Privacy Policy

Our Website, (“Site”), and the software we use collect some personal data from its users (each, a “user”). We collect and process data for the purposes detailed below. This Privacy Policy governs the protocol The Children’s OCD & Anxiety Collective, a Licensed Clinical Social Work Corporation (“The Children’s OCD & Anxiety Collective” “Children’s OCD & Anxiety Collective,” “we,” “us,” or “our”) follows in the collection, use, maintenance and disclosure of information collected from users of the Site. This Privacy Policy applies to the Site. You can read more about the Privacy Policy of our Web Host,, here. This details how privacy of visitors, like you, is handled on sites, including this one. 

If you are a client of The Children’s OCD & Anxiety Collective, a Licensed Clinical Social Work Corporation, there are additional rights to privacy to which you are entitled. You can read more about these in the informed consent form that is reviewed and signed at the beginning of treatment. If you have misplaced your copy of this, please feel free to email and ask for another copy. 

Your Rights and Legal Information 

The California Consumer Privacy Act of 2018 (CCPA) gives consumers more control over the personal information that businesses collect about them and the CCPA regulations provide guidance on how to implement the law. This law secures privacy rights for California consumers, including: 

  • The right to know about the personal information a business collects about them and how it is used and shared. 
  • The right to delete personal information collected from them (with some exceptions).
The right to opt-out of the sale of their personal information (Please note: we do no sell personal information to anyone).

  • The right to non-discrimination for exercising their CCPA rights. This means that you will not receive discriminatory treatment for exercising your rights under the CCPA.

  • The right to be informed about their CCPA rights. This means that businesses must “disclose the consumer’s right to request deletion.”

  • The right to request that a business disclose what personal information they have collected on them in the past twelve months.

  • The right to lodge a complaint with a supervisory authority (lodge a complaint here). 

The General Data Protection Regulation (GDPR) is a regulation implemented under European Union (EU) law on data protection and privacy in the EU and the European Economic Area (EEA). It also addresses the transfer of personal data outside the EU and EEA areas. The GDPR’s primary aim is to enhance individuals’ control and rights over their personal data and to simplify the regulatory environment for international business. Under GDPR, individuals have certain rights, including: 

  1. The right to be informed about the collection and use of their personal data. 

  2. The right of access or right to receive a copy of their personal data, and other supplementary 

  3. The right to rectification of inaccurate personal data or to completion of incomplete data. 

  4. The right to erasure of one’s personal data. 

  5. The right to restrict processing of or suppress their personal data. 

  6. The right to data portability, i.e. the right to obtain and reuse one’s personal data for their own 
purposes across different services. 

  7. The right to object to the processing of their personal data in certain circumstances. Individuals 
have a right to stop their data being used for direct marketing. In some cases, sites may be able to continue processing data after an objection is made if they can show that they have a compelling reason for doing so. 

  8. Rights in relation to automated decision-making (making a decision solely by automated means without any human involvement); and profiling (automated processing of personal data to evaluate specific information about an individual). Profiling can be part of an automated decision-making process. This website does not use either automated individual decision-making or profiling.

The Site is not directed at children under the age of 13. We comply with the Children’s Online Privacy Protection Act (“COPPA”) and do not knowingly permit registration or submission of personally identifiable information by anyone under 13 years of age. This age requirement is posted each time we request personally identifiable information. If you believe information regarding a child under 13 has been submitted, please advise us in writing and we will delete it. 

What Data and Categories of Data We Collect and How We Collect It 

The data that may be collected by this Site are various types of personal and non-personal identification information. Personal identification Information includes any information regarding a natural person, a legal person, an institution or an association, which is, or can be, identified, even indirectly, by reference to any other information, including a personal identification number. We collect personal information from two main categories: Identifiers and Internet Activity. Identifiers include name, email address and IP address. Internet Activity includes information regarding a consumer’s interaction with the Site. Non-personal identification Information collected by the website may include the browser name, the type of computer and technical information about users means of connection to our Site, such as the operating system and the Internet service providers utilized and other similar information. 

We collect personal data from Site visitors who provide data directly to us, including names and email addresses. For example, you provide information when you: 

  • Submit forms on the Site
  • Ask to join our mailing list
  • Leave a comment 

If you contact us via this Site, we cannot guarantee the encryption or security of your Protected Health Information (PHI). Do not include PHI within any comments on this Site or messages sent through this Site. If you include PHI in comments on this Site or in messages sent via our contact forms, it creates no practitioner-client relationship or duty between the Practice and the user, including a duty to respond. If you transmit PHI through our contact forms or write it in comments, we disclaim any and all liability related to such transmission. 

