top of page

Privacy Policy

Updated April 2026

Introduction
Bright Futures (“we,” “our,” or “us”) is committed to protecting your privacy and safeguarding your personal information. This Privacy Policy outlines how we collect, use, store, and protect your information in accordance with applicable privacy legislation, including Ontario’s Personal Health Information Protection Act (PHIPA).
 

Information We Collect
In order to provide high-quality care, we may collect personal and health information such as your name, date of birth, contact information, gender, relevant medical and developmental history, and clinical notes from services provided. This information allows us to deliver individualized and effective support.
 

Use of Information
Your information is used for both clinical and operational purposes. This includes providing services, maintaining clinical records, coordinating appointments, processing billing, and communicating with you regarding your care. We may also use this information to improve our services and overall client experience.
 

Consent
By engaging with Bright Futures, you consent to the collection, use, and disclosure of your information as outlined in this policy. You may withdraw or limit your consent at any time, subject to legal and professional obligations, by contacting us directly.
 

Confidentiality and Disclosure
We take confidentiality seriously and do not share your personal information without your consent, except where required or permitted by law. Situations where disclosure may occur include:

  • When required by a court order or legal proceeding

  • If there is a risk of serious harm to you or others

  • When mandated by regulatory or professional standards
     

Safeguards and Security
We implement appropriate physical, technical, and administrative safeguards to protect your information. This includes secure digital systems, encryption, restricted access, and secure storage of physical records. Our team is trained to uphold strict confidentiality and privacy practices.
 

Retention of Records
Personal information is retained only for as long as necessary to meet clinical, legal, and administrative requirements. When records are no longer required, they are securely destroyed in accordance with applicable regulations.
 

Electronic Communication and Website Use
While we take reasonable precautions, electronic communication (such as email) may not be fully secure. We recommend limiting the sharing of sensitive information through these channels. Our website may collect limited data such as IP addresses, cookies, and browsing behaviour to improve functionality and user experience. We do not sell or share your information with third-party marketers.
 

Questions and Concerns
If you have any questions, concerns, or complaints about how your information is handled, please contact us. We are committed to addressing concerns promptly and transparently.
 

Updates to This Policy
This Privacy Policy may be revised periodically to reflect updates in legislation or our practices. The most current version will always be available on our website.

bottom of page