Privacy, Cookie, and HIPAA Policy
Effective Date: January 1, 2024
Church Street Dental
https://churchstreetdentalny.com
1. Who We Are
This website is owned and operated by Church Street Dental, located at:
Church Street Dental
85 Church Street, Caledonia, NY 14423
Phone: (585) 538-2121
Email: office@churchstreetdentalny.com
2. Information We Collect
a. Personal & Health Information
We collect personal data through website forms and patient intake:
-
Name, phone number, email
-
Appointment requests and communications
-
Dental/medical history and treatment records (HIPAA-protected)
-
Billing and insurance information
b. Automatically Collected Data
We use cookies and analytics tools to gather:
-
IP address, browser type, and device info
-
Pages visited and actions taken on the website
c. Comments
If you leave a comment, we collect:
-
The data shown in the comment form
-
Your IP address and browser user agent (for spam detection)
-
A hashed (anonymized) email string sent to the Gravatar service
Gravatar Privacy Policy
d. Media
If you upload images, avoid uploading images with embedded location data (EXIF GPS). Visitors can extract location data from images on the site.
e. Embedded Content
Articles may include embedded content (e.g., videos, images). These third-party sites may collect data, use cookies, and track interactions, as if you visited them directly.
3. Cookies
We use cookies for the following purposes:
-
To store your preferences and form entries
-
To enable secure login sessions
-
To improve performance and user experience
Login & Editor Cookies (WordPress)
-
Temporary login test cookie is discarded when you close your browser
-
Login cookies last 2 days; “Remember Me” lasts 2 weeks
-
Editor cookies (for blog post authors) last 1 day
You may disable cookies via your browser, but this could affect site functionality.
4. How We Use Your Information
We use your information to:
-
Schedule and manage dental appointments
-
Provide medical treatment and communicate with you
-
Improve our services and website
-
Process payments and insurance claims
-
Send appointment reminders or updates
-
Maintain security and comply with legal requirements
5. Who We Share Your Data With
We do not sell your data. Your data may be shared with:
-
Dental and medical professionals at our office
-
Insurance providers, dental labs, and healthcare partners
-
HIPAA-compliant third-party vendors (e.g., web hosting, forms, analytics)
-
Government/regulatory agencies when required by law
If you request a password reset, your IP address may be included in the reset email.
6. Data Retention
-
Comments and their metadata are stored indefinitely
-
User profile data is retained until the user deletes it or requests deletion
-
Health and appointment records are retained per legal retention requirements
7. Your Rights
You may:
-
Request access to or export of your personal or health data
-
Request corrections or deletion of your data
-
Limit the use or disclosure of your data (HIPAA rights)
-
File a privacy complaint (see Section 10)
To make a request, email: office@churchstreetdentalny.com
8. Where Your Data Is Sent
Visitor comments may be checked through an automated spam detection service. Other data may be processed by third-party vendors (e.g., hosting, analytics) in accordance with this policy.
9. Children’s Privacy
This website is not intended for children under 13. We do not knowingly collect data from children online.
10. HIPAA Privacy Practices
As a dental provider, we follow all HIPAA regulations. You have the right to:
-
Access or request a copy of your treatment records
-
Request corrections or restrictions
-
File a complaint with our office or with the U.S. Department of Health and Human Services
www.hhs.gov/ocr/privacy/hipaa/complaints
Contact our HIPAA Compliance Officer:
Phone: (585) 538-2121
Email: office@churchstreetdentalny.com
11. Changes to This Policy
We may update this policy from time to time. Changes will be posted on this page with a revised effective date.