If you are a client of The Children’s OCD & Anxiety Collective, a Licensed Clinical Social Work Corporation, or you contact us for information or for any other reason, you can subscribe to our mailing list on this Site. 

We also collect personal technical data, such as information about cookies. Such personal data can also be generated from technical processes such as contact forms, comments, cookies, analytics, and third party embeds. We may gather personal data about your visit to the Site. For example, we may collect: 

  • The network you use to access the Internet, like domain information.

  • The device that you are using, including the IP address, browser, and operating system.
  • Which pages you visit while on our Site. 

We use “cookies,” i.e. small text files stored on your device (and maintained by your browser), that often include a randomized unique identifier so that the Site recognizes this cookie. By and large, we use cookies that are considered mandatory or technically necessary to provide the Site and its functionality to you. We also use cookies for Google Analytics, specifically for audience measurement purposes (described below). Please note that we do not use retargeting cookies on our website (e.g., cookies that track you on our Site and across other websites in order to serve you a targeted advertisement) or other cookies that may track your experience on the Site in order to build user profiles. Should our use of cookies change in the future, we will update this Privacy Policy. If you’d like to learn more about how our Web Host, WordPress, uses cookies, you can read their more detailed cookie policy here

We do not use cookies to get information from your device for purposes unrelated to the site or your interaction with the site. You may stop or restrict cookies on your computer or purge them from your browser by adjusting your web browser preferences. You can consult the operating instructions that apply to your browser for instructions should you wish to do so. Note that if you “turn off,” purge, or disable cookies, although you may still use the site, you may not be able to use all of the features, functions, or services available on the site. 

What Do We Use Your Data For? 

  • To improve our Site. We always aim to improve our website offerings based on the information and feedback we receive from you.

  • To provide the information you request. If you submit your email through the form on our Site so that you can be kept updated on the ongoings of The Children’s OCD & Anxiety Collective, a Licensed Clinical Social Work Corporation you may receive content, surveys or other Site features from us. Please note: if you provide us with your email address via our contact form, we will not send out email updates unless you ask for them independently). If, at any time, you would like to unsubscribe from receiving future emails, we include unsubscribe instructions at the bottom of each email, or you may contact us via our Site.

  • To personalize user experience. We may use information in the aggregate to understand how our users as a group use the services and resources provided on our Site. For such purposes data are collected for traffic optimization and distribution, analytics, and interaction with external social networks and platforms 
  • To provide authorities or relevant individuals with information related to the Site as required by law.

  • To protect our website, our users, and the public. For example, by detecting security incidents; detecting and protecting against malicious, deceptive, fraudulent, or illegal activity; fighting spam; complying with our legal obligations; and protecting the rights and property of our Site and others. 
  • For your convenience. For example, if you leave a comment on our Site, you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year. 
  • To fulfill any other purpose for which you provide information. 

As a reminder, if you contact us via this Site, we cannot guarantee the encryption or security of your Protected Health Information (PHI). Do not include PHI within any comments on this Site or messages sent through this Site. If you include PHI in comments on this Site or in messages sent via our contact forms, it creates no practitioner-client relationship or duty between the Practice and the user, including a duty to respond. If you transmit PHI through our contact forms or write it in comments, we disclaim any and all liability related to such transmission. 

The collection and transfer of data occurs on one of the following bases, depending on the type of transfer and the surrounding factual situation: 

  • You explicitly consent to the collection and transfer.

  • The transfer is necessary to provide sufficient data to comply with your request. This will apply when, for example, you are signing up for our mailing list.
  • The transfer is necessary for the establishment, exercise, or defense of legal claims. This would apply if there developed a dispute between you and The Children’s OCD & Anxiety Collective, a Licensed Clinical Social Work Corporation, regarding our website services.

  • The transfer is required to produce personal data to legal authorities upon presentation of a subpoena, court order, search warrant, or other legal process. 

The use of data for additional purposes by the owner, may in some cases, and for legal purposes, require specific consent by the user or the data subject. 

What Third Parties Process Which Data on Our Behalf?


Function- helps our website to prevent spam and to block bots

ReCAPTCHA determines whether or not a user is a real person or a bot, in order to prevent “automated software from weighing down” our Site. You can read about the Google Privacy Policy, of which ReCAPTCHA is a part, here

Mail Chimp 

Function- collects email addresses that users volunteer and is used to send out updates about The Children’s OCD & Anxiety Collective, a Licensed Clinical Social Work Corporation. 

