Privacy Policy

Our Commitment to Your Privacy

At Finesse Plastic Surgery, we are deeply committed to protecting the privacy and confidentiality of your personal and health information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information in compliance with the Health Insurance Portability and Accountability Act (HIPAA) and applicable state and federal privacy laws.

We understand that your decision to pursue plastic surgery is deeply personal. Every aspect of our practice is designed to honor your trust, protect your privacy, and ensure your information is handled with the utmost care and discretion.

Information We Collect

Protected Health Information (PHI)

We collect health information necessary to provide you with excellent surgical care, including:

  • Medical history, current health conditions, and medications
  • Surgical goals, concerns, and treatment preferences
  • Pre-operative and post-operative photographs
  • Surgical records, operative notes, and follow-up care documentation
  • Lab results, imaging studies, and diagnostic information
  • Insurance information and payment records

Personal Information

  • Contact information (name, email, phone, address)
  • Date of birth and emergency contact information
  • Communication preferences and consultation details

Website Information

  • Usage data (pages visited, time spent, device information)
  • Cookie data and analytics information
  • Form submissions and inquiry details

How We Use Your Information

We use your information solely for purposes related to your care and our practice operations:

  • Treatment: Providing consultations, surgical procedures, and post-operative care
  • Communication: Scheduling appointments, follow-up care, and answering your questions
  • Care Coordination: Collaborating with other healthcare providers when necessary for your treatment
  • Payment & Billing: Processing payments, insurance verification, and financial arrangements
  • Practice Operations: Quality improvement, staff training, and maintaining medical records
  • Legal Compliance: Meeting regulatory requirements and responding to legal requests

Your HIPAA Rights

Under HIPAA, you have specific rights regarding your health information:

  • Right to Access: Review and obtain copies of your medical records
  • Right to Amend: Request corrections to inaccurate information
  • Right to Accounting: Receive a list of disclosures we've made
  • Right to Restrict: Request limitations on how we use or share your information
  • Right to Confidential Communication: Request we contact you in a specific way
  • Right to Notice: Receive this Privacy Policy and our Notice of Privacy Practices

To exercise these rights or request more information, please contact our Privacy Officer using the information provided at the end of this policy.

Photography & Before/After Images

Medical photography is an essential part of plastic surgery care, used for treatment planning, surgical records, and evaluating your results.

Clinical Use: Photographs taken for your medical record are used solely for your treatment and are protected as part of your PHI.

Marketing Use: We will never use your photographs for marketing, educational purposes, or display on our website without your explicit written consent. If you choose to allow us to share your photographs, you may withdraw consent at any time.

All photographs are stored securely and accessed only by authorized staff involved in your care.

When We Share Your Information

We do not sell, trade, or share your personal health information except in the following limited circumstances:

  • With Your Authorization: When you provide written consent
  • Treatment Team: With staff directly involved in your care
  • Business Associates: With vendors who assist our practice (e.g., billing, IT support) under strict confidentiality agreements
  • Legal Requirements: When required by law, court order, or regulatory agencies
  • Emergency Situations: To prevent serious harm to you or others

How We Protect Your Information

We implement comprehensive security measures to protect your information:

  • Encrypted data transmission and secure server infrastructure
  • Access controls limiting who can view your records
  • Regular staff training on privacy and security practices
  • Secure physical storage and locked file systems
  • Regular security audits and compliance reviews
  • Incident response procedures for potential breaches

While we employ industry-standard safeguards, no system is completely secure. We continuously update our practices to maintain the highest level of protection.

Website & Electronic Communications

⚠️ Important Notice About Email Security

  • Email and online forms are not completely secure. Please do not send sensitive medical information or detailed health history via email or contact forms. Call our office directly to discuss confidential matters.:

Cookies & Analytics: Our website uses cookies to improve your experience and understand how visitors use our site. You can adjust your browser settings to refuse cookies, though some functionality may be limited.

Data Retention

We retain your medical records and health information as required by California law and medical board regulations:

  • Medical Records: Minimum of 7 years from your last visit
  • Minor Patients: Until age 18 plus 7 years
  • Financial Records: 7 years for tax and audit purposes
  • Photographs: Retained as part of your permanent medical record

After the retention period, records are securely destroyed in accordance with HIPAA requirements.

California Consumer Privacy Act (CCPA/CPRA) Rights

If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

  • Right to Know: Request information about what personal information we collect, use, disclose, or sell
  • Right to Delete: Request deletion of your personal information (subject to certain exceptions)
  • Right to Correct: Request correction of inaccurate personal information
  • Right to Opt-Out: Opt out of the sale or sharing of your personal information
  • Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights
  • Right to Limit Use: Limit the use of sensitive personal information

To exercise these rights, please contact our Privacy Officer using the contact information provided at the end of this policy. We will respond to your request within 45 days.

We do not sell your personal information to third parties. We may share information with service providers who assist us in operating our practice, but only as necessary to provide services to you.

Changes to This Policy

We may update this Privacy Policy to reflect changes in our practices or legal requirements. We will notify you of material changes by posting the updated policy on our website and updating the "Last Updated" date. We encourage you to review this policy periodically.

Contact Us

If you have questions about this Privacy Policy or wish to exercise your HIPAA rights, please contact:

Finesse Plastic Surgery

Privacy Officer: Krystle Cummins

Address:
230 S Main Street, Suite 210
Orange, CA 92868

Phone: (714) 978-2445

Email: concierge@finesseps.com

Exclusively focused. Exceptionally refined.