Privacy Policy

Last updated: January 2026

Our Commitment to Privacy

Anchora is built for mental health care, where privacy isn't just important—it's essential. We designed our platform with privacy as a foundational principle, not an afterthought.

Information We Collect

We collect information necessary to provide our services:

  • Account information: Email address and name when you create an account
  • Clinical data: Worksheet responses, assessment scores, and progress notes entered by you or your clinician
  • Usage data: How you interact with our platform to improve the experience
  • Communications: Messages between you and our support team

How We Use Your Information

  • To provide and maintain our therapy support platform
  • To facilitate communication between patients and their clinicians
  • To generate progress reports and outcome measurements
  • To send service-related notifications (with your consent)
  • To improve our platform based on aggregate, anonymized usage patterns

Data Protection

We implement robust security measures:

  • All data is encrypted in transit (TLS 1.3) and at rest (AES-256)
  • Access controls ensure only authorized parties can view clinical data
  • Regular security audits and vulnerability assessments
  • Secure, SOC 2 compliant infrastructure

Your Rights

You have the right to:

  • Access: Request a copy of your personal data
  • Correction: Update inaccurate information
  • Deletion: Request removal of your data (subject to legal retention requirements)
  • Portability: Export your data in a standard format
  • Withdraw consent: Opt out of optional data processing

Data Sharing

We do not sell your personal information. We only share data:

  • With your explicit consent
  • With your treating clinician as part of the care relationship
  • With service providers who help operate our platform (under strict confidentiality agreements)
  • When required by law or to protect safety

HIPAA Compliance

For users in the United States, we comply with the Health Insurance Portability and Accountability Act (HIPAA). We enter into Business Associate Agreements (BAAs) with healthcare providers and implement appropriate administrative, physical, and technical safeguards to protect Protected Health Information (PHI).

Cookies

We use essential cookies to maintain your session and remember your preferences. We do not use tracking cookies for advertising purposes.

Contact Us

If you have questions about this privacy policy or your data, contact us at privacy@anchora.health