Data processing information: Mail Chimp shall process the personal data on behalf of the developer for the purpose, which will include the following processing activities: storage, retrieval, use, disclosure, erasure, destruction and access of the personal data. The duration of the processing shall be for the term of the API Terms and Conditions. The category of data subject is the users and the personal data processed by Mail Chimp includes and shall be limited to the following categories of data: (i) identification and contact information (such as name, email address, address, title and contact details) of users’ customers and other contacts; (ii) information gathered in connection with enabling the developer to provide offerings to users relating to users’ contacts, including (a) analytics and information about marketing emails sent by Mail Chimp on behalf of user (including open rates and similar usage data) and (b) device, browser and information related to users’ contacts identified through use of the offerings. The personal data processed by Mail Chimp may contain special categories of personal data. 

Google Analytics 

Function- analytics 

Data processing information: Google Analytics collects a lot of data about how people use a website, including: 

Time of visit, pages visited, and time spent on each page of the webpages 

Referring site details (such as the URI a user came through to arrive at this Site) 

  • Type of web browser

  • Type of operating system (OS) 
  • Flash version, JavaScript support, screen resolution, and screen color processing ability 
  • Network location and IP address
  • Document downloads
Clicks on links leading to external websites 
  • Errors when users fill out forms

  • Clicks on videos

  • Scroll depth

  • Interactions with site-specific widgets. 

Google Analytics uses cookies, to obtain high-level “audience measurement” data such as the referral web domain, type of operating system/browser used, date and time of visit, and other information relating to activities on the Site to understand its usage better, analyze trends, and optimize the Site experience. To help ensure such data within Google Analytics cannot be linked back to an identifiable user. 


We use Wordfence as a security plugin to keep our website safe from bots. Wordfence checks IP addresses to make Site visitors are not bots and store the IP addresses in the database. You can read their privacy policy here.

Data Removal, Completion or Updating 

You have the right to access your information, to update your information and to provide additional information to complete a previous incomplete submission. You also have the right to request complete deletion of your data. If we receive a valid, verified request from a consumer, we will ensure that you are granted access to your data or that your data will be removed, completed or updated. 

If you would like to access, remove, complete or update your data, please send us your full name and email address in an email to with the subject DATA ACCESS, DATA REMOVAL, DATA COMPLETION or DATA UPDATING, as applicable. We will use the collected information to verify your request and to allow you to access, remove, complete or update your data. You can also send a physical letter with the information to 1125 E. Broadway, Ste #1002, Glendale, CA 91205 in order to access, remove, complete or update your data. 

We do have the right to deny a request if consumers fail to satisfactorily identify themselves or verify their right to access information on behalf of someone. We will keep these denials on file with a detailed description of the reason for the denial. Some exceptions that would permit us to retain the records after your request include: 

  1.  Transactional reasons
  2. Security reasons
  3.  Identifying and fixing errors
  4.  Free Speech considerations 

  5.  Cal ECPA Compliance 

  6.  Research for Public Interest reasons 

  7.  Expected Internal Use 

  8.  Legal Compliance 

  9.  Other Internal Uses 

If no exception exists, we will permanently and completely erase the personal information on our existing systems with the exception of archived or back-up systems and we will direct service providers to delete their records of your personal information as well. 

As a California resident, you also have the right to designate an agent to exercise these rights on your behalf. We may require proof that you have designated the authorized agent to act on your behalf and to verify your identity directly with us. Please contact us at for more information if you wish to submit a request through an authorized agent. 

How We Protect Your Information 

We use appropriate data collection, storage and processing practices and security measures to protect against unauthorized access, alteration, disclosure or destruction of your personal information and data stored on our Site. In the unfortunate event of a data security breach, we will notify users whose personal information may have been breached. 

Sharing Your Personal Information 

We do not sell or rent personal data to anyone. That said, for users over the age of 18, we may share your basic demographic information (such as your name, IP address, and physical or email address, etc.) with others, such as our contractors, trusted partners and affiliates as necessary to operate our business, and as permitted by law. As detailed above, we do disclose personal information to third parties through the use of plugins. If we share data to perform statistical analysis, send email or postal mail, provide customer support, or arrange for deliveries, such third parties are required to maintain the confidentiality of your information. We do not share personal information with third parties for their direct marketing purposes,

What About Aggregated Data? 

We may aggregate (combine) data about visitors, who are over 18 years of age, to the Site in a non- identifiable manner and use it for our business purposes in a way that is unrelated to your use of the Site. 

