This Privacy Policy describes how Smile Reston Heights PLLC (“we,” “our,” or “us”) collects, uses, and shares information through our website located at www.smilerestonheights.com (the “Website”) and through our SMS/text messaging services. By using our Website or opting in to receive SMS messages, you consent to the data practices described herein.
This Policy covers only information collected or processed through the Website and SMS services, not information collected by third parties or affiliated organizations (“Service Providers” or “Affiliates”) unless explicitly stated. We are not responsible for the content or privacy practices of other websites or services to which we link that do not display a direct link to this Privacy Policy.
In addition, our Website and Services fully comply with our organization’s Notice of Privacy Practices as required by the Health Insurance Portability & Accountability Act of 1996 (HIPAA).
We will not share or sell your opt-in to an SMS campaign with any third party for purposes unrelated to providing you with the services of that campaign. We may share your Personal Data, including your SMS opt-in or consent status, with third parties that help us provide our messaging services, including but not limited to platform providers, phone companies, and any other vendors who assist us in the delivery of text messages.
All of the above categories exclude text messaging originator opt-in data and consent; this information will not be shared with any third parties.
I. Information We Collect
A. Personally Identifiable Information (PII)
We and our Service Providers only collect PII with your consent. PII is collected when you:
-
Register for an appointment on the Website
-
Subscribe to a newsletter
-
Submit messages or inquiries
-
Opt in to SMS/text messaging
-
Use other Website features or services
Examples of PII we may collect include:
-
First name
-
Last name
-
Telephone number
-
Email address
-
Date of birth
-
Caller ID information (if available)
B. Non-Personally Identifiable Information (Non-PII)
We and our Service Providers/Affiliates may collect anonymous information that cannot identify a specific individual unless combined with PII. Examples include:
-
ZIP code, city, state
-
Browser type and operating system
-
Date and time of visit
-
Referring web page
-
IP address
-
Mobile Device ID
-
Medical or dental condition or symptoms
Cookies: We may use cookies, web beacons, and similar technologies to collect Non-PII and enhance Website functionality. Third-party service providers may also collect Non-PII through these technologies.
II. SMS/Text Messaging (Opt-In) and Data Sharing
A. SMS Opt-In and Consent
By providing your phone number and opting in, you consent to receive SMS/text messages including:
-
Appointment reminders
-
Treatment or scheduling updates
-
Office alerts
-
Promotional content (if you consented)
Message and data rates may apply. You may opt out at any time by replying “STOP” to any message or contacting our office.
B. How We Use SMS Data
Your SMS opt-in information is used only to provide messaging services and related communication. This includes delivery, tracking, and internal auditing of messages.
C. Sharing SMS and Personal Data
We will not sell or share your SMS opt-in for unrelated purposes. We may share limited Personal Data with third parties only to facilitate SMS delivery, including:
-
Messaging platform providers
-
Phone companies
-
Vendors assisting with message delivery
These parties may use the data solely to support our messaging services.
D. Exception for Originator Consent Data
Raw SMS opt-in records that identify the originator or contain detailed consent information will not be shared with third parties. We retain this information internally for compliance and audit purposes only.
III. Data Retention and Security
-
We retain consent records, PII, and minimal Non-PII for as long as necessary to provide services, comply with HIPAA, or as legally required.
-
SMS opt-in data and timestamps are stored internally and protected by secure access controls.
-
We use encryption, secure servers, and restricted administrative access to protect your data.
IV. Third-Party Links and Services
Our Website may link to third-party websites or services. We are not responsible for their privacy practices or content. Users are encouraged to read the Privacy Policies of linked services before providing information.
V. Updates to This Policy
We may update this Privacy Policy from time to time. The revised version will be posted on this page with an updated date. Continued use of the Website or SMS services after changes constitutes your acceptance of the updated Policy.