
For more information on the privacy practices of Google, please visit the Google Privacy &
Terms web page.

Do Not Track Disclosure
We support Do Not Track (“DNT”). Do Not Track is a preference you can set in your web
browser to inform websites that you do not want to be tracked.
You can enable or disable Do Not Track by visiting the Preferences or Settings page of your
web browser.

Service Providers
We may employ third party companies and individuals to facilitate our Service, to provide
the Service on our behalf, to perform Service-related services and/or to assist us in
analyzing how our Service is used.
These third parties have access to your Personal Information only to perform specific tasks
on our behalf and are obligated not to disclose or use your information for any other

The security of your Personal Information is important to us, and we strive to implement and
maintain reasonable, commercially acceptable security procedures and practices

appropriate to the nature of the information we store, in order to protect it from unauthorized
access, destruction, use, modification, or disclosure.
However, please be aware that no method of transmission over the internet, or method of
electronic storage is 100% secure and we are unable to guarantee the absolute security of
the Personal Information we have collected from you.
International Transfer
Your information, including Personal Information, may be transferred to — and maintained
on — computers located outside of your state, province, country or other governmental
jurisdiction where the data protection laws may differ than those from your jurisdiction.
If you are located outside United States and choose to provide information to us, please
note that we transfer the information, including Personal Information, to United States and
process it there.
Your consent to this Privacy Policy followed by your submission of such information
represents your agreement to that transfer.

Links to Other Sites
Our Service may contain links to other sites that are not operated by us. If you click on a
third-party link, you will be directed to that third party’s site. We strongly advise you to
review the Privacy Policy of every site you visit.
We have no control over, and assume no responsibility for the content, privacy policies or
practices of any third-party sites or services.
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.).
Embedded content from other websites behaves in the exact same way as if the visitor has
visited the other website.
These websites may collect data about you, use cookies, embed additional third-party
tracking, and monitor your interaction with that embedded content, including tracking your
interaction with the embedded content if you have an account and are logged in to that

Children’s Privacy/Children Online Privacy Protection
Only persons age 18 or older have permission to access our Service. Our Service does not
address anyone under the age of 13 (“Children”).

We do not knowingly collect personally identifiable information from children under 13. If
you are a parent or guardian and you learn that your Children have provided us with
Personal Information, please contact us. If we become aware that we have collected
Personal Information from children under age 13 without verification of parental consent, we
take steps to remove that information from our servers.

HIPAA Notice of Privacy Practices
This notice describes how medical information about you may be used and disclosed and
how you can get access to this information. Please review it carefully.

Who We Are
This notice describes the privacy practices of Legacy Recovery Center.
Our Privacy and Confidentiality Obligations
We are required by law to maintain the privacy and confidentiality of information about your
health, health care, and payment for services related to your health and to provide you with
this notice of our legal duties and privacy practices with respect to your protected health
information. When we use or disclose this information, we are required to abide by the
terms of this Notice or any other public notice in effect at the time of the use or disclosure.
 Protected Health Information in connection with alcohol or drug services:
o 42 CFR Part 2 protects your health information if you are applying for
or receiving services (including diagnosis or treatment, or referral) for
drug or alcohol abuse. Generally, if you are applying for or receiving
services for drug or alcohol abuse, we may not acknowledge to a
person outside the program that you attend the program or disclose
any information identifying you as an alcohol or drug abuser except
under certain circumstances that are listed in this notice.
 All Protected Health Information, including alcohol or drug services:

o The Health Insurance Portability and Accountability Act, also known as
HIPAA, 45 CFR Parts 160 and 164 protects your health information
whether or not you are applying for or receiving services for drug or
alcohol abuse.

Who Will Follow This Notice?
This notice describes the information privacy practices followed by our employees, staff and
other personnel.
Your Health Information
As per 45 CFR 164.520, this Notice of Privacy Practices (the Notice) describes how medical
information about you may be used or disclosed and how you can access this information.
Your personal health record contains private and confidential information about you and
your health. Both State and Federal laws protect the confidentiality of this information.
Protected Health Information (PHI) under the Health Insurance Portability and

Accountability Act of 1996 (HIPAA) includes any individually identifiable health information.
PHI relates to your past, present or future physical or mental health or condition and any
related health care services.

How We May Use and Disclose Health Information
About You
Below are examples of the uses and disclosures that we may make of your Protected
Health Information (PHI). These examples are not exhaustive but simply describe the uses
and disclosures that may be made.
Uses and Disclosures of PHI for Treatment, Payment
and Health Care Operations
Treatment – Your PHI may be used and disclosed by your physician, counselor, our
program staff and others outside of our program that are involved in your care for the
purpose of providing, coordinating or managing your health care treatment and any related
services. Example: Your care while with us may require coordination or management from a
third party, consultation with other health care providers, or referral to another provider for
health care treatment. Additionally, we may disclose your protected health information to
another physician or health care provider who becomes involved in your care.

Payment – With your authorization, we may use and disclose PHI about you so that we can
receive payment for the treatment and services provided to you from your insurance or
other payor sources. Example: We give information about you to your health insurance so it
will pay for your services.

Healthcare Operations – We may use and share your health info to run our business,
improve your care, and contact you when necessary. This may include quality assessment
activities, employee review activities, licensing, and conducting other business activities.
Examples: using a sign-in sheet where you will be asked to sign your name and indicate
your physician, counselor or staff. We may share your PHI with third parties that perform
various business activities for us, such as a billing company. Also, we may contact you by
phone to remind you of your appointments or to provide you with additional information
regarding your treatment or other health-related benefits.
Special Rules Regarding Disclosure of Behavioral
Health, Substance Abuse, and HIV- Related
For disclosures concerning protected health information relating to care for psychiatric
conditions, substance abuse or HIV- related testing and treatment, special restrictions may

 HIV Related Information: We may disclose HIV-related information as permitted
or required by State law. For example, your HIV-related information, if any, may
be disclosed without your authorization for treatment purposes, certain health
oversight activities, pursuant to a court order, or in the event of certain exposures
to HIV by personnel of the company, another person, or a known partner (if
certain conditions are met).

Other Uses and Disclosures That Do Not Require Your
Required by Law.
We may use or disclose your PHI to the extent that the use or disclosure is required by law,
made in compliance with the law, and limited to the relevant requirements of the law. You
will be notified, as required by law, of any such uses or disclosures. Under the law, we must
make disclosures of your PHI to you upon your request. In addition, we must make
disclosures to the Secretary of the Department of Health and Human Services for the
purpose of investigating or determining our compliance with the requirements of the Privacy

Health Oversight.
We may disclose PHI to a health oversight agency for activities authorized by law, such as
audits, investigations, and inspections. Oversight agencies seeking this information include
government agencies and organizations that provide financial assistance to the program
(such as third-party payors) and peer review organizations performing utilization and quality
control. If we disclose PHI to a health oversight agency, we will have an agreement in place
that requires the agency to safeguard your privacy.
Public Health.
We may use or disclose your PHI for public health activities to a public health authority
authorized by law to collect or receive such information for the purpose of preventing or
controlling disease, injury, or disability, or if directed by a public health authority, to a
government agency that is collaborating with that public health authority. In certain
circumstances outlined in the Privacy Regulations, we may disclose your PHI to a person
who is subject to the jurisdiction of the Food and Drug Administration with respect to the
reporting of certain occurrences involving food, drugs, or other products distributed by such
person. In certain limited circumstances, we may also disclose your PHI to a person that
may have been exposed to a communicable disease or may otherwise be at risk of
spreading or contracting such disease, if such disclosure is authorized by law. For example,
we may disclose PHI regarding the fact that you have contracted a certain communicable
disease to a public health authority authorized by law to collect or receive such information.
Medical Emergencies.
We may use or disclose your protected health information in a medical emergency situation
to medical personnel only. Our staff will try to provide you a copy of this notice after the
resolution of the emergency.
Child Abuse or Neglect. We may disclose your PHI to a state or local agency that is
authorized by law to receive reports of child abuse or neglect. However, the information we disclose is limited to only that information which is necessary to make the initial mandated

Deceased Patients.
We may disclose PHI regarding deceased patients for the purpose of determining the cause
of death, in connection with laws requiring the collection of death or other vital statistics, or
permitting inquiry into the cause of death. Research. We may disclose PHI to researchers if
(a) an Institutional Review Board reviews and approves the research and a waiver to the
authorization requirement; (b) the researchers establish protocols to ensure the privacy of
your PHI; (c) the researchers agree to maintain the security of your PHI in accordance with
applicable laws and regulations; and (d) the researchers agree not to re-disclose your
protected health information except back to the company.
Criminal Activity on Program Premises/Against Program Personnel.
We may disclose your PHI to law enforcement officials if you have committed a crime on
program premises or against program personnel or its agents.
Court Order.
We may disclose your PHI if a court of competent jurisdiction issues an appropriate court
order and the disclosure of PHI is explicitly permitted under Federal and State law.
Interagency Disclosures. Limited PHI may be disclosed for the purpose of coordinating
services among government programs that provide mental health services where those
programs have entered into an interagency agreement.

Public Safety.
If you are in a mental health treatment program only, we may disclose PHI to avert a
serious threat to health or safety, such as physical or mental injury being inflicted on you or
someone else.
Specialized Government Functions. If you are or have been a member of the U.S. Armed
Forces, we may disclose your PHI as required by military command authorities. We may
disclose your PHI to authorized federal officials for national security and intelligence
reasons and to the Department of State for medical suitability determinations.
Family and Friends.
We may disclose health information about you to your family members or friends if we
obtain your verbal agreement to do so or if we give you an opportunity to object to such a
disclosure and you do not raise an objection. We may also disclose health information to
your family or friends if we can infer from the circumstances, based on our professional
judgment that you would not object. For example, we may assume you agree to our
disclosure of your personal health information to your spouse when you bring your spouse
with you into treatment center or while treatment is discussed. In situations where you are
not capable of giving consent (because you are not present or due to your incapacity or
medical emergency), we may, using our professional judgment, determine that a disclosure
to your family member or friend is in your best interest. In that situation, we will disclose only
health information relevant to the person’s involvement in your care.

