Privacy Policy

What we collect

We collect two broad kinds of information:

• Patient information — if you are a patient of a Chairside Health practice, we collect the information needed to provide care. This includes identifying details (name, date of birth, contact information), clinical history, examination findings, imaging, and other health-related data you or your providers share with us.
• Website and messaging information — when you visit chairsidehealth.com or submit a form (including the SMS opt-in form), we may collect your name, phone number, email, IP address, browser type, the page you submitted, and timestamps.

How we use it

We use information to:

• Provide clinical care and coordinate your treatment across practices and referrals.
• Send appointment reminders, intake forms, post-visit follow-up, and clinical communication — by SMS, email, or phone, based on your preferences and consent.
• Maintain records required by professional, legal, and regulatory obligations.
• Improve our tools and respond to your requests.

Protected health information (HIPAA)

When we act as a healthcare provider, your health information is Protected Health Information ("PHI") under the Health Insurance Portability and Accountability Act (HIPAA) and applicable state law. We handle PHI in accordance with those laws and the Notice of Privacy Practices provided to you at the practice where you are treated. This website-level policy does not replace that notice — ask your practice for the full HIPAA notice if you would like a copy.

How we share information

We do not sell, rent, or trade your personal information to third parties for advertising or marketing purposes. We share information only:

• With other clinicians involved in your care, with your consent or as permitted by HIPAA.
• With service providers that help us operate (for example, SMS delivery through Twilio, secure hosting, email delivery) — these providers are bound by their own obligations to keep your information confidential and use it only for the services they provide to us.
• When required by law, court order, or to protect the rights, safety, or health of patients, clinicians, or the public.

SMS messaging

If you opt in to receive text messages, we use the phone number you provide to send appointment reminders, intake links, post-visit follow-up, and clinical care coordination messages. You can stop at any time by replying STOP, and get help by replying HELP. We do not share your mobile number with third parties for marketing. Full details and the opt-in form are on our SMS Consent page.

Data retention

Clinical records are retained for the minimum time required by professional licensing, state law, and applicable healthcare regulations — typically several years after the last encounter, and longer for minors. Web-form submissions (including SMS consents) are retained as long as needed to document your consent and respond to you, and thereafter as required by law.

Security

We use reasonable administrative, technical, and physical safeguards to protect information we hold, including access controls, encrypted transport where appropriate, and backups. No system is perfectly secure. If we discover a breach that affects your information, we will notify you as required by applicable law.

Cookies and analytics

Chairside Health's public website uses minimal cookies necessary for the site to function. We do not use third-party advertising or behavioral tracking cookies on chairsidehealth.com. Individual practice sites may use additional session cookies required to operate secure clinical portals — see the privacy notice at that practice for details.

Your choices

You can:

• Opt out of SMS messages at any time by replying STOP.
• Request access to, correction of, or deletion of your personal information by contacting us using the details below. Certain clinical records are subject to retention obligations and may not be deletable while those obligations apply.
• Withdraw consent for non-clinical communications at any time without affecting your ability to receive care.

Children's privacy

We do not knowingly collect personal information from children under 13 through our public website. Minors who are patients are treated with a parent or guardian involved, and their clinical information is handled as PHI under HIPAA and state law.

Changes to this policy

We may update this policy from time to time. When we do, we will update the "Last updated" date at the top of this page and, for significant changes, notify you by a reasonable means.

Contact us

For questions about this policy, or to make a request about your information, contact us at: