PRIVACY POLICY
Last Updated: January 30, 2026
This Privacy Policy describes how Collective Healing Arts LLC, a Utah limited liability company, Jessica Endicott, and all affiliated brands and programs, including Cognitive Harmony™ and Rooted & Rewired™ (collectively, the “Company,” “we,” “us,” or “our”), collect, use, store, and disclose personal information.
By accessing our website, enrolling in programs, completing forms, or participating in services, you acknowledge that you have read, understood, and agree to this Privacy Policy.
1. Information We Collect
We may collect personal information that you voluntarily provide, including but not limited to:
Name, email address, phone number
Billing and payment information
Account or login information (if applicable)
Intake forms, questionnaires, and self-reported wellness or health-related information
Communications via email, forms, messaging platforms, or community spaces
Participation details for programs, sessions, events, memberships, or retreats
We may also collect limited technical data automatically, including:
IP address
Browser type and device information
Website interaction data such as cookies, analytics, and page views
2. Health & Wellness Information (Important Disclosure)
The Company may collect self-reported health, wellness, lifestyle, or personal information solely for educational, coaching, and program-related purposes.
HIPAA Disclaimer
The Company is not a covered entity or business associate under the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”).
Information shared with the Company is not considered Protected Health Information (PHI) and does not constitute a medical record.
While the Company may use third-party technology platforms that offer HIPAA-compliant or HIPAA-capable infrastructure, this does not create a HIPAA-covered relationship between you and the Company.
Reasonable safeguards are used; however, confidentiality to HIPAA standards is not guaranteed.
3. How We Use Your Information
We may use your information to:
Deliver programs, services, and educational materials
Communicate regarding enrollment, scheduling, participation, or support
Process payments and manage accounts
Maintain internal records and improve services
Enforce our Terms & Conditions and Refund Policy
Comply with legal and regulatory obligations
We do not sell your personal information.
4. Third-Party Service Providers
The Company uses third-party platforms and service providers to operate the business, including but not limited to:
Payment processors
Client management and scheduling platforms
Email, messaging, and communication tools
Website hosting and analytics services
These third parties maintain their own privacy and security practices. The Company is not responsible for the privacy policies, security measures, availability, or performance of third-party services.
5. Electronic Communications
By providing your contact information, you consent to receive communications electronically, including emails, text messages, and platform notifications related to your participation or account.
You may opt out of marketing emails at any time. Transactional, administrative, or service-related communications may still be sent.
6. Data Security
We take reasonable administrative, technical, and physical measures to safeguard personal information.
However:
No system is completely secure
We cannot guarantee absolute confidentiality or security
Information is shared at your own risk
7. Data Retention
We retain personal information only as long as reasonably necessary to:
Provide services
Maintain business and legal records
Comply with legal obligations
Resolve disputes
Enforce agreements
We reserve the right to delete information at our discretion, subject to applicable law.
8. Your Responsibility
You are responsible for:
Providing accurate and current information
Maintaining the confidentiality of any login credentials
Not sharing access to programs, portals, or materials
9. Children’s Privacy & Parental Consent
The Company’s services are primarily intended for individuals 18 years of age or older.
In limited circumstances, the Company may work with individuals under the age of 18 only with the express, written consent of a parent or legal guardian.
If a minor participates in any service:
A parent or legal guardian must complete and sign all required intake forms, waivers, and consent documents
The parent or legal guardian assumes full responsibility for the minor’s participation, conduct, decisions, and outcomes
Any information collected about a minor is provided voluntarily by the parent or guardian and used solely for educational or coaching-related purposes
The Company does not knowingly collect personal information from minors without verified parental consent. If information is collected without proper authorization, it will be deleted promptly.
The Company does not provide medical, mental health, therapeutic, emergency, or crisis services to minors.
10. No Emergency or Crisis Services
The Company does not provide emergency, medical, or mental health crisis services.
If you are experiencing a medical or mental health emergency, contact local emergency services or a qualified professional immediately.
11. Changes to This Privacy Policy
We may update this Privacy Policy at any time. Any changes will be posted on this page with a revised “Last Updated” date. Continued use of our services constitutes acceptance of the updated policy.
12. Governing Law
This Privacy Policy is governed by the laws of the State of Utah, without regard to conflict-of-law principles.
13. Contact Information
If you have questions about this Privacy Policy, you may contact:
Collective Healing Arts LLC
Utah, United States
Email: [email protected]
14. Acknowledgment
By using our website, submitting information, or participating in services, you acknowledge that you have read, understood, and agree to this Privacy Policy.