Privacy Policy
Last updated: January 31, 2026
At Freedom Assessment, we take privacy seriously. This policy explains how we collect, use, and protect your information. Our core principle is simple: we collect only what we need and delete what we do not.
Key Point: Client email addresses are automatically deleted within 24 hours of report delivery. We do not store identifying client information long-term.
1. Information We Collect
Practitioner Information
When you create a practitioner account, we collect:
- Full name
- Email address
- Business name (optional)
- Phone number (optional)
- Payment information (processed securely by Stripe)
Client Information
When practitioners create assessments for clients, we collect:
- Client first name or identifier (e.g., "John," "Client 2")
- Client email address (for delivery only)
- Assessment responses
2. Automatic Data Deletion
This is the most important section of our privacy policy.
Client email addresses are automatically and permanently deleted from our systems within 24 hours of report delivery.
What Gets Deleted
| Data Type | Retention Period |
|---|---|
| Client email address | Deleted within 24 hours of report delivery |
| Client first name/identifier | Retained (not personally identifiable) |
| Assessment responses | Retained anonymously |
| Practitioner account data | Retained until account deletion |
Why We Do This
By automatically deleting identifying information, we ensure that:
- Sensitive assessment data cannot be connected to real individuals
- In the event of a data breach, no personally identifiable information linked to assessment results can be exposed
- We minimize our data footprint and liability
- Your clients' privacy is protected by design, not just by policy
3. How We Use Information
Practitioner Information
- To provide access to the platform
- To process payments
- To send important account notifications
- To provide customer support
Client Information
- To deliver assessment links via email
- To generate personalized PDF reports
- To deliver completed reports via email
- After deletion: anonymized data for aggregate analytics only
4. Information We Do NOT Collect
We do not collect:
- Client last names
- Client physical addresses
- Client phone numbers
- Client date of birth
- Client Social Security numbers or government IDs
- Client health insurance information
5. Data Security
We protect your data with:
- AES-256 encryption for data at rest
- TLS 1.3 encryption for data in transit
- Secure cloud infrastructure (Supabase/AWS)
- Regular security audits
- Limited employee access to production data
6. Third-Party Services
We use the following third-party services:
- Supabase: Database and authentication
- Stripe: Payment processing
- Postmark: Email delivery
- Netlify: Website hosting
Each service has its own privacy policy. We only share the minimum information necessary for each service to function.
7. Your Rights
Practitioners
You have the right to:
- Access your account data
- Update your account information
- Delete your account
- Export your data
Clients
Because client email addresses are automatically deleted within 24 hours, there is typically no identifying data to request or delete. If you have concerns, contact your practitioner directly, as they maintain their own client records.
8. Cookies
We use essential cookies only for:
- Authentication (keeping you logged in)
- Security (preventing fraud)
We do not use advertising or tracking cookies.
9. Children's Privacy
The Freedom Assessment is not intended for use with individuals under 18 years of age. We do not knowingly collect information from minors.
10. Changes to This Policy
We may update this policy from time to time. We will notify practitioners of significant changes via email.
11. Contact Us
For privacy questions or concerns:
Dr. Hines Inc.
Broken Arrow, Oklahoma
[email protected]