Privacy

Business information, handled with care.

This policy explains what Credible by Design collects through this website, why we collect it, where it may be processed, and the choices available to you.

Effective July 15, 2026 · Last updated July 15, 2026

1. Who we are

Credible by Design is a website, content, conversion, and visibility studio for therapists, healthcare practices, wellness organizations, and other trust-led services. Questions about this policy can be sent to [email protected].

2. Information we collect

We may collect the following categories of information:

  • Contact details: name, work email, practice or organization name, and information you choose to provide when contacting us.
  • Business and project details: public website or profile URLs, practice type and size, service priorities, project timing, working investment range, and form answers.
  • Attribution and technical details: submission page, referral source, campaign parameters, browser user agent, and a privacy-preserving fingerprint used to limit abuse. We do not store a raw IP address with the lead record.
  • Website analytics: aggregated or pseudonymous page and interaction data, where analytics consent and configuration permit it.

3. Do not submit client or patient information

Our forms are for business, marketing, and public practice information only. Do not send client or patient names, health details, diagnoses, records, appointments, protected health information, or other sensitive personal information. These forms are not clinical communication tools, patient portals, emergency services, or HIPAA-secure intake forms.

4. How we use information

We use submitted information to:

  • review and respond to audits, project requests, content briefs, care inquiries, and scans;
  • recommend a relevant service, next conversation, or smaller first intervention;
  • deliver confirmations and service-related updates;
  • protect forms from spam, fraud, and repeated automated submissions;
  • understand which pages and campaigns produce useful inquiries; and
  • send occasional marketing notes only when you separately opt in.

5. Service providers and processing

Depending on the configured workflow, providers may include Firebase and Google Cloud for server-side storage, Resend for transactional email, Cloudflare Turnstile for abuse prevention, Google Analytics for website measurement, and a customer relationship or mailing-list service for follow-up. We may forward a Practice Pulse request to our scanning system so the requested public-practice scan can be prepared.

Providers process information under their own privacy and security terms. Information may be processed in countries other than the country where you live.

6. When information is shared

We do not sell personal information. We share information with service providers only as needed to operate the request, with professional advisers where necessary, or when required to protect rights, safety, or comply with law. A business reorganization may include information subject to safeguards.

7. Retention

Lead and project-request information is generally kept for up to 24 months after the last meaningful interaction, unless a longer period is needed for an active client relationship, accounting, dispute resolution, security, or legal obligations. Marketing information is kept until you unsubscribe or ask us to delete it. Short-lived rate-limit records are removed automatically where configured.

8. Security

We use reasonable safeguards, including server-side submission handling, restricted database access, transport encryption, spam controls, and limited access. No method of transmission or storage is completely risk-free, so we cannot guarantee absolute security.

9. Your choices and rights

You may ask to access, correct, delete, restrict, or receive a portable copy of information where local law provides that right. Email [email protected]. We may need to verify your identity first.

Every marketing message includes an unsubscribe path. Unsubscribing does not prevent service-related replies about a request you submitted.

10. Children

This website and its business forms are not directed to children under 16.

11. Changes to this policy

We may update this policy as the website, providers, or legal requirements change.

Questions or requests

Contact Credible by Design.

Email [email protected] or return to the homepage.