Privacy Policy

Last Updated: February 9, 2026 | Effective Date: February 9, 2026

Plain Language Summary: We collect the minimum information needed to deliver the assessment. Your individual answers are only shared with your partner through the results page. We do not sell your data. We do not serve ads. We do not share your information with third parties except as needed to operate the Service (payment processing, email delivery).

1. Who We Are

This Privacy Policy applies to Dr. Hines Inc. ("Company," "we," "us," or "our"), a coaching practice based in Broken Arrow, Oklahoma, operating the Boundary Agreement platform at boundaryagreement.com (the "Service").

Data Controller: Dr. Hines Inc.
Contact: support@drhinesinc.com

2. Information We Collect

2.1 Information You Provide

Data Type	What	Why
Identity Information	First name, last name	Create your couple record, personalize your assessment experience
Contact Information	Email address, phone number	Send assessment codes, deliver results notifications, customer support
Assessment Answers	Your responses to assessment questions (including custom boundaries)	Generate your boundary agreement and AI coaching responses
Communication Profile	Personality and communication style derived from your answers	Tailor AI coaching to your communication patterns
Agreement Data	Your votes on boundary proposals (accept, edit, flag)	Track agreement progress and generate final boundary document
Payment Information	Billing information (processed by Stripe; we do NOT store credit card numbers)	Process payment for the Service

2.2 Information Collected Automatically

Data Type	What	Why
Device Information	Browser type, operating system, screen resolution	Optimize the Service for your device, troubleshoot technical issues
Usage Data	Pages visited, time spent on assessment, section completion times	Improve assessment design, identify confusing questions
IP Address	Your internet protocol address	Security, fraud prevention, terms acceptance verification
Terms Acceptance Records	Timestamp, IP address, user agent at time of terms acceptance	Legal compliance and verification of voluntary consent

2.3 Information We Do NOT Collect

Social Security numbers
Government-issued ID numbers
Health insurance information
Clinical diagnoses or medical records
Credit card numbers (processed and stored by Stripe, not us)
Location data (GPS) beyond what is derived from IP address
Data from minors under 18

3. How We Use Your Information

We use your information for the following purposes and no others:

Deliver the Service: Create your couple record, generate assessment codes, process your answers, generate boundary proposals, provide AI coaching, and produce your boundary agreement document.
Communications: Send assessment codes, completion notifications, agreement updates, and customer support responses.
Payment Processing: Process your payment through Stripe.
Security: Verify identity, prevent fraud, and protect against unauthorized access.
Service Improvement: Analyze aggregate, de-identified usage patterns to improve assessment questions and the user experience. Individual answers are never used for marketing or shared publicly.
Educational communications: Send periodic relationship tips, boundary check-in reminders, exercises based on your assessment results, product updates, and related content from Dr. Hines Inc. You may opt out at any time via the unsubscribe link in any email.

4. Who Sees Your Data

4.1 Your Partner

Your individual assessment answers are shared with your partner ONLY through the Boundary Agreement results page, and ONLY after BOTH partners have completed the assessment. During the assessment, neither partner can see the other's answers.

4.2 Your Practitioner (If Applicable)

If your assessment was initiated by a practitioner (therapist, counselor, coach, pastor), that practitioner may have access to your couple's assessment results through their practitioner portal. This includes both partners' answers and the resulting boundary agreement. By accepting a practitioner-issued assessment code, you consent to your practitioner viewing these results.

4.3 AI Service Providers

Your assessment answers and chat messages are sent to AI model providers (including Anthropic and/or xAI) to generate boundary proposals and coaching responses. These providers process your data under their own privacy policies and data processing agreements. We do not send your name, email, phone number, or payment information to AI providers. Only assessment answers and chat content are sent, without personally identifiable information attached.

4.4 Service Providers

Provider	Purpose	Data Shared
Stripe	Payment processing	Name, email, payment details
Supabase	Database hosting and storage	All Service data (encrypted at rest)
Postmark	Transactional email delivery	Name, email address, assessment codes
Netlify	Website hosting	No user data (static hosting only)
Anthropic / xAI	AI model processing	Assessment answers and chat content (no PII)

4.5 Who Does NOT See Your Data

Advertisers: We do not sell, rent, or share your data with advertisers. Ever.
Data brokers: We do not sell your personal information to data brokers or any third party.
Other users: No one outside your couple (and your practitioner, if applicable) can see your assessment data.
The public: Your answers, results, and boundary agreements are never made public.

5. Data Security

We implement reasonable administrative, technical, and physical safeguards to protect your data:

All data is transmitted over HTTPS (TLS encryption in transit)
Database is encrypted at rest
Access to production data is limited to authorized personnel
Payment information is processed and stored by Stripe (PCI DSS Level 1 certified) and never stored on our servers
Assessment codes are unique and randomly generated

No method of transmission or storage is 100% secure. While we strive to protect your personal information, we cannot guarantee absolute security. You acknowledge this risk.

6. Data Retention

We retain your data for the following periods:

Assessment data and boundary agreements: Retained for as long as your account is active, plus 2 years after last activity, to allow couples to reference their agreements.
Payment records: Retained for 7 years as required by tax and accounting regulations.
Terms acceptance records: Retained indefinitely for legal compliance.
AI chat logs: Retained for 90 days for quality improvement, then deleted.
Email preferences: Your opt-in/opt-out preferences are retained for as long as your data exists in our system to ensure we honor your communication choices.

You may request deletion of your data at any time by contacting support@drhinesinc.com. We will delete your data within 30 days of a verified request, except where retention is required by law.

7. Your Rights

Depending on your jurisdiction, you may have the following rights:

Access: Request a copy of the personal data we hold about you.
Correction: Request correction of inaccurate personal data.
Deletion: Request deletion of your personal data (subject to legal retention requirements).
Data Portability: Request your assessment data in a machine-readable format.
Opt-Out of Communications: Unsubscribe from non-essential communications at any time.

To exercise any of these rights, email support@drhinesinc.com with the subject line "Privacy Request." We will respond within 30 days.

8. HIPAA Disclaimer

The Boundary Agreement is NOT a HIPAA-covered entity. The Service is a coaching and communication tool, not a healthcare service. Dr. Hines Inc. is not a licensed healthcare provider and does not provide therapy, counseling, or medical treatment. As such, the Health Insurance Portability and Accountability Act (HIPAA) does not apply to the Service. If you are seeking HIPAA-compliant services, please consult a licensed healthcare provider.

9. Children's Privacy

The Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children under 18. If we learn that we have collected personal information from a child under 18, we will delete that information promptly. If you believe a child under 18 has provided us with personal information, contact support@drhinesinc.com immediately.

10. Cookies and Tracking

The Service uses minimal cookies and local storage for the following purposes only:

Session management: Keep you logged into your assessment session
Preference storage: Remember display preferences (e.g., day/night mode)
Auto-save: Save your assessment progress so you can resume if you close the browser

We do NOT use tracking cookies, advertising cookies, or analytics cookies that track you across other websites. We do NOT use Google Analytics, Facebook Pixel, or any third-party tracking scripts.

11. Third-Party Links

The Service may contain links to third-party websites or services. We are not responsible for the privacy practices of those third parties. We encourage you to read the privacy policies of any third-party websites you visit.

12. California Residents (CCPA)

If you are a California resident, you have the right under the California Consumer Privacy Act (CCPA) to:

Know what personal information we collect and how it is used
Request deletion of your personal information
Opt out of the sale of your personal information (we do not sell personal information)
Not be discriminated against for exercising your privacy rights

To exercise your CCPA rights, contact support@drhinesinc.com.

13. International Users

The Service is operated from the United States. If you access the Service from outside the United States, your data will be transferred to and processed in the United States. By using the Service, you consent to this transfer. If you are located in the European Economic Area (EEA), United Kingdom, or another jurisdiction with data protection laws, please be aware that U.S. data protection laws may differ from those in your jurisdiction.

14. Email Marketing Compliance (CAN-SPAM)

All marketing and educational emails from Dr. Hines Inc. comply with the CAN-SPAM Act. Every non-transactional email we send will:

Clearly identify Dr. Hines Inc. as the sender
Include our physical mailing address
Include a clear and conspicuous unsubscribe mechanism
Honor unsubscribe requests within 10 business days
Not use deceptive subject lines or misleading header information

To opt out of non-transactional emails, click "Unsubscribe" at the bottom of any email or contact support@drhinesinc.com.

15. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last Updated" date. Your continued use of the Service after changes constitutes acceptance of the updated Privacy Policy.

16. Contact Us

For questions, concerns, or requests regarding this Privacy Policy or your personal data, contact:

Dr. Hines Inc.
Broken Arrow, Oklahoma
Email: support@drhinesinc.com
Website: boundaryagreement.com