SynqWell Privacy Policy

Effective Date: January 19, 2026

This Privacy Policy describes how SynqWell (“SynqWell,” “we,” “our,” or “us”) collects, uses, discloses, and safeguards information when you access or use the SynqWell platform (the “Services”).

SynqWell is a proprietary technology platform operated by Wicker Therapy Group, a New York professional limited liability company. SynqWell and Wicker Therapy Group are trade names (DBAs) of Amy D. Wicker PsyD, PLLC (the “Practice”).

This Privacy Policy is incorporated by reference into the SynqWell Terms of Service.

1. Scope and Purpose

SynqWell is designed to support reflection, organization of information, and communication in connection with mental health services provided by licensed therapists through the Practice. SynqWell itself does not provide healthcare services.

This Privacy Policy applies to:

Important: To the extent your information is PHI held by the Practice, your privacy rights may also be described in the Practice’s Notice of Privacy Practices (NPP). In the event of any conflict between this Privacy Policy and the NPP as to PHI, the NPP controls.

2. Information We Collect

a. Information You Provide Directly

We may collect information you choose to provide, including:

b. Information Collected Through Your Use of the Services

We may collect limited technical and usage information, such as:

We use this information solely for security, performance, troubleshooting, and operational purposes.

c. Cookies and Similar Technologies

We may use essential cookies or similar technologies necessary to operate the Services (for example, to maintain sessions and prevent fraud). We do not use these technologies for behavioral advertising or to disclose PHI.

3. Protected Health Information (PHI) and HIPAA

Where SynqWell processes information on behalf of the Practice that constitutes Protected Health Information (PHI), SynqWell supports the Practice’s HIPAA compliance and the Practice uses SynqWell as part of its operations.

We apply HIPAA-aligned safeguards and process PHI only as permitted by HIPAA and applicable law, including for:

We also follow the HIPAA principle of minimum necessary access for operational use.

4. How We Use Information

We use information collected through the Services to:

SynqWell does not use user information for advertising, marketing profiling, or behavioral targeting.

5. Artificial Intelligence Processing

SynqWell may use automated and AI-assisted tools to generate summaries, reflections, or organizational outputs based on user-provided content.

Model training and reuse: SynqWell does not use patient PHI to train public or generalized commercial AI models. If we ever use de-identified or aggregated information to improve the Services, we will do so in a manner intended to comply with applicable law and to avoid use of identifiable PHI.

6. Data Sharing and Disclosure

We may share information only as follows:

We do not sell personal information or PHI. We do not share personal information or health-related data for cross-context behavioral advertising.

7. No Advertising or Tracking Pixels

No ad pixels/SDKs for health data. SynqWell does not use third-party advertising pixels, social media trackers, or advertising SDKs to disclose PHI or health-related content.

Operational analytics only. If we use analytics tools, they are configured to:

This approach is designed to reduce the risk of disclosures that have been the subject of regulatory enforcement actions involving consumer health data shared for advertising purposes.

8. Data Security

We implement administrative, technical, and physical safeguards designed to protect information against unauthorized access, disclosure, or misuse, including measures appropriate for handling sensitive health information.

Examples may include access controls, encryption in transit, logging, and least-privilege access practices. While we take reasonable steps to protect information, no system can guarantee absolute security.

Security Incident and Breach Notification

If we become aware of an incident that compromises the security or privacy of information, we will evaluate the event and, where required by law, provide notifications consistent with HIPAA and applicable state breach notification laws.

9. Data Retention

Information is retained only for as long as necessary to:

Retention of PHI is governed by applicable healthcare record retention laws.

10. User Rights

Depending on applicable law and whether the information is PHI maintained by the Practice, you may have rights to:

How to Submit Requests

Requests should be directed to the Practice using the contact information below. We may need to verify your identity before responding.

Important: Clinical record retention and professional obligations may limit deletion of certain information.

11. State Privacy Rights

SynqWell is designed for use through the Practice, and we comply with applicable state privacy and health privacy requirements.

Consumer Health Data Laws

Where applicable (for example, in contexts not covered by HIPAA), we comply with consumer health data laws such as the Washington My Health My Data Act. Where required, we obtain affirmative express consent before collecting or processing regulated consumer health data.

Other State Privacy Laws

Where applicable, users may have additional privacy rights under state laws. We will respond to verified requests as required by law.

12. Children’s Privacy

The Services are not intended for children under 18. We do not knowingly collect information from individuals under 18.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Material changes will be communicated through the Services or by other appropriate means.