Legal

Privacy Policy

Last updated: June 2026

Introduction

Cowboy Healthcare, LLC ("Cowboy Healthcare," "we," "us," or "our") is the operator of the Cowboy Healthcare Physical Therapy website and its associated services. We are committed to protecting the privacy and security of all individuals who interact with our practice — whether as patients, website visitors, job applicants, or prospective clients.

This Privacy Policy explains in detail what personal information we collect, why we collect it, how it is used and protected, who it may be shared with, and what rights you have regarding your information. By accessing or using our website or services, you acknowledge that you have read and understood this policy.

This policy applies to our website at cowboyhealthcare.com and all subpages therein. It does not govern third-party websites linked from our pages.

Information We Collect

We collect information in several ways — directly from you, automatically when you browse our website, and through third-party tools we use to operate our practice.

Information you provide directly:

Information collected automatically:

How We Use Your Information

We use the information we collect for the following specific purposes:

We do not sell, rent, trade, or otherwise disclose your personal information to third parties for their own marketing or commercial purposes.

Health Information and HIPAA

As a licensed physical therapy provider, Cowboy Healthcare is a Covered Entity under the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and its implementing regulations (45 C.F.R. Parts 160 and 164).

All Protected Health Information (PHI) — including your name when associated with a health condition, diagnoses, treatment records, insurance information, and clinical notes — is governed by our HIPAA Notice of Privacy Practices (NPP). A copy of our NPP is provided to every patient at their first appointment and is available upon request by contacting us at info@cowboyhealthcare.com.

We use our PHI only as permitted under HIPAA, including for treatment, payment, and healthcare operations. We will not disclose your PHI to any party outside your care team without your written authorization, except as required by law (e.g., mandatory reporting, law enforcement orders, or public health requirements).

Our electronic health records are stored and processed by a HIPAA-compliant EHR platform with its own security and data processing standards. We maintain a Business Associate Agreement (BAA) with all vendors who access PHI on our behalf.

How We Share Your Information

We share your information only in the following limited circumstances:

We never sell your data to data brokers, advertising networks, or any third party for commercial gain.

Cookies and Tracking Technologies

Our website uses cookies — small text files stored on your browser — and similar technologies to support site functionality and improve your experience. We use the following types:

We do not use third-party advertising cookies, behavioral tracking pixels, or social media retargeting tools. You can manage or disable cookies through your browser settings at any time. Disabling essential cookies may limit certain site features.

Data Retention

We retain personal information only as long as necessary for the purposes for which it was collected, or as required by law:

Data Security

We take the security of your personal information seriously and maintain reasonable administrative, technical, and physical safeguards designed to protect it against unauthorized access, disclosure, alteration, or destruction. These measures include:

No method of transmission over the internet is 100% secure. While we strive to protect your information, we cannot guarantee absolute security. In the event of a data breach affecting your PHI, we will notify you as required under HIPAA's Breach Notification Rule.

Your Rights

Depending on your location and the nature of the information involved, you may have the following rights:

Medical record requests are processed under HIPAA's patient rights provisions (45 C.F.R. § 164.524). We will respond to all other requests within 30 days. To exercise any of these rights, contact us at info@cowboyhealthcare.com.

Children's Privacy

Our website is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal information, please contact us immediately at info@cowboyhealthcare.com and we will delete it promptly. Minors receiving physical therapy services are treated under the supervision of a parent or legal guardian.

Third-Party Links

Our website may contain links to third-party websites, including our EHR patient portal and insurance verification tools. These sites have their own privacy policies, which we encourage you to review. We are not responsible for the privacy practices of any website we do not operate.

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will update the "Last updated" date at the top of this page. We encourage you to review this policy periodically. Continued use of our website or services following any update constitutes your acceptance of the revised policy.

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or the way we handle your personal information, please reach out to us:

For HIPAA-specific requests or to obtain a copy of our Notice of Privacy Practices, please call our office directly or send a written request to the address above.