HIPAA Privacy Policy

Effective Date: January 1, 2025     Last Updated: March 2026

Superior Med Spa LLC ("Superior Med Spa," "we," "us," or "our") is committed to protecting the privacy and confidentiality of your health information. This Notice of Privacy Practices describes how we may use and disclose your Protected Health Information (PHI) in accordance with the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and its implementing regulations.

Please review this notice carefully. It applies to all services provided at Superior Med Spa, located at 1613 Tower Ave, Superior, WI 54880.

1. What Is Protected Health Information (PHI)?

Protected Health Information (PHI) is any information we hold that identifies you and relates to your past, present, or future physical or mental health, the healthcare services we provide to you, or payment for those services. This includes information in paper, electronic, or verbal form.

2. How We Use and Disclose Your Health Information

We may use and disclose your PHI for the following purposes without your authorization:

-Treatment: To provide, coordinate, and manage your care and treatments at Superior Med Spa, including consultations, procedures, and follow-up services.

-Payment: To bill and collect payment for the services we provide to you, including submitting claims to insurance companies or financing partners.

-Healthcare Operations: For internal business activities such as quality assessments, staff training, audits, and compliance reviews.

-Appointment Reminders: To contact you regarding upcoming appointments or follow-up care via phone, text, or email.

-Required by Law: When required by federal, state, or local law, including reporting to public health authorities or responding to law enforcement requests.

-Health Oversight: To assist government agencies with audits, inspections, investigations, or licensing activities.

-Emergency Situations: To inform emergency responders or family members in the event of a medical emergency involving you.

3. Uses and Disclosures That Require Your Authorization

We will obtain your written authorization before using or disclosing your PHI for the following:

-Marketing purposes (including testimonials or before/after photos)

-Sale of your PHI to third parties

-Most uses of psychotherapy notes

-Any other use or disclosure not described in this notice

You may revoke a previously given authorization at any time in writing. Your revocation will not affect uses or disclosures already made in reliance on the authorization.

4. Information We Collect

When you visit or contact Superior Med Spa, we may collect:

-Full name, date of birth, and contact information

-Medical history, current medications, and allergy information

-Treatment records, consultation notes, and procedure history

-Payment and billing information

-Communications via phone, email, or our website contact form

-Website usage data (cookies and analytics — see our general Privacy Policy)

5. How We Protect Your Information

We take the security of your health information seriously. Superior Med Spa implements administrative, physical, and technical safeguards to protect your PHI from unauthorized access, use, or disclosure. These measures include:

-Secure electronic health record systems with access controls

-Staff training on HIPAA privacy and security requirements

-Physical security at our facility to prevent unauthorized access to paper records

-Encrypted communications where applicable

6. Your Rights Regarding Your Health Information

You have the following rights with respect to your PHI:

- Right to Access: You may request a copy of your medical records. We will respond within 30 days.

-Right to Amend: You may request corrections to your health information if you believe it is inaccurate or incomplete.

-Right to an Accounting of Disclosures: You may request a list of instances where we have disclosed your PHI for purposes other than treatment, payment, or operations.

-Right to Request Restrictions: You may request that we limit how we use or share your information. We will consider your request, but are not always required to agree to it.

-Right to Confidential Communications: You may request that we communicate with you in a specific way or at a specific location (e.g., only by email or at a different phone number).

-Right to a Paper Copy of This Notice: You may request a printed copy of this notice at any time, even if you received it electronically.

-Right to Opt Out of Fundraising: You may opt out of receiving fundraising communications from us at any time.

To exercise any of the above rights, please contact us using the information below.

7. Breach Notification

In the event of a breach of your unsecured PHI, Superior Med Spa will notify you as required by HIPAA and applicable state law. Notification will occur without unreasonable delay and no later than 60 days following discovery of the breach.

8. Important Disclaimer

Results may vary. All treatments offered at Superior Med Spa are individualized. No specific outcome or result is guaranteed. The information provided on our website and marketing materials is for educational purposes only and does not constitute medical advice.

9. Changes to This Notice

We reserve the right to update or change this Notice of Privacy Practices at any time. The updated notice will be posted on our website and made available at our office. The effective date at the top of this page will reflect the most recent revision.

10. How to File a Complaint

If you believe your privacy rights have been violated, you may file a complaint with us directly or with the U.S. Department of Health and Human Services (HHS) Office for Civil Rights:

HHS Online: www.hhs.gov/ocr/privacy/hipaa/complaints

HHS Phone: 1-800-368-1019

You will not be penalized or retaliated against for filing a complaint.

Privacy Officer / Contact Us

Superior Med Spa LLC

1613 Tower Ave, Superior, WI 54880

Phone: (715) 718-0655

Website: superiormedspallc.com/contact