سياسة الخصوصية وإشعار ممارسات الخصوصية

Effective Date: March 25, 2026

At Restart, we are dedicated to helping individuals struggling with addiction achieve lasting recovery through a holistic approach. Because we handle sensitive health information, your privacy is our highest priority. This policy outlines how we collect, protect, and manage your data in compliance with HIPAA (Health Insurance Portability and Accountability Act) and global privacy standards.

1. Who We Are

Our website address is: https://restartorg.com. We operate as a mental health and addiction recovery platform providing coaching, nutrition plans, and psychological support.

2. Information We Collect & Why

  • Medical & Health Data (PHI): When you engage with our recovery programs, nutrition plans, or journals, we collect Protected Health Information (PHI). This data is strictly used for your treatment and recovery journey.

  • Comments: When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

  • Media: If you upload images to the website (such as progress photos or journal entries), we recommend avoiding images with embedded location data (EXIF GPS). While we secure your data, visitors to public areas of the site could theoretically extract location data from public images.

  • Contact Forms: Information submitted via our “Consultation” or “Contact” forms is used solely to respond to your request and is protected under our secure database protocols.

3. HIPAA & Data Protection (Encryption)

Unlike standard websites, Restart implements advanced security for sensitive health data:

  • Encryption at Rest: We use PGP symmetric encryption (pgcrypto) for sensitive database fields. This ensures that even in the event of unauthorized access, your personal health details remain unreadable.

  • Encryption in Transit: All communications are encrypted via SSL (HTTPS) to prevent interception.

  • HIPAA Compliance: We maintain Business Associate Agreements (BAAs) with our core infrastructure providers (such as AWS, Agora, and Twilio) to ensure your tele-health sessions and data storage meet federal healthcare security standards.

4. Cookies

  • Convenience: If you leave a comment or fill a form, you may opt-in to saving your name and email in cookies so you do not have to fill them in again. These last for one year.

  • Login & Session: If you visit our login page, we set a temporary cookie to determine if your browser accepts cookies (contains no personal data). When you log in, we set cookies to save your login info (2 days) and screen choices (1 year).

  • Service Cookies: Third-party integrations like Stripe (payments) and Agora (video calls) may set essential cookies to maintain secure sessions.

5. Embedded Content & Third Parties

Articles on this site may include embedded content (e.g. videos, images, articles). This content behaves as if the visitor has visited the other website directly. These websites may collect data about you or use cookies.

  • Data Sharing: We do not sell your health data. We only share data with essential service providers (like payment processors or secure video tools) who are contractually bound to protect your privacy.

  • Password Resets: If you request a password reset, your IP address will be included in the reset email for security verification.

6. How Long We Retain Your Data

  • Comments: Retained indefinitely for automated moderation.

  • User Profiles: For registered users, we store the personal information provided in their profile. Users can see, edit, or delete their information at any time (except usernames).

  • Health Records: Clinical and recovery records are retained in accordance with legal healthcare retention requirements.

7. Your Rights Over Your Data

If you have an account on this site, you can request an exported file of the personal data we hold about you. You can also request that we erase any personal data.

  • Note: This does not include any data we are legally obliged to keep for administrative, medical, or security purposes under HIPAA or local regulations.

8. Where Your Data is Sent

Visitor comments may be checked through an automated spam detection service. Sensitive health data is stored on our secure, encrypted servers located within our HIPAA-compliant cloud infrastructure.

اتصل بنا For questions regarding your privacy or to exercise your data rights, please contact our Privacy Officer at Support@restarturself.com.

Scroll to Top