Privacy Policy for Oregon Laser Surgery
Last Updated: September 1st, 2025
Oregon Laser Surgery (“we,” “us,” or “our”) values your trust and is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your personal and medical information, both online and in our clinic, in compliance with federal and state privacy laws including the Health Insurance Portability and Accountability Act (HIPAA), the Oregon Consumer Privacy Act, and applicable U.S. privacy standards.
By visiting our website, scheduling an appointment, or receiving treatment, you agree to the terms of this Privacy Policy.
1. Information We Collect
We may collect personal, medical, and digital information in the following ways:
- Personal Identifiers: Name, address, phone number, email, date of birth, and emergency contact details.
- Health Information: Medical history, treatment records, before/after photos, prescriptions, allergies, or any health details you share for treatment purposes.
- Billing & Payment Data: Insurance details (if applicable), payment card information, and billing address.
- Online Data: IP addresses, browser type, operating system, referral URLs, and cookies when visiting our website.
- Appointment Information: Dates, times, services scheduled, and provider notes.
- Marketing & Communication Data: Preferences for emails, text messages, or promotional offers.
We only collect information necessary to deliver safe, effective, and personalized care or to improve your experience with Oregon Laser Surgery.
2. How We Use Your Information
Your information may be used for the following purposes:
- To provide medical or cosmetic treatments and maintain accurate patient records.
- To communicate about appointments, follow-ups, and pre/post-treatment instructions.
- To process payments and verify insurance (if applicable).
- To comply with legal and regulatory obligations.
- To enhance our website experience and improve services.
- To send educational materials, special offers, or promotional updates (with your consent).
- To protect our business, clients, and website from fraud or misuse.
We do not sell or rent your personal information.
3. HIPAA & Medical Privacy
As a healthcare provider, Oregon Laser Surgery follows all applicable HIPAA Privacy and Security Rules. This means:
- Protected Health Information (PHI) is used only for treatment, payment, and healthcare operations.
- You have the right to access, amend, or request copies of your medical records.
- We will not share your PHI with third parties without your written authorization, except as required by law.
- We maintain administrative, physical, and technical safeguards to protect your information against unauthorized access or disclosure.
You may request a copy of our full HIPAA Notice of Privacy Practices by contacting our office directly.
4. Website & Online Privacy
When you visit OregonLaserSurgery.com, we may collect information automatically through cookies, analytics tools, and similar technologies. This includes:
- Cookies: Small data files that improve website functionality and personalize your experience.
- Analytics: We may use Google Analytics or similar tools to understand traffic and user behavior.
- Third-Party Links: Our website may contain links to external websites. We are not responsible for their privacy practices.
- Online Forms: Information submitted via online contact or appointment forms is transmitted securely and used only to respond to your request.
You may adjust your browser settings to decline cookies, but this may affect site functionality.
5. Email & Text Communication
By providing your contact information, you consent to receive messages related to your appointments, treatment reminders, or occasional marketing communications. You may opt out at any time by following unsubscribe instructions or contacting us directly.
We comply with the CAN-SPAM Act and ensure all communications include valid sender information and easy opt-out options.
6. Information Sharing & Disclosure
We may share your information only in limited, lawful situations:
- With healthcare providers involved in your care.
- With billing processors, laboratories, or service vendors under strict confidentiality agreements.
- As required by law (for example, reporting certain medical conditions or responding to legal subpoenas).
- In the event of a merger, acquisition, or business transition, where your data remains protected under this policy.
We do not sell, trade, or lease your information to advertisers or unrelated third parties.
7. Data Security
We implement multiple layers of protection for your data:
- Encrypted electronic health records (EHR) systems.
- Secure, HIPAA-compliant email and file transfer systems.
- Restricted employee access on a need-to-know basis.
- Physical security at all Oregon Laser Surgery facilities.
- Regular staff training on privacy and data handling.
While no system can guarantee absolute security, we actively maintain industry-standard safeguards to prevent unauthorized access or breaches.
8. Your Rights
You have specific rights regarding your information, including:
- Access & Copies: Request copies of your records.
- Corrections: Ask for updates or corrections to inaccurate information.
- Restrictions: Limit how your PHI is shared.
- Confidential Communications: Request communications by alternative means.
- Right to Withdraw Consent: Withdraw authorization for marketing use or sharing at any time.
- Data Deletion (Non-Medical): Request deletion of personal data collected via our website or marketing channels, consistent with applicable laws.
Requests may be made in writing to the contact below.
9. Retention of Information
We retain your records for as long as required by law or necessary for the purposes outlined above. When no longer needed, information is securely deleted or destroyed in accordance with HIPAA and Oregon privacy requirements.
10. Children’s Privacy
Our website and services are not directed toward children under 13 years of age. We do not knowingly collect information from minors without verified parental or guardian consent.
11. Changes to This Privacy Policy
We may update this policy periodically to reflect changes in law, technology, or our business practices. Any updates will be posted on this page with a revised “Last Updated” date.
12. Contact Information
For questions about this Privacy Policy, our Terms & Conditions, or to exercise your privacy rights, please contact: