Masters Medspa Privacy Policy

Effective Date: Nov 19, 2025

Last Updated: Nov 19, 2025

 

 

1. Introduction

 Masters Medspa (“we,” “our,” or “us”) is committed to protecting your privacy and maintaining the confidentiality of your personal and medical information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or receive services from us.

We comply with all applicable federal and state privacy laws, including the Health Insurance Portability and Accountability Act (HIPAA), the California Consumer Privacy Act (CCPA), and the California Privacy Rights Act (CPRA).

 

  

2. Information We Collect

We collect personal, contact, and medical information necessary to provide safe, high-quality care and a secure online experience. This may include:

a. Personal & Contact Information

  • Full name
  • Address
  • Email address
  • Phone number
  • Date of birth

  

b. Health & Medical Information

  • Medical history, medications, allergies, and treatment notes
  • Photos or images related to aesthetic treatments
  • Other health information you provide during consultations or treatments

 

c. Technical & Website Usage Data

  • IP address
  • Browser type and device identifiers
  • Website interactions, pages viewed, and session duration
  • Geolocation data (if enabled)

 

We use the Jane App Electronic Medical Record (EMR) system to securely collect and store all medical and treatment-related data. Jane App is fully HIPAA-compliant and uses industry-standard encryption and access controls.

We use Outlook email server to securely receive and send emails including any photos, personal, and medical information. Outlook is fully HIPPA-compliant and uses industry-standard encryption and access controls.

 

  

3. How We Use Your Information

We use your personal and health information for the following purposes: 

  • To provide medical aesthetic consultations and treatments.
  • To manage scheduling, appointments, and payments.
  • To communicate with you regarding your care, results, and updates.
  • To operate, maintain, and improve our website and services.
  • To send promotional communications, updates, or offers (you may opt out anytime).
  • To comply with applicable legal, billing, and regulatory requirements.

  

 

4. How We Share or Disclose Information

We do not sell your personal information. We may share limited information with trusted third parties only as needed to perform essential business or healthcare functions, including:

  • Jane App: for secure patient record management.
  • Website and hosting providers: to operate our online services.
  • Payment processors: for billing and financial transactions.
  • Legal authorities: if required to comply with law, court orders, or to protect the safety and rights of others.

 

All third parties are required to maintain confidentiality and comply with applicable privacy and security laws.

 

 

5. Data Security

We take your privacy seriously. Security measures include:

  • HIPAA-compliant EMR system (Jane App).
  • Data encryption in transit and at rest.
  • Secure servers and restricted employee access.
  • Regular monitoring for unauthorized access or misuse.

 

However, no online or electronic system is 100% secure. We cannot guarantee absolute security against breaches beyond our reasonable control.

 

 

6. Website and Communication Disclaimers

  • Do not include sensitive medical information in website contact forms or emails, as these are not encrypted communication channels.
  • Communications via our website, email, or text are for administrative or scheduling purposes only.
  • Treatment information and medical advice will only be shared securely through your Jane App patient portal or in person.

 

  

7. California Residents’ Rights (CCPA/CPRA)

If you are a California resident, you have the following rights regarding your personal information:

 

Right to Know

You may request to know what personal information we have collected about you, including the categories of data, sources, and any third parties it has been shared with.

 

Right to Delete

You may request the deletion of your personal information, subject to exceptions for medical record retention or legal requirements.

 

Right to Opt-Out

You have the right to opt out of the sale or sharing of your personal information. Masters Medspa does not sell personal or medical data.

 

Right to Correct

You may request correction of inaccurate personal information we maintain about you.

 

Right to Limit Use of Sensitive Information

You may request that we limit the use or disclosure of sensitive information, such as medical or biometric data, except as required for treatment, payment, or healthcare operations.

 

To exercise any of these rights, please contact us (see Section 9).

 

 

8. Data Retention

We retain your personal and medical information only as long as necessary to provide services, comply with legal obligations, and maintain accurate medical records in accordance with healthcare regulations.

 

  

9. Contact Information

If you have questions, privacy-related requests, or wish to exercise your rights under this policy, please contact us:

 

Masters Medspa

Email: Stacey@masters-medspa.com

Phone: 949-334-6003

Address: 39 Creek Rd, Suite 280, Irvine, CA 92604

Website: www.masters-medspa.com

 

  

10. Updates to This Policy

We may update this Privacy Policy from time to time to reflect changes in practices, technology, or legal requirements. Updates will be posted on our website with the revised effective date.

 

 

By using our website or services, you consent to the terms of this Privacy Policy.