Last Revised October 20, 2022 (“Effective Date”)
2. Important Definitions.
Our privacy practices are intended to comply with the Health Insurance Portability and Accountability Act of 1996 (“HIPAA“). We will maintain the privacy of your Protected Health Information (“PHI”) as required by HIPAA and the regulations promulgated thereunder. We encourage you to review our Notice of Privacy Practices, which may be found at portraitspa.com/privacy-practices and which describe how we may use and disclose your Health Information.
5. California Privacy Rights.
California residents have special protections under state law regarding the access and use of Personal Information. See CAL. CIVIL CODE §§ 1798.80 to .84. Under California Civil Code section 1798.83, California residents who have an established business relationship with us have the right to request that we provide certain information regarding the disclosure of their personal information to third parties for their direct marketing purposes during the immediately preceding calendar year. You may contact us by sending an e-mail to firstname.lastname@example.org to request such information.
6. Individuals Under Age 18.
This Site is not directed to children and children are not eligible to use the Services. We will not knowingly collect information from Site users under the age of eighteen (18). If you are under age 18, please do not attempt to use the Site or any of the Services or provide any Personal Information about yourself to us. If we learn that we have collected Personal Information from a child under 18, we will delete that information as quickly as possible. If you believe a person who is underage has signed up for an account, please contact us via e-mail at email@example.com.
7. The Personal Information we may collect and/or maintain about you includes (but is not limited to):
8. We may collect Personal Information from you when you
9. We may use your Personal Information for the following purposes (subject to applicable legal restrictions):
10. We also may disclose your Personal Information that we collect or that you provide (subject to applicable legal restrictions):
11. We will not sell or lease your Personal Information to any third party.
12. Information We Collect via Technology.
As you use the Site or the Services, certain information may be passively collected by Cookies, navigational data like Uniform Resource Locators (“URLs”) and third party tracking services, including:
13. De-Identified Information
We may use De-Identified Information created by us without restriction.
14. Information You Share with Third Parties.
15. Modification of Information.
We will not verify, modify or otherwise alter any Member Personal Information without the consent of the applicable Member, however, we may correct any internal errors or modify any immaterial information at any time. Members will be able to update some of their information through the Site. Requests to modify any information may also be submitted directly to firstname.lastname@example.org.
16. Deletion of Information.
17. Steps We Take to Keep Your Personal Information Secure.
We employ reasonable physical, electronic, and managerial security methods to help protect against unauthorized access to Personal Information, consistent with applicable law. We provide secure transmission of your Personal Information from your PC or mobile device to our servers and/or our Site. Personal Information collected by our Site is stored in secure operation environments that are not available to the public. Further, we use a password and authentication system that is user specific to ensure that users can only see the specific information to which they have been granted access. We also have policies, procedures, and controls to reduce the risk of unauthorized or accidental use, disclosure, or destruction of your Personal Information, and we train our employees on data security. Please be aware, however, that no data transmission via the Internet or a data storage facility is guaranteed to be perfectly secure. As a result, while we try to protect your Personal Information, we cannot ensure or guarantee the security of any information you transmit to us, and you do so at your own risk. There is no guarantee that information may not be accessed, disclosed, altered, or destroyed by breach of any of our physical, technical, or managerial safeguards. As with all electronic communications there are potential risks such as failures of hardware, software, and/or internet connections. We are not responsible for failures, distortions, delays, or other problems resulting from equipment configuration, connection, signal power, hardware, software, or any equipment used to access the internet. We do not guarantee that the confidentiality or security of any electronic transmissions via the internet can be assured, due to potentially unsecure computers or links, which could result in your information becoming lost or intercepted during transmission. It is your responsibility to protect the security of your login information and to use good judgment before deciding to send information via the internet.
18. Third Party Sites.
Transmittal of e-mails to this Site should not be considered to be private. Email transmissions should be considered to be at risk of becoming known or accessible to third parties. If you provide confidential information about you or your health to us via electronic communication, it is at your own risk. If you wish to correspond with us about your health via email, you will need to complete and return a Patient Consent to Allow Email Correspondence to us.
20. Updating Your Information.
If your information needs to be updated, corrected or deleted, please notify us. Your personal information can only be deleted in accordance without our data retention policy, and as permitted by law.
21. Access from Outside the United States.
22. Social Media Features.
23. Acceptance of Policy.
24. Report Violations.
You should report any security violations to us by sending an e-mail to email@example.com.