Legal

Privacy
policy.

Privacy Policy

Effective Date: 10/08/2024Last Updated:10/28/2025Welcome to Healing Skin Medical Aesthetics (“Healing Skin,” “we,” “us,” or “our”). We are committed to protecting your privacy and safeguarding your personal and health information. This Privacy Policy explains how we collect, use, disclose, and protect your information when you visit our website (https://healing-skin.com), engage with our services, or communicate with us via SMS, email, or other digital platforms.
We comply with the Health Insurance Portability and Accountability Act (HIPAA), the California Consumer Privacy Act (CCPA), the General Data Protection Regulation (GDPR), and the Telephone Consumer Protection Act (TCPA).
If you do not agree with this Policy, please do not use our website or services.

1. Information We Collect

We collect and process personal, medical, and technical information to deliver and improve our services.

1.1 Personal Information

We collect personal information that you voluntarily provide when you:
  • Book an appointment
  • Fill out a form
  • Sign up for our newsletter
  • Contact us directly
  • Opt-in to receive SMS or email communications
This information may include:
  • Name
  • Email address
  • Phone number
  • Mailing address
  • Payment information or financing details (Cherry, Klarna, Affirm), and insurance information for billing or verification purposes. (when you make a purchase, book a service or any training)

1.2 Protected Health Information (PHI)

We may collect health-related information when it is relevant for the provision of our services. PHI may include:
  • Medical history
  • Information related to past, present, or future physical or mental health conditions
  • Details regarding treatments received at Healing Skin Medical Aesthetics
PHI is collected and processed only when necessary and with your explicit consent, in compliance with HIPAA regulations.

1.3 Technical and Usage Data

When you visit our Site, we automatically collect certain information about your device and usage patterns, such as:
  • IP address
  • Browser type and version
  • Pages visited and time spent on each page
  • Operating system
  • Location data (if enabled on your device)

2. SMS and Email Communications

We may use your contact information to send SMS and email communications, including:
  • Appointment confirmations and reminders
  • Information related to your treatments
  • Marketing communications, including promotions and special offers

2.1 Consent

By providing your phone number and/or email address, you consent to receive SMS and email communications from us. We comply with the TCPA, GDPR, and CCPA, which require that:
  • You must provide explicit opt-in consent before we send marketing SMS or emails.
  • You can opt out of these communications at any time by following the unsubscribe instructions provided in the message or by contacting us directly.

2.2 Opt-Out Process

If you no longer wish to receive marketing communications, you may opt out by:
  • Replying “STOP” to any SMS message you receive from us.
  • Clicking the “unsubscribe” link in our marketing emails.
  • Contacting us directly at [Insert Contact Information].
Please note that even if you opt out of marketing communications, we may still send you transactional messages related to your appointments, treatments, or other service-related updates.

3. How We Use and Protect Your Information

We use the information we collect for the following purposes:
  • To provide services: We use your information to process appointments, payments, and deliver the services you request.
  • To communicate with you: We use your contact information to send SMS and email communications related to your care and appointments.
  • To improve our Site: We use data about your interactions to optimize your user experience.
  • For payment and billing: We may use your information to process payments and handle insurance claims (if applicable).

4. Disclosure of Information

We may share your personal information, including PHI, in the following situations:
  • With service providers: We share your information with third-party vendors who assist with SMS and email communications, payment processing, administrative support, or IT services, provided they comply with HIPAA and other applicable privacy laws.
  • Compliance with the law: We may disclose your information if required by federal, state, or local law, such as in response to a court order or a request from a regulatory agency.
  • Business Transfers: If we engage in or are involved in a merger, acquisition, reorganization, sale of assets, or bankruptcy event, your information may be transferred as part of that transaction.
We do not sell your personal information to third parties.

5. Your Privacy Rights

5.1 GDPR Rights (EEA Residents)

If you are a resident of the EEA, you have the following rights under GDPR:
  • Right to Access: You may request a copy of the personal information we hold about you.
  • Right to Rectification: You may request that we correct any inaccuracies in your personal data.
  • Right to Erasure (“Right to be Forgotten”): You may request that we delete your personal information, subject to any legal obligations we may have to retain it.
  • Right to Restrict Processing: You may request that we limit the processing of your personal information under certain circumstances.
  • Right to Data Portability: You may request to receive your data in a structured, commonly used format or have it transferred directly to another organization.
  • Right to Withdraw Consent: Where we rely on your consent to process your information, you may withdraw this consent at any time.
To exercise any of these rights, please contact us using the information provided below.

5.2 CCPA Rights (California Residents)

If you are a California resident, you have the following rights under the CCPA:
  • Right to Know: You have the right to request information about the categories and specific pieces of personal information we have collected about you, as well as the sources of that information and how we use and share it.
  • Right to Delete: You have the right to request the deletion of your personal information, subject to certain exceptions.
  • Right to Opt-Out of Sale: Although we do not sell your personal information, you have the right to opt out if we change our practices in the future.
  • Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA rights.
To make a request under the CCPA, please contact us using the information provided below.

6. Data Security

We implement appropriate administrative, physical, and technical safeguards to protect your PHI and other personal information. However, no system is entirely secure. While we strive to protect your information, we cannot guarantee absolute security.

7. Breach Notification

In the event of a breach that compromises the privacy or security of your PHI, we will notify you as required by HIPAA and other applicable regulations. We will provide information on the nature of the breach, the PHI involved, and the steps we are taking to mitigate the impact and prevent future breaches.

8. International Data Transfers

If you are located outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States, where our servers are located. By using our Site, you consent to the transfer of your information to the United States, which may have different data protection rules than your country.

9. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices or applicable laws. Any updates will be posted on this page with an updated effective date. We encourage you to review this Privacy Policy periodically.

10. Contact Us

If you have any questions, concerns, or wish to exercise your rights under this Privacy Policy, please contact us at:Healing Skin Medical Aesthetics1107 Person St. Kissimmee FL 34741Email: info@healing-skin.comPhone: 689-288-8011