Background

PRIVACY POLICY

Your Privacy is Our Priority

At DAYASA Health and Wellness, we are committed to protecting your privacy and maintaining the confidentiality of your personal information in accordance with GDPR, CCPA, and HIPAA regulations.

Comprehensive Privacy Protection

This Privacy Policy explains how DAYASA Health and Wellness ("we," "our," or "us") collects, uses, protects, and shares your personal information when you visit our website or use our services. This policy complies with GDPR, CCPA, and HIPAA regulations.

Effective Date: January 1, 2025 | Last Updated: January 1, 2025

1. Information We Collect

Personal Information:

  • Contact information (name, email, phone number, address)
  • Medical history and health information (HIPAA protected)
  • Insurance and billing information
  • Treatment records and clinical notes
  • Communication preferences and appointment history

Website Usage Data:

  • IP address and device information
  • Browser type and version
  • Pages visited and time spent on site
  • Referral sources and exit pages
  • Cookie and tracking data (with consent)

2. How We Use Your Information

Healthcare Services:

  • Provide medical care and treatment services
  • Process appointments and manage scheduling
  • Handle billing and insurance claims
  • Communicate about your care and treatment options
  • Send appointment reminders and health information

Website Operations:

  • Improve website functionality and user experience
  • Analyze site usage and performance
  • Provide customer support
  • Send marketing communications (with consent)
  • Comply with legal and regulatory requirements

3. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your browsing experience. You can control cookie preferences through our cookie consent banner.

Cookie Categories:

Essential Cookies (Always Active)

Required for basic website functionality, security, and user authentication.

Analytics Cookies (Optional)

Help us understand website usage patterns and improve user experience.

Marketing Cookies (Optional)

Used to deliver personalized advertisements and measure campaign effectiveness.

Functional Cookies (Optional)

Enable enhanced functionality like chat widgets and personalized content.

4. Data Protection & Security

  • HIPAA-compliant security measures and protocols
  • SSL/TLS encryption for data transmission
  • Encrypted data storage and backup systems
  • Limited access to authorized personnel only
  • Regular security audits and vulnerability assessments
  • Secure disposal of physical and electronic records
  • Staff training on privacy and security procedures

5. Your Privacy Rights

Under GDPR (EU Residents):

  • Right to access your personal data
  • Right to rectification (correction) of inaccurate data
  • Right to erasure ("right to be forgotten")
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing
  • Right to withdraw consent

Under CCPA (California Residents):

  • Right to know what personal information is collected
  • Right to delete personal information
  • Right to opt-out of the sale of personal information
  • Right to non-discrimination for exercising privacy rights

Under HIPAA (All Patients):

  • Access and review your medical records
  • Request corrections to your health information
  • Request restrictions on use or disclosure
  • Choose how we communicate with you
  • File a complaint about privacy practices
  • Receive a copy of this Privacy Notice

6. Information Sharing

We may share your information with:

  • Healthcare providers involved in your care
  • Insurance companies for billing and coverage verification
  • Legal authorities when required by law
  • Business associates under signed HIPAA agreements
  • Family members or friends (with your written authorization)
  • Public health authorities for required reporting

We do not sell personal information to third parties.

7. Data Retention

  • Medical records: As required by law and medical standards
  • Website data: Up to 2 years unless longer retention is required
  • Marketing data: Until you opt-out or withdraw consent
  • Cookie data: As specified in your cookie preferences

8. International Data Transfers

If you are located outside the United States, please note that we may transfer your information to and process it in the United States. We ensure appropriate safeguards are in place for international transfers in compliance with applicable privacy laws.

9. Children's Privacy

Our services are not directed to children under 13. We do not knowingly collect personal information from children under 13. If we become aware that we have collected personal information from a child under 13, we will take steps to delete such information.

10. Contact Information & Exercising Your Rights

To exercise your privacy rights or if you have questions about this Privacy Policy, please contact our Privacy Officer:

DAYASA Health and Wellness

Privacy Officer

Email: privacy@dayasahealth.com

Phone: [Phone Number]

Address: [Physical Address]

We will respond to your request within 30 days (or as required by applicable law).

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on our website and updating the "Last Updated" date. For significant changes, we may also provide additional notice such as email notification.

12. Cookie Preferences

You can manage your cookie preferences at any time by clicking the button below:

This Privacy Policy complies with GDPR, CCPA, and HIPAA regulations. For questions about your privacy rights or to file a complaint, you may also contact the appropriate regulatory authorities in your jurisdiction.