  • E.g., we might aggregate data for product development and improvement activities and disclose such aggregated data to third parties.
  • No personally identifiable information is available or used in this process. 

What About Governmental and Legal Disclosures? 

Except as described above, we do not disclose the identities of visitors or users of the Site unless we are required to do so by or, or unless we believe, in good faith, that sharing is necessary: 

  • to protect your safety or the safety of others,
  • to protect our rights,

  • to investigate fraud, or
to respond to a government request. 

We will respond to any subpoena received from a government agency (i.e., the Securities and Exchange Commission or law enforcement agencies) without prior notice to you. Unless prohibited by law or by a valid court order, we will attempt to notify you of any subpoena received from any other party (i.e., for civil litigation) which requires us to disclose your identity. We will wait ten (10) days, or a lesser amount of time as required by the deadline in the subpoena, before providing the information requested by the subpoena. 

What About Do Not Track? 

Websites and web applications can track your movement on the web to tailor suggestions based on your interests. We may track your movement through the Site. If you do not want your browsing behavior to be tracked, your web browser allows you to set the Do Not Track (DNT) signal on your browser so that third parties know you do not want to be tracked. We suggest that you read the privacy policies of third party websites to see if those websites track your browsing. Information gathered using tracking technology will be used and disclosed as described in this Privacy Policy, and the privacy policies of the applicable third parties. To find out more about the “Do Not Track” feature, you may visit

Third Party Websites

Although we may link to third party websites as part of our own general information provided here, such websites are not maintained by or related to The Children’s OCD & Anxiety Collective. By clicking on any affiliate links, you agree that The Children’s OCD & Anxiety Collective is not responsible for any cookies or other kinds of data collection that might exist on these websites and you should evaluate any third party website terms and conditions to understand their data collection or cookies policies. 

Interaction with External Social Networks and Platforms

Our site includes links to Facebook, LinkedIn, and Instagram. You can interact with social networks or other external platforms directly from our Site’s pages. The interaction and information obtained by this Site are always subject to the user’s privacy settings for each social network. If a service enabling interaction with social networks is installed, it may still collect traffic data for the pages where the service is installed, even when users do not use it. 

Depending on your privacy settings, our website may access your social media to post to our profile or share. All of that functionality, however, happens on the external social network or platform side, so no personal data is collected on behalf of

How Your Data is Processed 

The data controller processes the data of users in a lawful and proper manner and takes appropriate security measures to prevent unauthorized access, disclosure, modification, or unauthorized destruction of the data. Processing is carried out using computers and devices, with organizational methods and logics strictly related to the stated purposes.

In addition to the owner, in some cases, access to the data may be available to external parties (such as third party technical service providers, hosting providers, IT companies, and communications agencies).

Where Your Data is Processed 

To the fullest extent possible, the data are processed at the headquarters of the data controller in Los Angeles, California, United States of America, unless stated otherwise in the rest of this document. We cannot guarantee that all data will be processed in this manner because we do not have ultimate control or direction over how our data is processed. The data controllers also may access and process information from other locations from time to time. We make no representation that the information you provide will always be processed in this way. 

If you are visiting our websites from outside the United States, please be aware that we are located in the United States and that you may be sending information (including personal data) to the United States. That information may be transferred within the United States or back out of the United States to other countries. It is difficult to determine the precise locations to which the contents that may contain Personal Information are transferred. We have data processing agreements in place with our service providers consistent with applicable privacy and data security laws. 

How Long We Retain Your Data 

The data are kept for the time necessary to perform the service requested by the user, and the user can always ask for their suspension or removal (contact information below). 

Changes to this Privacy Policy 

The Site reserves the right to make changes to this Privacy Policy at any time by giving notice to its users on this page, and by ensuring protection of the personal information, in accordance with the law, in all cases. It is strongly recommended that Site users review this page often, referring to the date of the last modification listed at the bottom. You acknowledge and agree that it is your responsibility to review this Privacy Policy periodically and become aware of modifications. 

Your Acceptance of These Terms 

By using this Site, you signify your acceptance of this policy. If you do not agree to this policy, please do not use our Site. Your continued use of the Site following the posting of changes to this policy will be deemed your acceptance of those changes. 

Contacting Us 

If you have any questions about this Privacy Policy, the practices of this Site, or your dealings with this Site, please contact the Data Controller at: 

Elena Fasan


Address: 1125 E. Broadway, Glendale, CA 91205

The Privacy Policy was last updated on November 27th, 2022.