Uses and Disclosures of PHI That Require Your
Written Authorization
Other uses and disclosures of your PHI will be made only with your written authorization.
You may revoke this authorization at any time, unless the program or its staff has taken an
action in reliance on the authorization of the use or disclosure you permitted. If you revoke
it, we will no longer use or disclose protected health information about you for the reasons
covered by your written authorization, unless required to do so by law. You should
understand that we are unable to take back any
disclosures we have already made with your authorization and that we are required to retain
our records of the treatment and care that we have provided to you. Examples of when an
authorization from you may be required include the following:
 Marketing: Any uses and disclosures of PHI for marketing purposes requires your
signed authorization.
 Sale of PHI: Even if permitted by law, we will not sell your protected health
information unless we receive a signed authorization from you.
 Psychotherapy Notes: A signed authorization is required for the use or disclosure
of psychotherapy notes except for use by the originator of the psychotherapy note
in order to treat you or to defend ourselves in a legal action or other proceeding.
Uses and Disclosures Not Described in This Notice: Unless otherwise permitted by Federal
or State law, other uses and disclosures of your PHI that are not described in this Notice will
be made only with your signed authorization.
Your Rights Regarding your Protected Health
Your rights with respect to your protected health information are explained below. Any
requests with respect to these rights must be in writing and made to the attention of the
Privacy Officer. A description of how you may exercise these rights:
You have the right to inspect and copy your PHI – You may inspect and obtain a copy of
your PHI that is contained in a designated record set for as long as we maintain the record.
A “designated record set” contains medical and billing records and any other records that
the program uses for making decisions about you. Your request must be in writing. We may
charge you a reasonable cost-based fee for the copies. We can deny you access to your
PHI in certain circumstances. In some of those cases, you will have a right to appeal the
denial of access.
You may have the right to amend your PHI – You may request, in writing, that we amend
your PHI that has been included in a designated record set. In certain cases, we may deny
your request for an amendment. If we deny your request for amendment, you have the right
to file a statement of disagreement with us. We may prepare a rebuttal to your statement
and will provide you with a copy of it.

You have the right to receive an accounting of some types of PHI disclosures. You may
request an accounting of disclosures for a period of up to six years, excluding disclosures
made to you, made for treatment purposes or made as a result of your authorization. We
may charge you a small fee if you request more than one accounting in any 12-months.
You have a right to receive a paper copy of this notice. You have the right to obtain a copy
of this notice from us whether by paper or via email.
You have the right to request added restrictions on disclosures and uses of your PHI – You
have the right to ask us not to use or disclose any part of your PHI for treatment, payment
or health care operations or to family members involved in your care. Your request for
restrictions must be in writing and we are not required to agree to such restrictions.
You have a right to request confidential communications. You have the right to request to
receive confidential communications from us by alternative means or at an alternative
location. We will accommodate reasonable, written requests. We may also condition this
accommodation by asking you for information regarding how payment will be handled or
specification of an alternative address or other method of contact. We will not ask you why
you are making the request.
You have a right to receive notification of unauthorized disclosure of your PHI (Breach
Notification). We are required to notify you upon a breach of any unsecured PHI. The notice
must be made without unreasonable delay, but no later than 60 days from when we
discover the breach.

Changes to This Notice
We reserve the right to change this notice, and to make the revised or changed notice
effective for medical information we already have about you as well as any information we
receive in the future. We will post the current notice at our location(s) with its effective date
in the top right-hand corner. You are entitled to a copy of the notice currently in effect.
You may file a complaint if you feel your rights are violated.
 If you have questions regarding this notice, contact the Privacy Officer at Legacy
Recovery Center, Andy@LegacyRecoveryCenter.com.
 The Joint Commission (JC) accredits this entity. If you have a complaint about the
quality of care you have received, you may contact the Joint Commission by
email at complaint@ jointcommission.org or by mail at Office of Quality
Monitoring, The Joint Commission, One Renaissance Boulevard, Oakbrook
Terrace, Illinois 6018.
 You may also file a complaint with the U.S. Department of Health and Human
Services Office for Civil Rights at 200 Independence Ave. S.W., Washington, D.C.

20201, or by calling 1-877-696-6775, or visiting the following website:
 We will not retaliate against you for filing a complaint.
We may change the terms of this notice and the changes will apply to all the private health
information we have about you. The new notice will be available upon request, on our
website, and we will mail a copy to you upon request.


Healthcare Disclaimer

This web site is provided for educational and informational purposes only and does not constitute providing medical advice or professional services. The information provided should not be used for diagnosing or treating a health problem or disease, and those seeking personal medical advice should consult with a licensed physician. Always seek the advice of your doctor or other qualified health provider regarding a medical condition. Never disregard professional medical advice or delay in seeking it because of something you have read on Legacy Recovery Centers website. If you think you may have a medical emergency, call 911 or go to the nearest emergency room immediately. No physician-patient relationship is created by this web site or its use. Neither Legacy Recovery Centers nor its employees, nor any contributor to this web site, makes any representations, express or implied, with respect to the information provided herein or to its use.