Mirror Health & Wellness Website Privacy Policy

Last Updated April 10, 2025

1. Introduction

Welcome to Mirror Health & Wellness (“Mirror Health & Wellness,” “we,” “us,” or “our”). Your privacy is important to us. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website at www.mirrorhealthandwellness.com (the “Site”).

By using our Site, you agree to the practices described in this Privacy Policy. If you do not agree, please refrain from using the Site.

This policy applies to both Mirror Health & Wellness, LLC, and our affiliated medical provider, Mirror Health Specialists, PC, where applicable.

2. Our Commitment to Privacy

  • We do not sell your personal data.

  • We only collect information necessary to provide and improve our services.

  • We use appropriate security measures to protect your data.

  • We share data only when necessary, with appropriate contracts in place.

  • We comply with applicable privacy laws including HIPAA, CMIA, and CCPA/CPRA.

3. Information We Collect

We may collect the following types of information:

a. Personal Information (PI)

  • Name, email address, phone number, and any other information you submit through contact forms or newsletter sign-ups.

b. Automatically Collected Information

  • IP addresses, browser/device information, cookies, and analytics-related data (limited to what Squarespace or future tools collect automatically).

c. Third-Party Sources

We may collect or receive data from service partners including:

  • Tebra Technologies Inc. (for scheduling, telehealth, and electronic health records)

  • Tebra Payments (for invoices, payment methods, and collections)

4. Uses of Your Information

We may use your information to:

  • Respond to inquiries and fulfill service requests

  • Send newsletters or promotional content (only with opt-in)

  • Improve website functionality and user experience

  • Manage scheduling, billing, and patient onboarding via third-party platforms

  • Meet legal, contractual, or regulatory obligations

5. Protected Health Information (PHI)

a. Who Handles PHI?

Mirror Health & Wellness, LLC does not directly store or manage your medical records. PHI is managed by Mirror Health Specialists, PC via HIPAA-compliant platforms, including Tebra.

b. HIPAA & CMIA Compliance

PHI submitted via third-party platforms is protected by the Health Insurance Portability and Accountability Act (HIPAA) and California’s Confidentiality of Medical Information Act (CMIA). Our affiliates and service providers are contractually obligated to comply with these laws.

c. Caution When Submitting Forms

Please avoid including sensitive health information in general website forms. For secure communication, please use our secure patient portal hosted by Tebra or contact us directly by phone.

6. How We Share Your Information

We do not sell your personal data. We may share it with:

  • Tebra Technologies Inc. (for scheduling and electronic health records)

  • Tebra Payments (for billing and payment processing)

  • Mirror Health Specialists, PC (our affiliated medical provider)

  • Vendors providing web services, CRM systems, payment processors, or email communications, under strict data protection agreements

We require all service providers to maintain the confidentiality and security of your information.

7. Third-Party Links

Our Site may contain links to external websites (e.g., our patient portal hosted by Tebra). We are not responsible for the privacy practices or content of such third parties. Once you leave our Site, this Privacy Policy no longer applies.

We encourage you to review the privacy policies of any third-party sites you visit.

8. Cookies & Tracking Technologies

We may use cookies and similar technologies to enhance your experience. Squarespace may collect anonymized usage data.

You can manage your cookie preferences through your browser settings.

We do not currently use external analytics (such as Google Analytics or Facebook Pixel) but may integrate such tools in the future with appropriate notice and opt-out options.

9. Data Security & Retention

We take appropriate administrative, technical, and physical measures to protect your information, including:

  • Secure hosting infrastructure

  • Access controls, role-based permissions, and encryption

  • Retention policies that limit data storage to the minimum period necessary for operational, legal, or regulatory needs

However, no internet-based platform can be guaranteed to be 100% secure.

10. Your Rights

a. Under HIPAA/CMIA (health information):

  • Request access to or correction of your PHI

  • Request restrictions on PHI use or disclosure

  • Request confidential communications (e.g., using an alternative address)

  • File a complaint regarding PHI practices (see Contact section below)

b. Under CCPA/CPRA (California residents):

  • Know what personal information we collect and how it is used

  • Request deletion of personal information (with certain legal exceptions)

  • Opt out of data "sharing" for marketing or analytics purposes (if applicable)

  • Exercise your rights without discrimination

To exercise your rights, please contact us at support@mymirrorhealth.com.

11. Children’s Privacy

Our Site is not intended for individuals under the age of 18. We do not knowingly collect personal information from minors without verified parental consent.

12. Legal Disclosures

We may disclose information if required to:

  • Comply with applicable law, regulation, legal process, or government request

  • Prevent fraud, abuse, security incidents, or other harmful activities

  • Protect the rights, property, and safety of our users, patients, or others

  • Support corporate transactions, such as mergers, sales, or acquisitions

13. Changes to This Policy

We may update this Privacy Policy from time to time. Updates will be posted on this page with a revised "Effective Date."

Your continued use of the Site following the posting of changes constitutes your acceptance of such changes.

We encourage you to review this Privacy Policy periodically.

14. Contact Us

For general privacy questions or requests:

Mirror Health & Wellness, LLC
Email: support@mymirrorhealth.com
Address: 5750 Downey Ave., Ste. 303, Lakewood, CA 90712
Phone: (657) 708-0074

For medical records or PHI-related concerns, you may also contact Mirror Health Specialists, PC via the same channels.