Privacy Policy

Introduction

Dr. Michael C. Glafkides, M.D. ("Dr. Michael C. Glafkides," "we," "us," or "our") is committed to protecting your privacy and safeguarding your personal information. This Privacy Policy explains how we collect, use, disclose, and protect information about you when you visit our website or use our services. This policy applies to all information collected through our website, email, phone, and in-person interactions.

HIPAA Compliance

As a healthcare provider, we are required to comply with the Health Insurance Portability and Accountability Act (HIPAA) and maintain the privacy and security of your protected health information (PHI). This Privacy Policy supplements, but does not replace, the Notice of Privacy Practices that you receive when you become a patient.

For information about how we use and disclose your medical information, please refer to our HIPAA Notice of Privacy Practices available at our office.

Information We Collect

Personal Information

We may collect the following types of personal information:

• Contact Information: Name, email address, phone number, mailing address
• Appointment Information: Requested appointment dates, procedure interests, consultation preferences
• Medical Information: Medical history, current medications, allergies, surgical history (collected during consultations)
• Financial Information: Insurance information, payment details (processed securely through third-party payment processors)
• Photographic Information: Before and after photographs (with your written consent)
• Communication Records: Emails, phone call records, messages, and correspondence

Automatically Collected Information

When you visit our website, we may automatically collect certain information:

• Device Information: IP address, browser type, operating system, device identifiers
• Usage Information: Pages visited, time spent on pages, links clicked, referring website
• Location Information: General geographic location based on IP address
• Cookies and Tracking: We use cookies and similar technologies to enhance your experience

How We Use Your Information

We use the information we collect for the following purposes:

• Providing Medical Services: To schedule appointments, provide consultations, perform procedures, and deliver medical care
• Communication: To respond to inquiries, send appointment reminders, provide follow-up care instructions
• Website Functionality: To improve and personalize your experience on our website
• Marketing: To send newsletters, educational information, and promotional materials (you may opt out at any time)
• Legal Compliance: To comply with legal obligations, respond to legal requests, and protect our rights
• Quality Improvement: To analyze and improve our services, website, and patient experience
• Security: To detect, prevent, and address technical issues and security threats

How We Share Your Information

We do not sell your personal information. We may share your information in the following circumstances:

• Healthcare Operations: With healthcare professionals involved in your care, including anesthesiologists, surgical staff, and referring physicians
• Service Providers: With third-party vendors who assist us in operating our website, processing payments, or providing services (subject to confidentiality agreements)
• Legal Requirements: When required by law, court order, or government regulation
• Insurance Companies: To process insurance claims and obtain payment for services
• Business Transfers: In connection with a merger, sale, or transfer of our practice (subject to continued privacy protections)
• Your Consent: With your explicit permission for specific purposes, such as using your photos for marketing materials

Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies to enhance your browsing experience:

• Essential Cookies: Required for website functionality, such as remembering your preferences
• Analytics Cookies: Help us understand how visitors use our website (e.g., Google Analytics)
• Marketing Cookies: Track your browsing across websites to deliver relevant advertisements

You can control cookies through your browser settings. However, disabling cookies may affect the functionality of our website.

Third-Party Services

We may use third-party services that collect, monitor, and analyze information:

• Google Analytics: To understand website traffic and user behavior
• Google Maps: To provide directions to our office
• Payment Processors: To securely process payments (we do not store credit card information)
• Email Service Providers: To send appointment reminders and newsletters

These third-party services have their own privacy policies governing the use of your information.

Data Security

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include:

• Encryption of data in transit and at rest
• Secure servers and firewalls
• Regular security assessments and updates
• Limited access to personal information on a need-to-know basis
• Staff training on privacy and security practices

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. Medical records are retained in accordance with California state law and HIPAA requirements, typically for a minimum of seven years from the date of last service.

Your Privacy Rights

Depending on your location and applicable laws, you may have the following rights:

• Access: Request access to the personal information we hold about you
• Correction: Request correction of inaccurate or incomplete information
• Deletion: Request deletion of your personal information (subject to legal retention requirements)
• Opt-Out: Unsubscribe from marketing communications at any time
• Data Portability: Request a copy of your information in a portable format
• Restriction: Request restriction of processing in certain circumstances
• Objection: Object to certain types of processing, such as direct marketing

To exercise any of these rights, please contact us using the information provided below. We will respond to your request within the timeframe required by applicable law.

California Privacy Rights

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

• Right to know what personal information is collected, used, shared, or sold
• Right to delete personal information held by us
• Right to opt-out of the sale of personal information (we do not sell personal information)
• Right to non-discrimination for exercising your privacy rights

To submit a request, contact us at 650-347-7900 or office@drglafkides.com.

Children's Privacy

Our website and services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately, and we will take steps to delete such information.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by posting the updated policy on our website with a new "Last Updated" date. Your continued use of our website or services after such changes constitutes acceptance of the updated policy.

International Users

Our website and services are intended for users in the United States. If you are accessing our website from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States. By using our website, you consent to the transfer of your information to the United States.

Do Not Track Signals

Some browsers transmit "Do Not Track" signals to websites. We currently do not respond to Do Not Track signals because there is no industry standard governing what constitutes a response to these signals.

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us: