Privacy Policy

Regina Abayev, JD, LMFT

2309 Pacific Coast Hwy, Suite 202, Hermosa Beach, CA 90254

info@reginaabayev.com  |  (323) 646-6263

Effective Date: May 11, 2026

This Privacy Policy describes how Regina Abayev, JD, LMFT ("I," "me," or "my practice") collects, uses, and protects information in connection with clinical services provided through this practice. This policy applies to current and prospective clients and complies with the Health Insurance Portability and Accountability Act (HIPAA), the California Confidentiality of Medical Information Act (CMIA), and other applicable state and federal laws.

1. Information I Collect

Clinical and Health Information

In the course of providing therapy services, I collect information that may include:

  • Contact information (name, address, phone number, email address)

  • Date of birth and demographic information

  • Presenting concerns, mental health history, and treatment goals

  • Session notes, progress notes, and treatment records

  • Emergency contact information

  • Billing and payment information

Information Collected Through My Website

My website (reginaabayev.com) uses a third-party booking system (SimplePractice) to allow prospective and current clients to schedule appointments. When you use the booking system, SimplePractice may collect your name, contact information, and appointment preferences. This information is handled in accordance with SimplePractice's own privacy policy and HIPAA-compliant practices. I do not collect personal information through any other website forms or tools.

2. How I Use Your Information

Information collected is used solely to provide and coordinate clinical services, including:

  • Scheduling and conducting therapy sessions

  • Maintaining clinical records as required by California law

  • Communicating with you about your care

  • Complying with legal and ethical obligations

I do not sell, rent, or share your personal or health information for marketing purposes.

3. HIPAA and Your Rights as a Client

As a licensed mental health provider, I am required by HIPAA to protect the privacy of your health information and to provide you with a Notice of Privacy Practices (NPP). You will receive a copy of the NPP at the start of treatment. Under HIPAA and California law, you have the right to:

  • Request access to your records

  • Request corrections to your records

  • Request restrictions on certain uses or disclosures

  • Receive an accounting of disclosures

  • File a complaint if you believe your privacy rights have been violated

To exercise any of these rights, contact me directly at info@reginaabayev.com or (323) 646-6263.

4. Confidentiality and Permitted Disclosures

All clinical information is kept strictly confidential. Disclosures without your written authorization are made only as permitted or required by law, including:

  • When there is a serious and imminent threat of harm to you or another identifiable person

  • When there is reasonable suspicion of child abuse, dependent adult abuse, or elder abuse

  • When ordered by a court of law

  • When required for mandatory reporting under California law

Any other disclosure of your health information requires your written authorization, which you may revoke at any time.

5. Telehealth

For clients receiving services via telehealth, sessions are conducted through SimplePractice's HIPAA-compliant video platform. I take reasonable steps to ensure the security of telehealth communications, but I cannot guarantee the security of information transmitted over the internet. Clients are responsible for ensuring the privacy of their own environment during telehealth sessions.

6. Third-Party Service Providers

I use SimplePractice as my practice management and electronic health record (EHR) platform. SimplePractice is a HIPAA-compliant platform and has entered into a Business Associate Agreement (BAA) with my practice as required by law. SimplePractice handles scheduling, session notes, billing, and telehealth. Their privacy policy is available at simplepractice.com.

No other third-party vendors have access to your protected health information.

7. Data Retention

Clinical records are retained for a minimum of seven years from the date of the last service, or seven years after a minor client reaches the age of 18, in accordance with California law. After the applicable retention period, records are destroyed in a secure manner that protects client confidentiality.

8. Security

I take the security of your health information seriously. Reasonable administrative, technical, and physical safeguards are in place to protect your records from unauthorized access, use, or disclosure. Electronic records are maintained through SimplePractice's encrypted, HIPAA-compliant platform.

9. California Privacy Rights

California law provides additional privacy protections for health information under the Confidentiality of Medical Information Act (CMIA). California residents have the right to request access to their medical records, to request corrections, and to be notified in the event of a breach of their unsecured medical information. For questions about your California privacy rights, contact me directly.

10. Minors

When providing services to minors, I comply with California laws governing the privacy rights of minors and the rights of parents or legal guardians to access records. In certain circumstances, minors have independent rights to confidentiality under California law, including with respect to certain mental health services sought voluntarily.

11. Changes to This Policy

I may update this Privacy Policy from time to time. The current version will always be available at reginaabayev.com. Material changes will be communicated to active clients directly.

12. Contact

For questions about this Privacy Policy or your privacy rights, please contact:

Regina Abayev, JD, LMFT

2309 Pacific Coast Hwy, Suite 202

Hermosa Beach, CA 90254

info@reginaabayev.com

(323) 646-6263