This Privacy Policy describes how Loredo Hand Care Institute collects, uses, and protects information on loredohand.com. It does not govern medical record privacy. Medical record privacy is covered separately in our HIPAA Notice of Privacy Practices.
1. Information We Collect
We collect information that helps us schedule appointments, respond to inquiries, and improve our website. This includes:
- Contact form submissions: name, phone number, email address, and reason for visit when you request an appointment or send us a message.
- Technical information: IP address, browser type and version, device type, referring page, and pages visited on our site. This is standard web server log data.
- Cookies: limited to session and preference cookies necessary for the website to function. We do not use advertising cookies.
We do not collect financial information, insurance details, or medical records through this website. Medical records and billing information are collected and maintained separately under our HIPAA Notice of Privacy Practices.
2. How We Use Information
- Respond to appointment requests and patient inquiries
- Schedule, confirm, and reschedule appointments
- Coordinate care with treating clinicians and referring providers
- Improve the website, fix errors, and analyze usage patterns
- Comply with legal obligations
3. How We Share Information
We share information only in the ways described below.
- With our clinic staff, for scheduling, communication, and coordination of your care.
- With HIPAA business associates, such as electronic health record vendors and secure messaging services, under signed Business Associate Agreements that bind them to HIPAA-level confidentiality.
- As required by law, including in response to subpoenas, court orders, or valid government requests.
We do not sell, rent, or trade your personal information to any third party for marketing purposes.
4. Cookies and Analytics
This website uses Cloudflare Web Analytics, a privacy-respecting analytics service that does not use cookies and does not collect personally identifiable information. Cloudflare Web Analytics measures page views, unique visitors, and referral sources using only aggregate and anonymized data.
We do not use third-party advertising trackers, cross-site behavioral profiling, or retargeting pixels on this website.
5. Your Rights
You have the right to:
- Access the personal information we have collected about you through this website
- Request correction of inaccurate information
- Request deletion of your information, subject to legal record-retention requirements
- Opt out of non-essential communications at any time
To exercise these rights, contact us using the information in the Contact section below. We will respond within a reasonable timeframe, typically within 30 days.
6. Children’s Privacy
This website is not directed to children under the age of 13. We do not knowingly collect personal information from children under 13 through the website. If you believe a child has submitted information through our site, please contact us and we will promptly delete it.
Pediatric patients receive care in person only, with information provided by a parent or legal guardian through our standard intake process.
7. Data Retention
Information submitted through the website is retained only as long as necessary to respond to your request, coordinate your care, or satisfy legal record-retention requirements. Technical log data is retained on a rolling basis consistent with standard security and diagnostic practice.
8. Security
The website is served over HTTPS using current Transport Layer Security (TLS). Patient health information is maintained in separate, HIPAA-compliant systems with encryption at rest and access controls. No internet transmission or electronic storage is 100 percent secure, and we cannot guarantee absolute security, but we maintain reasonable administrative, technical, and physical safeguards.
9. Changes to This Policy
We may update this Privacy Policy from time to time. Material changes will be reflected by a revised "Last updated" date at the top of this page. Continued use of the website after changes are posted constitutes acceptance of the revised policy.
10. Contact for Privacy Questions
Questions about this Privacy Policy can be directed to:
220 North Park Blvd, Suite 100
Grapevine, TX 76051
Phone: 972-939-4974
Fax: 817-280-9870
For questions specifically about the use or disclosure of protected health information (PHI), please see our HIPAA Notice of Privacy Practices.