Privacy Policy

1. Information We Collect

Personal Information

We collect several types of information from and about users of our services:

• Identity Information: Name, date of birth, gender, photographs
• Contact Information: Email address, telephone number, mailing address
• Medical Information: Medical history, current medications, allergies, treatment records, progress photos
• Genetic Information: DNA analysis results through our GenomIQ platform (with your explicit consent)
• Payment Information: Billing address, payment card details (processed securely through our payment processors)
• Technical Information: IP address, browser type, device information, usage data

How We Collect Information

• Direct Interactions: When you fill out forms, schedule appointments, undergo treatments, or communicate with us
• Automated Technologies: Through cookies and similar technologies when you visit our website
• Third Parties: From service providers, analytics providers, and advertising networks

2. How We Use Your Information

We use the information we collect for various purposes, including:

Treatment and Care

• Providing personalized treatment plans and protocols
• Analyzing GenomIQ data to optimize treatment outcomes
• Monitoring treatment progress and adjusting protocols
• Communicating about your care and appointments
• Maintaining accurate medical records

Business Operations

• Processing payments and managing accounts
• Scheduling appointments and sending reminders
• Responding to inquiries and providing customer support
• Improving our services and developing new treatments
• Conducting research and analysis (with de-identified data)

Legal and Compliance

• Complying with legal obligations and regulatory requirements
• Protecting against fraud and unauthorized transactions
• Enforcing our terms and conditions
• Responding to legal requests and preventing harm

Marketing and Communications

• Sending promotional materials about our services (with your consent)
• Providing updates about new treatments and technologies
• Conducting surveys and requesting feedback
• Personalizing your experience on our website

3. GenomIQ Genetic Data Privacy

Genetic Data Collection

• Genetic testing is performed only with your explicit written consent
• You have the right to decline genetic testing and still receive treatment
• Samples are collected non-invasively using saliva swabs
• All samples are processed in CLIA-certified laboratories

Genetic Data Usage

• Used exclusively for your personalized treatment planning
• Analyzed to predict treatment responses and optimize protocols
• Not shared with insurance companies or employers
• Not sold to third parties under any circumstances
• May be used for de-identified research with your separate consent

Genetic Data Security

• Encrypted both in transit and at rest using industry-leading standards
• Stored separately from personal identifying information
• Accessible only to authorized treatment team members
• Subject to regular security audits and assessments
• Compliant with Genetic Information Nondiscrimination Act (GINA)

Your Genetic Data Rights

• Request a copy of your genetic analysis results
• Request deletion of your genetic data at any time
• Withdraw consent for research use
• Specify how your genetic data may be used
• Be informed of any changes to genetic data policies

4. Information Sharing and Disclosure

We do not sell your personal information. We may share your information in the following circumstances:

Within InFuZe Network

• With other InFuZe clinic locations for continuity of care
• Between authorized clinicians and staff involved in your treatment
• With administrative personnel for billing and scheduling purposes

Service Providers

• Payment processors for transaction handling
• Laboratory partners for genetic analysis
• IT service providers for data storage and security
• Marketing and communication platforms (for non-medical communications)
• All service providers are contractually obligated to protect your information

Legal Requirements

• When required by law, court order, or legal process
• To protect the rights, property, or safety of InFuZe, our patients, or others
• In connection with legal claims or regulatory investigations
• To comply with public health or law enforcement requirements

Business Transfers

• In connection with a merger, acquisition, or sale of assets
• Your information would remain protected under this Privacy Policy
• You would be notified of any ownership changes

With Your Consent

• When you explicitly authorize us to share specific information
• For testimonials or before/after photos (with signed release)
• For research purposes (with separate research consent)

5. Data Security

We implement comprehensive security measures to protect your information:

Technical Safeguards

• Encryption: All data transmitted over the internet is encrypted using SSL/TLS protocols
• Secure Storage: Data at rest is encrypted using AES-256 encryption
• Firewalls: Multiple layers of firewall protection on all systems
• Access Controls: Role-based access limitations and multi-factor authentication
• Regular Updates: Continuous system updates and security patches

Administrative Safeguards

• Comprehensive privacy and security training for all staff
• Background checks for employees with access to sensitive data
• Regular security risk assessments
• Incident response and breach notification procedures
• Business associate agreements with all third-party vendors

