Last revised: July 31, 2023
Please view our Notice of Privacy Practices to learn more about how we use and disclose your protected health information or PHI, our legal duties with respect to your PHI, and your rights with respect to your PHI and how you may exercise them.
This Policy is in addition to, and does not replace our Notice of Privacy Practices, which explains how we may use and disclose your protected health information or PHI, our legal duties with respect to your PHI, and your rights with respect to your PHI and how you may exercise them.
From time to time, we may make changes to this Policy, and it is your responsibility to periodically review this Policy for any changes.
Personal Information and What We Collect
“Personal Information” is information that identifies, relates to, describes, is capable of being associated with, or could reasonably be linked, directly or indirectly, with you or your household. We may collect Personal Information about you when you provide it to us, when you interact with the Services, and when other sources provide it to us.
Information You Provide to Us
In order to take advantage of certain Services or features offered or provided by Aesthetica, you may be asked to provide certain Personal Information. For example, we may collect:
Information About Use of the Services
When accessing or using the Services, we may automatically collect:
Information from Third Parties
How We Use Your Personal Information
To Provide and Manage the Services. This includes, for example, enabling you to participate in features provided by the Services, performing our contracts with you or your employer or business, or with your doctors or other healthcare providers. We also may use information we gather to better understand and serve users and to improve our Services.
To Communicate with You. We may use your personal information to respond to questions you submit via the Services or to communicate with you regarding news, updates, or educational and marketing materials. You may opt-out of receiving commercial email messages from us by following the instructions in those messages.
As Required or Permitted by Law. We may use your personal information to comply with any applicable legal or regulatory obligations or for any other purpose permitted by law or with your lawful consent. We may deidentify, pseudonymize, or anonymize your Personal Information, which means that information that can be reasonably used to identify you will be removed. We may aggregate the deidentified data into a multi-modal real-world dataset to empower research and improve patient care. We create and use such de-identified information as permitted by law or with your consent.
How We Share Your Personal Information
Cookies & Other Data Collection Technologies
You can review your Internet browser settings, typically under the sections “Help” or “Internet Options”, to exercise choices you have for certain cookies. Please note that by blocking or deleting cookies used in our Services you may be unable to access certain parts of Aesthetica Services
We may use the following categories of cookies:
Essential Cookies: These cookies are strictly necessary to provide you with features available through our website and apps and to use some of their features, such as contact forms. Because these cookies are strictly necessary to deliver the Services, you cannot refuse them without impacting how our Services function.
Performance and Functionality Cookies: These cookies are used to enhance the performance and functionality of our Services but are non-essential to their use. Without these cookies, certain functionality may become unavailable.
Analytics and Customization Cookies: These cookies collect information that is used to help us understand how our Services are being used or how effective our marketing activities are, or to help us customize our Services for you in order to enhance your experience.
Persistent Cookies: These record your visit to our website and apps, recognize you as a previous visitor and track your activity on the website or apps.
Web Beacons and Pixel Tags: We may use software code on a web page or in an email message called web beacons and pixel tags. These are placed on web pages or in our emails and notify us if you access the pages or open or click an email. These tools allow us to measure response to our communications and improve our Services.
You can learn more about how to manage all cookies across different types of browsers by visiting www.allaboutcookies.org. The site includes additional useful information on cookies. Cookie management tools are device and browser specific and may not work on all devices.
Our website does not currently recognize “Do Not Track” signals sent by some browsers.
We use technical, physical, and administrative safeguards that are designed to improve the confidentiality, integrity and accessibility of your Personal Information and Protected Health Information. We incorporate secure storage and transmission technologies including strong encryption, firewalls, fine-grained access control and secure audit. We cannot, however, ensure or warrant the security of any information you transmit to us via the Services, and you do so at your own risk. We also cannot guarantee that such information may not be accessed, disclosed, altered, or destroyed by breach of any of our technical, physical, or administrative safeguards.
Our Services are not designed nor intended to be used or accessed by children under the age of 13. No one under age 13 may provide any information to or through the Services. We do not intentionally collect Personal Information from children through the Services. If you are under age of 13, do not use or provide any information on or through the Services, including, but not limited to, your name, address, telephone number, e-mail address, user name or other. If we learn we have collected or received Personal Information from a child under age 13 without verification or parental consent, we will delete that information. If you believe that we may have collected any information, including Personal Information from or about a child under age 13, please contact us immediately at firstname.lastname@example.org.
Aesthetica complies with all applicable state and federal laws in addressing requests for access to Personal Information in our possession related to minors under the age of 18.
Additional Information for Consumers in the US
Depending on your state of residence, you may be entitled to additional privacy rights regarding your Personal Information. For example, if you are a resident of California, you may be entitled to the privacy rights described below under the California Consumer Privacy Act (“CCPA”) and other applicable laws. Please note that certain categories of Personal Information, such as PHI, are not covered by state law privacy rights, but may be protected by HIPAA and other laws that provide similar protections.
The Right to Know. You have the right to request:
Specifically, Aesthetica has disclosed the following categories of Personal Information in the preceding 12 months: direct identifiers, other personal information, internet activity information, and commercial information.
The Right to Deletion. You have the right to request that Aesthetica delete the Personal Information that we have collected or maintain about you. We may deny your request under certain circumstances, such as if we need to comply with our legal obligations or complete a transaction for which your Personal Information was collected. If we deny your request for deletion, we will let you know the reason why.
Non-discrimination. Aesthetica will not discriminate against you in any way if you choose to exercise your rights under the law. However, if we delete your Personal Information based on a request you make, understand that you may be unable to use or access certain features of our Services.
You may exercise your right to know and your right to deletion twice a year free of charge. To exercise your right to know or your right to deletion, contact us at 801.785.8884 or email us at email@example.com. We endeavor to respond to a verifiable consumer request within forty-five (45) days of receipt. If we require more time (up to 90 days), we will inform you of the reason and extension period in writing.
We will take steps to verify your identity before processing your request to know or request to delete. We will not fulfill your request unless you have provided sufficient information for us to reasonably verify you are the individual about whom we collected Personal Information. If you have an account with us, we will use our existing account authentication practices to verify your identity. If you do not have an account with us, we may request additional information about you to verify your identity. We will only use the Personal Information provided in the verification process to verify your identity or authority to make a request and to track and document request responses, unless you initially provided the information for another purpose.
You may use an authorized agent to submit a request to know or a request to delete. When we verify your agent’s request, we may verify both your and your agent’s identity and request a signed document from you that authorizes your agent to make the request on your behalf. To protect your Personal Information, we reserve the right to deny a request from an agent that does not submit proof that they have been authorized by you to act on their behalf.
California Confidentiality of Medical Information Act. California law grants California residents, including children, the right to request access to their medical information, in certain circumstances, including mental health records. You may request access to your medical information by emailing firstname.lastname@example.org, or by writing us at the address in the Contact Information section below.
Other California Privacy Rights. California’s “Shine the Light” law also gives California residents the right to request certain information regarding our disclosure of their Personal Information to third parties for those third parties’ direct marketing purposes. You may request information regarding the disclosure of your Personal Information to third parties for those third parties’ direct marketing purposes by emailing email@example.com or by writing us at the address in the Contact Information section below. Please indicate “California Rights” in the subject or attention line of your communication.
In most cases, our use of your personal data is necessary:
We will process your personal data only for purposes permitted by law. This includes processing where necessary for the following purposes:
Some of the above grounds for processing will overlap and there may be several grounds which justify our use of your personal data. If you have any questions or need more information regarding the legal basis and purpose for processing your personal data, please contact us at firstname.lastname@example.org.
Please contact us with any questions or comments about this Policy, your Personal Information or our Notice of Privacy Practices, or your consent choices by email at email@example.com or by mail to 385 West 600 North, Lindon, Utah 84042.