Privacy Policy

Last updated: April 2026

Pre-launch note: Zaha Health launches April 2027. This page will be replaced with our full legal privacy policy before we accept our first client. This draft describes our intended handling of information collected via the intake form and mailing list.

What we collect

If you fill out our intake form, we collect your name, email, phone, age range, the program you're interested in, and whatever context you choose to share. That's it.

How we use it

We use your information only to respond to your inquiry and match you with the right program. We do not sell it, share it with advertisers, or use it for marketing beyond responding to you.

Clinical sessions

Once you become a client, all therapy sessions are covered by HIPAA. Imam consultations follow strict confidentiality agreements. Your provider cannot share session content with anyone outside your care team without your written consent, except where required by law.

Insurance

We do not bill insurance directly to protect your privacy. We provide a superbill receipt if you choose to seek reimbursement.

Data storage

Intake form submissions land in our secure email. Session notes and records are stored in a HIPAA-compliant electronic health record system. We retain records per state licensing requirements (typically 7 years).

Your rights

You can request a copy of any information we hold about you, ask us to correct it, or request deletion (subject to licensing-mandated retention) by emailing hello@zaha.health.

Contact

Questions about this policy? Email hello@zaha.health.