Physical Safeguards

• Secure, access-controlled facilities
• Surveillance and monitoring systems
• Secure disposal of physical records
• Locked storage for sensitive materials

6. Your Privacy Rights

You have important rights regarding your personal information:

Access and Portability

• Right to Access: Request copies of your personal and medical information
• Right to Portability: Receive your data in a structured, commonly used format
• Medical Records: Request complete medical records within 30 days

Correction and Deletion

• Right to Rectification: Request corrections to inaccurate information
• Right to Erasure: Request deletion of your personal information (with certain exceptions for medical records)
• Right to Restriction: Request limitations on how we use your information

Marketing and Communications

• Opt-Out: Unsubscribe from marketing emails at any time
• Do Not Call: Request removal from phone marketing lists
• Preference Management: Control what types of communications you receive

State-Specific Rights

Depending on your location, you may have additional rights:

• California (CCPA/CPRA): Right to know, delete, opt-out of sales, and non-discrimination
• Virginia, Colorado, Connecticut (State Laws): Similar data protection rights
• Other States: Rights as defined by applicable state laws

How to Exercise Your Rights

To exercise any of these rights, contact us at:

• Email: privacy@infuzeclinics.com
• Phone: 1-800-INFUZE-1
• Mail: InFuZe Privacy Office, [Address]
• In Person: Visit any InFuZe clinic location

We will respond to your request within 30 days. You will not be charged for exercising your rights, but we may charge a reasonable fee for excessive or repetitive requests.

7. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience on our website:

Types of Cookies We Use

• Essential Cookies: Required for website functionality (cannot be disabled)
• Performance Cookies: Help us understand how visitors use our site
• Functional Cookies: Remember your preferences and settings
• Targeting Cookies: Deliver relevant advertisements (with your consent)

Third-Party Cookies

We may use third-party services that set cookies, including:

• Google Analytics for website analytics
• Social media plugins (Facebook, Instagram, LinkedIn)
• Advertising networks for targeted marketing

Managing Cookies

You can control cookies through:

• Browser settings (block or delete cookies)
• Our cookie consent tool on first visit
• Opt-out tools provided by advertising networks

Note: Disabling cookies may affect website functionality.

8. Children's Privacy

InFuZe services are intended for adults aged 18 and older. We do not knowingly collect personal information from children under 16 without parental consent.

Minors Receiving Treatment

• Patients aged 16-17 must have parental or guardian consent
• Parents/guardians can access their child's medical information
• We comply with state laws regarding minors' medical privacy

If we discover we have collected information from a child under 16 without proper consent, we will delete it immediately. If you believe we may have information about a child, please contact us at privacy@infuzeclinics.com.

9. HIPAA Compliance

As a healthcare provider, InFuZe is a covered entity under the Health Insurance Portability and Accountability Act (HIPAA). We comply with all HIPAA requirements for protecting your Protected Health Information (PHI).

HIPAA Rights

Under HIPAA, you have the right to:

• Receive a copy of our Notice of Privacy Practices
• Request restrictions on certain uses and disclosures
• Request confidential communications
• Access and obtain copies of your medical records
• Request amendments to your medical records
• Receive an accounting of disclosures
• File a complaint if you believe your privacy rights have been violated

HIPAA Authorizations

We will obtain your written authorization before using or disclosing your PHI for purposes not covered by HIPAA, such as:

• Marketing communications
• Sale of PHI
• Most uses of psychotherapy notes
• Research purposes

For more detailed information about our HIPAA practices, please request our Notice of Privacy Practices at any clinic location or email privacy@infuzeclinics.com.

10. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, technologies, legal requirements, or other factors.

How We Notify You

• Post the updated policy on our website with a new "Last Updated" date
• Send email notifications for material changes
• Provide notice at clinic locations for significant updates
• Request new consent if required by law

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information. Your continued use of our services after changes constitutes acceptance of the updated policy.

11. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:

Legal Jurisdiction and Governing Law

This Privacy Policy is governed by the laws of the United States and the state where your treating clinic is located. Any disputes regarding privacy matters will be resolved in accordance with applicable federal and state laws, including HIPAA and state privacy regulations.