Privacy policy.

Effective Date: December 1, 2024

Downtown Aesthetics & Wellness (“we,” “our,” “us”) respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, and safeguard your information when you visit our website or engage with our services.

1. Information We Collect

We may collect and process the following categories of personal data:

  • Personal Information: Name, email address, phone number, and mailing address.

  • Health Information: Details you voluntarily provide for booking or consultations.

  • Usage Data: Information about how you use our website (e.g., IP address, browser type).

  • Payment Information: Billing details for purchases of our services or products.

2. How We Use Your Data

We collect and use your data for the following purposes:

  • To schedule appointments or consultations.

  • To provide information or services you request.

  • To improve our website and tailor your user experience.

  • To comply with legal obligations or protect our rights.

3. Medical Information and HIPAA Compliance

Any medical or health-related information you provide is handled in accordance with the Health Insurance Portability and Accountability Act (HIPAA).

  • All medical information is stored securely in a HIPAA-compliant program.

  • We follow strict protocols to ensure the confidentiality, integrity, and security of your health information.

  • Medical data is accessed only by authorized personnel and used solely for the purposes of providing our services or as required by law.

If you have questions about how your medical information is handled, please contact us at [Insert Contact Information].

4. Sharing Your Information

We do not sell, rent, or trade your personal data. We may share your data:

  • With trusted service providers who assist us in operating our business (e.g., payment processors, email services).

  • If required by law or to respond to legal requests.

5. Data Retention

We retain personal data only as long as necessary for the purposes outlined above or as required by law.

6. Your Rights (GDPR Compliance)

As a resident of the EU, you have the following rights under the GDPR:

  • Access: Request a copy of the personal data we hold about you.

  • Rectification: Request corrections to incomplete or inaccurate information.

  • Erasure: Request the deletion of your personal data, subject to legal obligations.

  • Restriction: Restrict how we process your data in certain circumstances.

  • Objection: Object to processing for direct marketing or other legitimate interests.

  • Data Portability: Receive a copy of your personal data in a portable format.

To exercise your rights, please contact us at [Insert Contact Information].

7. Cookies and Tracking Technologies

Our website uses cookies to improve your browsing experience. By using our website, you consent to the use of cookies. You can adjust your cookie preferences in your browser settings.

8. Data Security

We implement appropriate technical and organizational measures to safeguard your data from unauthorized access, alteration, or loss.

9. Third-Party Links

Our website may include links to third-party sites. We are not responsible for the privacy practices of these external websites.

10. Updates to This Policy

We may update this Privacy Policy