Privacy Policy

Effective Date: June 17, 2026
Last Updated: June 17, 2026

Elysian Medspa & Rejuvenation Center respects your privacy and is committed to handling personal information responsibly. This Privacy Policy explains how we collect, use, disclose, and protect information when you visit our website, submit an online form, schedule an appointment, contact us by phone, email, or text message, or otherwise interact with our digital services.

This Privacy Policy applies to website and general consumer information. It is separate from our HIPAA Notice of Privacy Practices, which describes how we may use and disclose protected health information in connection with healthcare services. When information is protected by HIPAA, our HIPAA Notice of Privacy Practices governs.

Information We May Collect

The information we collect depends on how you interact with us.

Information You Provide Directly

You may provide information such as:

  • Your name
  • Telephone number
  • Email address
  • Mailing address
  • Date of birth
  • Preferred appointment date or time
  • Services or treatments that interest you
  • Questions, comments, or appointment requests
  • Insurance and billing information
  • Information you provide during telephone, email, or text communications
  • Photographs, documents, or other materials you voluntarily provide
  • Health-related information you choose to submit

Please do not submit highly sensitive medical information through a general website contact form unless we specifically direct you to do so. General website forms and ordinary email may not be appropriate for confidential clinical communications.

Information Collected Automatically

When you use our website, we and our service providers may automatically collect information such as:

  • Internet Protocol address
  • Device type
  • Browser type and settings
  • Operating system
  • Approximate geographic area
  • Pages viewed
  • Links selected
  • Date and time of access
  • Referring website
  • Advertising interactions
  • Cookie and device identifiers
  • Website performance and diagnostic information

This information may be collected through cookies, pixels, tags, scripts, local storage, and similar technologies.

Telephone and Communication Information

When you call or text Elysian Medspa & Rejuvenation Center, we or our communication providers may collect:

  • The telephone number used
  • The number called
  • Call date, time, and duration
  • Call routing and attribution information
  • Text-message content and delivery information
  • Voicemail messages

We use CallRail for call tracking and may use RingCentral or Setmore for communications and scheduling. If a call-recording or transcription feature is enabled, a call may be recorded or transcribed where legally permitted and after any notice required by law.

How We Use Information

We may use information to:

  • Respond to questions and requests
  • Schedule, confirm, change, or cancel appointments
  • Provide services and coordinate patient care
  • Verify insurance benefits and process claims
  • Communicate about treatment preparation, follow-up, billing, or office matters
  • Send appointment reminders and service-related notices
  • Send promotional communications when permitted by law
  • Improve our website, services, and patient experience
  • Understand website traffic and advertising performance
  • Measure calls, inquiries, and appointment conversions
  • Protect our website, patients, staff, and business
  • Detect fraud, misuse, or security incidents
  • Maintain records
  • Comply with legal, regulatory, licensing, insurance, and professional obligations
  • Establish, exercise, or defend legal rights

We may combine information collected through different interactions when permitted by law.

Website Analytics, Advertising, and Tracking Technologies

Our website may use:

  • Google Analytics
  • Google Ads
  • Google Tag Manager
  • Meta Pixel
  • CallRail
  • Cookies and related website technologies

These tools may help us understand how visitors use our website, measure advertising performance, identify the source of calls or appointment requests, improve website functionality, and deliver or evaluate advertising.

Depending on your browser settings, consent choices, and the configuration of these services, third-party providers may receive device, browser, cookie, advertising, website-use, or call-attribution information.

We seek to configure tracking and advertising technologies in a manner consistent with applicable privacy and healthcare laws. We do not intend for general analytics or advertising providers to receive protected health information through website forms or patient-specific interactions.

You can control or delete cookies through your browser settings. Disabling cookies may affect website features. You may also use privacy controls offered by Google, Meta, your device, or your browser.

Appointment Scheduling and Third-Party Services

We may use third-party services, including Setmore, RingCentral, CallRail, insurance companies, payment processors, communication providers, and other operational vendors.

