top of page

Privacy Policy

PRIVACY POLICY
Effective Date: June 2, 2025
Last Reviewed: September 11, 2025

Introduction

Glo Dental Studio (“we,” “our,” or “us”) is committed to protecting the privacy of every patient and visitor. Because we provide healthcare services, we follow HIPAA (U.S. healthcare privacy law), GDPR (European data protection law), and other applicable privacy regulations such as the California Consumer Privacy Act (CCPA).

This Privacy Policy explains how we collect, use, share, and protect your information—both online and in our office. It also explains the rights people have regarding their personal and health information.

Information We Collect

We may collect the following types of information:

  • Personal Identification Information: Name, address, email, phone.

  • Health Information (PHI): Medical history, treatment plans, x-rays, scans, and other information needed to provide dental care.

  • Payment Information: Billing address, credit/debit card details (processed securely by third-party providers).

  • Appointment & Communication Records: Scheduling information, messages, emails, and call notes.

  • Technical Information: IP address, device type, cookies, and browsing activity when you use our website.

How We Use Information

We use personal and health information only when legally permitted. This includes:

  • Treatment: To provide safe and effective dental care.

  • Payment: To process billing and insurance claims.

  • Healthcare Operations: Quality improvement, staff training, compliance, and safety monitoring.

  • Legal Requirements: When required by law, court order, or regulatory request.

  • Marketing (with consent): To send educational resources or information about our services. People may opt out at any time.

We will not sell or rent your personal health information.

Sharing Your Information

We may share your information only under the following circumstances:

  • With Service Providers (Business Associates): Appointment systems, payment processors, secure cloud storage, and email platforms. All providers are contractually required (under HIPAA BAAs and GDPR agreements) to protect your information.

  • For Legal or Safety Reasons: If required by law or to protect safety.

  • Business Changes: In the event of a merger or acquisition, data may be transferred with safeguards.

  • With Consent: For any purpose outside of those above, we will ask for your written consent.

Patient Rights Under HIPAA & GDPR

Patients have the right to:

  • Access: Request a copy of your health records.

  • Correct: Ask us to amend incorrect or incomplete information.

  • Restrict: Request limits on certain uses or disclosures.

  • Confidential Communications: Request contact by alternate means (e.g., mail instead of phone).

  • Accounting of Disclosures: Ask for a list of when PHI has been shared (excluding treatment/payment/operations).

  • Data Portability: Receive your personal data in a machine-readable format (GDPR).

  • Right to Erasure: Request deletion of non-medical personal data (subject to legal retention requirements).

  • Right to Object / Withdraw Consent: Stop us from using data for marketing or non-essential processing.

  • File a Complaint: With us, with the U.S. Department of Health & Human Services (for HIPAA), or your local EU authority (for GDPR).

Requests can be made by emailing info@glodentalstudio.com or calling 714-602-5557.

Data Retention

  • Medical records: Retained for at least 6 years (HIPAA requirement) or longer if required by state law.

  • Non-medical personal data: Retained only as long as necessary for the purpose collected.

Cookies & Online Tracking

Our website uses cookies and analytics tools to understand visitor activity and improve services. People can adjust browser settings to block or delete cookies. For EU visitors, we honor cookie consent preferences under GDPR.

Security

We use administrative, technical, and physical safeguards to protect personal and health information. This includes encryption, firewalls, secure servers, and staff training. While no system is completely secure, we continually review and improve our security measures.

International Data Transfers

If personal data is transferred outside the EU/EEA, we use lawful safeguards such as Standard Contractual Clauses or equivalent protections.

Children’s Privacy

  • In the U.S.: We do not knowingly collect information from children under 13.

  • In the EU: We do not knowingly collect information from children under 16 without verified parental consent.

California Residents’ Rights (CCPA)

California residents have the right to request details about personal information collected, request deletion (with exceptions), and opt out of certain sharing. We will not discriminate against people who exercise these rights. See “Contact Us” for how to submit a request.

Updates to this Policy

We may update this Privacy Policy from time to time. The revised version will always be posted on our website with the updated date.

Contact Us

Glo Dental Studio
2901 E Katella Ave, Suite B
Orange, CA 92867
Phone: 714-602-5557
Email: info@glodentalstudio.com

For EU data subjects: You may also contact our appointed EU representative at [Insert EU contact or GDPR compliance partner].

Accessibility

We are committed to making this Privacy Policy accessible. If you need it in another format, please contact us by phone or email.

bottom of page