Privacy Policy for guests and website visitors.

What information we may collect.

The information we collect depends on how you interact with Eternal MedSpa.

Information from third-party platforms

We may receive information from platforms used to support booking, payment processing, financing, email marketing, text messaging, customer relationship management, reviews, website analytics, advertising, social media, e-commerce, and practice operations.

Why information is used.

• Scheduling and guest care: To schedule appointments, confirm visits, conduct intake, deliver services, document care, follow up, and manage provider recommendations.
• Client service: To respond to questions, provide support, manage refunds, credits, memberships, gift cards, packages, and guest relationships.
• Communications: To send appointment confirmations, reminders, follow-up messages, service updates, policy updates, newsletters, promotions, educational content, event information, and partner updates where permitted.
• Operations: To maintain records, process payments, manage financing, administer memberships, support accounting, train staff, manage inventory, and improve services.
• Website improvement: To understand website performance, improve user experience, personalize content, measure campaigns, prevent fraud, and protect systems.
• Legal and compliance: To comply with applicable laws, respond to legal requests, protect rights and property, investigate concerns, and enforce policies.

When information may be shared.

Eternal MedSpa does not sell personal medical information. We may share information when needed to operate the practice, provide services, communicate with guests, comply with law, protect safety, or support business operations. For medical-record disclosures where required, Eternal MedSpa will maintain appropriate disclosure records or documentation.

Service providers and operational vendors

Information may be shared with trusted vendors that support booking, electronic records, payments, financing, email, SMS, website hosting, analytics, advertising, IT, legal, accounting, marketing, reviews, e-commerce, security, and operational support.

Booking, payment, financing, and account platforms

Information submitted through third-party platforms, including booking, payment, financing, patient account, or e-commerce systems, may be subject to those providers’ own terms, privacy policies, and security practices. Examples may include Boulevard, Cherry, PatientFi, CareCredit, payment processors, communication vendors, and related platforms.

Professional and legal purposes

We may share information with healthcare professionals, supervising providers, laboratories, pharmacy or medication partners, legal counsel, accountants, insurers, regulators, law enforcement, courts, or others when appropriate or required by law.

Business transitions

If Eternal MedSpa is involved in a merger, acquisition, financing, reorganization, sale of assets, or similar business transaction, information may be reviewed or transferred as part of that process, subject to applicable confidentiality and legal requirements.

Communication choices and consent.

By providing your phone number or email address, you may receive appointment-related, service-related, administrative, and, where permitted, marketing communications from Eternal MedSpa. Communications may include confirmations, reminders, intake instructions, follow-up messages, special offers, events, newsletters, education, and practice updates.

Text messages

You may opt out of marketing text messages by replying STOP where available, using any provided opt-out mechanism, or contacting Client Services at clientservices@eternal-medspa.com. Standard message and data rates may apply. We will use commercially reasonable processes to honor text-message opt-out or revocation requests within timeframes required by applicable law and platform rules.

Opting out of marketing texts does not necessarily stop non-marketing, transactional, appointment, account, scheduling, safety, or care-related communications where permitted by law and necessary to provide requested services.

Email marketing

You may unsubscribe from marketing emails using the unsubscribe link included in the email or by contacting Client Services at clientservices@eternal-medspa.com. We will use commercially reasonable processes to honor email marketing opt-out requests within timeframes required by applicable law. Even if you opt out of marketing, we may still send important transactional, appointment, service, account, safety, or legal communications.

Consent is not a condition of emergency care

Marketing consent is not required to receive emergency medical care. For urgent medical concerns, call 911 or go to the nearest emergency room. Eternal MedSpa text and email channels are not monitored as emergency-response channels.

Reviews, social media, and public comments

If you post a review, tag Eternal MedSpa, comment publicly, or interact with us on social media, that information may be visible to others depending on the platform and your privacy settings. Please avoid posting sensitive health or treatment information publicly.

Website analytics, cookies, and advertising tools.

