Privacy Policy

Your privacy matters to us. Learn how we protect and handle your personal information at MJ Laser Aesthetic.

HIPAA Compliant
Secure Data
Protected Privacy
Information We Collect How We Use Information Information Sharing Data Security Your Rights Cookies & Tracking Contact Us

Privacy Policy Overview

This Privacy Policy describes how MJ Laser Aesthetic ("we," "us," or "our") collects, uses, and protects your personal information when you visit our website or use our services.

Last Updated

January 15, 2024

Jurisdiction

Florida, United States

Compliance

HIPAA, CCPA, GDPR

Information We Collect

We collect various types of information to provide you with the best possible service and experience.

Personal Information

When you book appointments or contact us, we may collect:

  • Full name and contact information
  • Email address and phone number
  • Date of birth and gender
  • Address and billing information
  • Emergency contact details

Medical Information

To provide safe and effective treatments, we collect:

  • Medical history and current medications
  • Skin type and treatment area information
  • Treatment preferences and concerns
  • Before and after photos (with consent)
  • Treatment notes and outcomes

Usage Information

We automatically collect information about your website usage:

  • IP address and browser information
  • Pages visited and time spent on site
  • Device and operating system details
  • Referral sources and search terms
  • Cookie and tracking data

How We Use Your Information

Your information helps us provide personalized care and improve our services.

Treatment & Appointments

  • Schedule and manage appointments
  • Provide personalized treatment plans
  • Send appointment reminders
  • Track treatment progress

Communication

  • Respond to inquiries and support
  • Send treatment updates and care instructions
  • Share promotional offers (with consent)
  • Collect feedback and reviews

Safety & Compliance

  • Ensure treatment safety and efficacy
  • Maintain medical records and documentation
  • Comply with healthcare regulations
  • Handle insurance and billing

Service Improvement

  • Analyze website usage patterns
  • Improve treatment protocols
  • Enhance customer experience
  • Develop new services and features

Information Sharing & Disclosure

We are committed to protecting your privacy and only share information when necessary and with your consent.

With Your Consent

We may share your information when you explicitly consent, such as:

  • Sharing before/after photos for marketing (with written consent)
  • Referring you to partner providers or specialists
  • Participating in testimonials or case studies

Service Providers

We work with trusted third-party service providers who help us operate our business:

  • Payment processing companies (Square, Stripe)
  • Appointment scheduling platforms
  • Email and SMS communication services
  • Cloud storage and security providers

Legal Requirements

We may disclose information when required by law or to protect our rights:

  • Compliance with legal subpoenas or court orders
  • Reporting to health authorities when required
  • Protecting against fraud or illegal activities
  • Defending our legal rights and interests

Data Security & Protection

We implement industry-standard security measures to protect your personal and medical information.

Encryption

All data is encrypted both in transit and at rest using industry-standard encryption protocols.

Secure Storage

Information is stored on secure servers with restricted access and regular security audits.

Access Control

Strict access controls ensure only authorized personnel can access your information.

Malware Protection

Advanced anti-malware and intrusion detection systems protect against threats.

Regular Backups

Automated backups ensure your data is protected and can be restored if needed.

Staff Training

All staff receive regular training on privacy protection and security best practices.

HIPAA Compliance

As a medical practice, we are fully compliant with the Health Insurance Portability and Accountability Act (HIPAA), ensuring the highest standards of medical information protection.

Your Privacy Rights

You have important rights regarding your personal information. Here's what you can do:

Right to Access

Request a copy of the personal information we have about you, including medical records and treatment history.

Right to Correction

Request corrections to any inaccurate or incomplete personal information we maintain about you.

Right to Deletion

Request deletion of your personal information, subject to legal and medical record retention requirements.

Right to Opt-Out

Opt out of marketing communications and non-essential data processing activities at any time.

Right to Portability

Request your data in a portable format to transfer to another healthcare provider when applicable.

Right to Restrict

Request restrictions on how we process your personal information for specific purposes.

How to Exercise Your Rights

To exercise any of these rights, contact us using the information provided below. We will respond within 30 days of receiving your request.

Email Privacy Officer Call Us

Cookies & Tracking Technologies

We use cookies and similar technologies to improve your website experience and analyze usage patterns.

Types of Cookies We Use

Essential Cookies

Required for the website to function properly, including security, network management, and accessibility features.

Always Active

Analytics Cookies

Help us understand how visitors interact with our website by collecting and reporting information anonymously.

Optional

Functional Cookies

Enable enhanced functionality and personalization, such as remembering your preferences and settings.

Optional

Marketing Cookies

Used to track visitors across websites to display relevant and engaging advertisements.

Optional

Third-Party Services

Google Analytics

Website traffic and user behavior analysis

Facebook Pixel

Social media advertising and remarketing

Square

Payment processing and booking system

Cookie Preferences

You can manage your cookie preferences at any time. Essential cookies cannot be disabled as they are necessary for the website to function.

Data Retention & Deletion

We retain your information only as long as necessary to provide our services and comply with legal requirements.

Retention Periods

Medical Records 7 years minimum
Appointment History 5 years
Payment Information 7 years
Marketing Data Until opt-out
Website Analytics 26 months

Secure Deletion

Data is securely deleted when retention periods expire

Multiple deletion passes ensure complete data removal

Backup systems are also purged of expired data

Deletion certificates provided upon request

Regular audits ensure compliance with deletion policies

International Data Transfers

Information about how we handle data transfers across international borders.

Data Location

Primary Storage

United States (Florida)

Cloud Services

AWS US East Region

Backup Location

US West Coast (Encrypted)

Transfer Safeguards

All transfers use encryption in transit

Standard Contractual Clauses with vendors

Regular security assessments of partners

GDPR adequacy decisions respected

Children's Privacy Protection

Special protections for minors and their personal information.

Age Requirements

Under 13 Years

No services provided without parental consent and presence

13-17 Years

Parental consent required for all treatments

18+ Years

Full consent and privacy rights apply

Parental Rights

Access their child's treatment records

Provide consent for data collection

Request deletion of child's information

Opt-out of marketing communications

Supervise treatment consultations

Contact Us About Privacy

Have questions about our privacy practices? We're here to help.

Get in Touch

Email

privacy@mjlaseraesthetic.com

Response within 24 hours

Phone

(786) 545-2976

Mon-Fri 9am-6pm EST

Address

10 Fairway Dr #129
Deerfield Beach, FL 33441

Privacy Officer

Privacy Officer

Sarah Martinez

Chief Privacy Officer

Sarah oversees all privacy matters at MJ Laser Aesthetic and is available to address your concerns about data protection and privacy rights.

Direct Email Direct Line

Policy Updates & Changes

How we notify you about changes to our privacy policy.

Update Process

1. Review & Revision

Regular review of privacy practices and policy updates

2. Notification

Email notification to all active clients 30 days prior

3. Website Update

Policy updated on website with effective date

Recent Updates

January 2024

Current

Enhanced cookie consent management and CCPA compliance

September 2023

Previous

Updated data retention policies and security measures

March 2023

Previous

Initial privacy policy implementation

Your Privacy is Our Priority

We're committed to protecting your personal information and providing transparent privacy practices. Book your appointment with confidence.

Book your appointment Contact Privacy Team
HIPAA Compliant
SSL Encrypted
Privacy Protected