PRIVACY POLICY
Last Updated: October 2025
Meraki Medical Spa is committed to protecting your privacy and safeguarding your personal and health information. This Privacy Policy explains how we collect, use, disclose, and protect your information when you visit our website or receive our services.
Patients receiving in-person or virtual care will also receive a separate HIPAA Notice of Privacy Practices and Consent Form during their intake process, which explains how your protected health information (PHI) is used and shared under federal law.
⸻
Information We Collect
We may collect the following types of information:
• Personal and Contact Information: Name, address, email, phone number, and date of birth.
• Health and Treatment Information: Medical history, medications, allergies, treatment records, and photos related to your care.
• Payment and Billing Information: Credit card or payment details, insurance information (if applicable), and billing history.
• Website and Usage Data: IP address, browser type, device information, and pages visited on our website.
⸻
How We Use Your Information
Your information is used to:
• Provide and coordinate your medical spa services and treatments.
• Schedule appointments and communicate with you about your care.
• Process payments and manage billing.
• Improve our website, services, and patient experience.
• Send treatment reminders, follow-ups, and service updates (with your consent).
⸻
Information Sharing
We may share your information in the following limited circumstances:
• For Treatment: With other licensed healthcare providers involved in your care.
• For Payment: With insurers or payment processors to verify benefits and process claims.
• For Operations: To support business functions such as scheduling, analytics, or IT services.
• As Required by Law: To comply with legal obligations, public health reporting, or safety concerns.
• In Emergencies: To protect your health or safety or that of others.
Text Messaging and Marketing:
No mobile information will be shared with third parties or affiliates for marketing or promotional purposes. All other categories exclude text messaging originator opt-in data and consent; this information will not be shared with any third parties.
⸻
Data Security
We maintain strict security measures to protect your information, including:
• Secure electronic systems and encrypted data transmission.
• Role-based access controls and authentication safeguards.
• Regular staff training on HIPAA and privacy best practices.
Despite our efforts, no system is completely secure, and we cannot guarantee absolute protection of information transmitted electronically.
⸻
Your Rights
You have the right to:
• Access your health information.
• Request corrections to inaccurate or incomplete information.
• Restrict certain uses or disclosures of your information.
• Request confidential communications (e.g., alternate contact methods).
• File a complaint if you believe your privacy rights have been violated.
Requests to exercise these rights may be submitted in writing using the contact information below.
⸻
Cookies and Third-Party Services
Our website uses cookies and similar technologies to enhance your browsing experience and analyze website performance.
We may use secure third-party services for scheduling, communications, and payments—each governed by its own privacy policy.
We retain health records and other information as required by state and federal law.
⸻
Changes to This Policy
We may update this Privacy Policy from time to time. Updates will be posted on our website with a new “Last Updated” date. Continued use of our website or services after an update constitutes your acceptance of the revised policy.
⸻
Contact Information
If you have questions about this Privacy Policy or wish to exercise your rights, please contact us:
Meraki Medical Spa
Attn: Privacy Officer
2040 Neal Street
Red Wing, MN 55066
📧 Email: mailto:merakimedspaclinic@outlook.com
📞 Phone: 651-764-1834