Eternal MedSpa may use cookies, pixels, tags, analytics tools, advertising platforms, and similar technologies to understand website activity, improve performance, measure campaigns, customize content, and support advertising. These technologies may collect information such as device information, browser type, IP address, pages visited, referring URLs, approximate location, and interactions with forms, ads, or links.

We do not intentionally use tracking tools to disclose protected health information to advertising platforms. We also do not intentionally configure advertising tools to send information from secure intake, medical-record, payment, or patient-account areas to advertising platforms.

You may control cookies through your browser settings. Some website features may not function properly if cookies are disabled. Third-party platforms may also provide their own privacy settings and opt-out tools, including advertising preference tools, browser controls, and device privacy settings.

How information is protected and retained.

Eternal MedSpa uses reasonable administrative, technical, and physical safeguards designed to protect information. Safeguards may include access controls, vendor controls, secure platforms, staff training, internal policies, recordkeeping practices, and system monitoring where appropriate.

No website, email, text message, mobile device, cloud system, or digital platform can be guaranteed completely secure. Guests should use caution when sending sensitive information through general email, text, social media, or website forms.

Retention

We retain information for as long as reasonably necessary for guest care, scheduling, business operations, legal compliance, dispute resolution, accounting, security, and legitimate practice purposes. Clinical, financial, and legal records may be retained according to applicable laws, professional obligations, and operational requirements.

Incident response and Florida breach notice

If a privacy or security incident occurs, Eternal MedSpa will evaluate the incident and take appropriate steps consistent with applicable legal obligations, contractual requirements, and internal policies. Where Florida breach-notification law applies, Eternal MedSpa will evaluate whether affected Florida individuals and/or the Florida Department of Legal Affairs must be notified and will work to provide required notices without unreasonable delay and within applicable timeframes.

Florida breach obligations may depend on the type of information involved, the number of Florida residents affected, whether notice would interfere with a law-enforcement investigation, and whether other state, federal, contractual, or healthcare privacy obligations also apply.

Your choices and contact options.

• Marketing opt-out: You may unsubscribe from marketing emails, reply STOP to eligible marketing texts, or contact Client Services at clientservices@eternal-medspa.com.
• Communication preferences: You may ask us to update your preferred contact information or communication preferences.
• Access and correction: You may contact us to request updates to contact information or ask questions about information we maintain.
• Cookies: You may manage cookies through your browser settings and platform-specific controls.
• Clinical records: Requests related to clinical records or protected health information may be handled according to applicable healthcare privacy requirements, Florida medical-records law, identity-verification procedures, and practice policy.
• Complaints: You may contact Eternal MedSpa with privacy concerns. If applicable law gives you the right to file a complaint with a regulator, you may do so without retaliation.

Children and minors

Eternal MedSpa’s website and services are not directed to children. We do not knowingly collect personal information from children through the website. Minors may receive services only where permitted by law and practice policy, typically with appropriate parent or guardian involvement and consent.

United States users

Eternal MedSpa operates in Florida and the United States. If you access the website from outside the United States, you understand that information may be processed in the United States, where privacy laws may differ from those in your location.

Changes to this Privacy Policy.

Eternal MedSpa may update this Privacy Policy from time to time. The updated version will be posted on this page with a revised effective date. Continued use of the website, booking tools, communications, or services after updates are posted means the updated policy applies to future interactions.

Common privacy questions.

Is this a full HIPAA Notice of Privacy Practices?

No. This is a HIPAA-aware website and general practice Privacy Policy. A formal HIPAA Notice of Privacy Practices, if required, is a separate notice that explains specific rights and uses/disclosures of protected health information.

How do I opt out of marketing texts?

Reply STOP where available or contact clientservices@eternal-medspa.com. You may still receive transactional or service-related communications where permitted.

How do I opt out of marketing emails?

Use the unsubscribe link in the email or contact Client Services. We may still send appointment, account, safety, legal, or service-related emails.

Do cookies collect health information?

Our website may use cookies and analytics tools. We do not intentionally configure tracking tools to disclose protected health information to advertising platforms, and guests should avoid entering sensitive health information into general website forms unless specifically requested through a secure process.