top of page

Privacy Policy for Refresh MedSpa

Late updated: August 29, 2024
 

Welcome to Refresh MedSpa ("we," "us," or "our"). We value your privacy and are committed to protecting your personal information. This Privacy Policy outlines how we collect, use, disclose, and protect your personal data when you visit our website or use our phone app. It also describes your rights under the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and other applicable laws.
 

1. Information We Collect

We may collect the following types of information:

  • Personal Information: This includes your name, address, phone number, email address, date of birth, and any other information you provide when you create an account, make a purchase, or communicate with us.

  • Protected Health Information (PHI): As a medical spa, we may collect health-related information, including medical history, treatment information, and any other data considered PHI under HIPAA.

  • Technical Data: This includes IP address, browser type, device information, and data collected through cookies and similar tracking technologies.
     

2. Use of Information

We use your information for the following purposes:

  • Providing Services: To deliver the services you request, including scheduling appointments, providing treatments, and processing payments.

  • Compliance with HIPAA: To ensure that your PHI is handled in accordance with HIPAA requirements, including safeguarding your information from unauthorized access.

  • Marketing: To send you promotional materials, newsletters, and updates about our services. You may opt out of marketing communications at any time.

  •  

  • Improvement of Services: To analyze user behavior and trends to improve our website, app, and services.

 

3. Disclosure of Personal Data

We may disclose your personal information in the following circumstances:

  • With Your Consent: We will share your information when you have given us explicit permission to do so.

  • For Treatment, Payment, and Healthcare Operations: As permitted under HIPAA, we may share PHI with healthcare providers, insurers, and other entities involved in your care.

  • Legal Requirements: We may disclose information to comply with legal obligations, such as responding to a court order or subpoena.

  • Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred to the new owner.

 

4. HIPAA Compliance

We are committed to protecting your PHI in compliance with HIPAA regulations. We implement administrative, physical, and technical safeguards to ensure the confidentiality, integrity, and security of your PHI. This includes limiting access to your PHI to authorized personnel only and ensuring that any third parties with whom we share your PHI are also HIPAA-compliant.
 

5. Tracking Technologies and Cookies

We use cookies and similar tracking technologies to enhance your experience on our website and app. Cookies are small text files stored on your device that help us understand how you interact with our services. We use cookies for:

  • Session Management: To keep you logged in and track your activity during your session.

  • Analytics: To analyze website traffic and usage patterns to improve our services.

  • Marketing: To deliver targeted advertisements based on your interests.
     

You can manage your cookie preferences through your browser settings. However, disabling cookies may affect your ability to use certain features of our website and app.
 

6. Links to Other Websites

Our website and app may contain links to other websites that are not operated by us. We are not responsible for the content, privacy policies, or practices of these third-party websites. We encourage you to review the privacy policies of any websites you visit.
 

7. Your Rights

Under HIPAA and other applicable laws, you have the following rights regarding your personal information:

  • Right to Access: You can request a copy of the personal information we hold about you.

  • Right to Amend: You can request corrections to your PHI if you believe it is inaccurate or incomplete.

  • Right to Restrict Disclosures: You can request that we limit the sharing of your PHI under certain circumstances.

  • Right to an Accounting of Disclosures: You can request a record of disclosures of your PHI made by us, excluding disclosures for treatment, payment, and healthcare operations.

 

8. Data Security

We implement industry-standard security measures to protect your personal information from unauthorized access, disclosure, alteration, or destruction. However, no method of transmission over the internet or electronic storage is completely secure, and we cannot guarantee the absolute security of your data.
 

9. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for legal, regulatory, or operational reasons. We will notify you of any significant changes by posting the updated policy on our website and app, along with the effective date.
 

10. Contact Us

If you have any questions or concerns about this Privacy Policy or our privacy practices, you can contact us via email: info@refreshmedspanj.com

bottom of page