When you use a third-party scheduling, payment, communication, mapping, or social media service, that provider may collect information under its own terms and privacy policy. We encourage you to review the privacy practices of any third-party service you use.

Where a vendor creates, receives, maintains, or transmits protected health information on our behalf, we will address the relationship as required by applicable healthcare privacy law.

Protected Health Information

Information created or received as part of your patient relationship may be protected health information under HIPAA or other law.

Examples may include:

  • Medical history
  • Diagnoses
  • Treatment plans
  • Prescriptions
  • Clinical photographs
  • Laboratory information
  • Insurance claims
  • Billing records
  • Appointment information connected with healthcare services

Our use and disclosure of protected health information are described in our HIPAA Notice of Privacy Practices.

Submitting an online form does not necessarily make every piece of website information protected health information. Whether HIPAA applies depends on the nature of the information, the context in which it is collected, and applicable law.

How We May Share Information

We may disclose information to the following categories of recipients when reasonably necessary and legally permitted:

Service Providers

We may share information with vendors that support:

  • Website hosting
  • Analytics
  • Advertising
  • Call tracking
  • Scheduling
  • Telephone and text communications
  • Email delivery
  • Insurance verification
  • Claims administration
  • Billing and payment processing
  • Data storage
  • Information security
  • Professional consulting

These providers may process information only for the purposes for which it was provided, subject to applicable agreements and law.

Healthcare and Insurance Participants

We may share information with healthcare professionals, laboratories, pharmacies, insurers, benefit administrators, claims processors, or other participants involved in treatment, payment, and healthcare operations, as allowed by law.

Legal and Safety Purposes

We may disclose information when we reasonably believe disclosure is necessary to:

  • Comply with a law, regulation, court order, subpoena, or lawful government request
  • Respond to an emergency
  • Protect the health or safety of a person
  • Investigate fraud, security incidents, or unlawful activity
  • Protect our patients, staff, property, rights, or operations
  • Exercise or defend legal claims

Business Transactions

If the clinic undergoes a merger, acquisition, financing, reorganization, transfer of assets, or similar transaction, information may be reviewed or transferred as permitted by law and subject to appropriate confidentiality protections.

Sale and Marketing of Information

We do not sell protected health information without an authorization when HIPAA requires one.

We do not treat your consent to receive text messages as permission for unrelated third parties to send their own marketing messages. Mobile opt-in information and text-message consent will not be sold or shared with unrelated third parties for their independent marketing purposes.

We may use non-clinical website, advertising, or inquiry information for our own marketing and advertising activities where permitted by law and consistent with your choices.

Email and Text Communications

We may send service-related communications regarding appointments, forms, billing, treatment preparation, follow-up, office updates, or other requested services.

We may also send promotional messages when you have consented or when otherwise permitted by law.

You may:

  • Reply STOP to an automated text-message program to request that messages stop
  • Reply HELP for assistance
  • Use the unsubscribe link in a promotional email
  • Contact us directly to update your communication preferences

Opting out of promotional messages will not prevent us from sending necessary administrative, legal, billing, safety, or one-to-one communications where permitted by law.

Email and standard text messaging may not be fully secure. Messages may be viewed by anyone with access to your device, account, or telephone service. Please consider this before sending sensitive information.

Information Security

We use reasonable administrative, technical, and physical safeguards intended to protect information against unauthorized access, disclosure, alteration, loss, or misuse.

No website, email system, telephone service, data transmission, or storage method can be guaranteed to be completely secure. You use online communications with this understanding.

If we discover a breach involving protected health information or other information subject to legally required notification, we will provide notice as required by applicable law.

Information Retention

We retain information for as long as reasonably necessary to:

  • Provide services
  • Maintain patient and business records
  • Satisfy insurance and billing requirements
  • Resolve disputes
  • Enforce agreements
  • Meet tax, accounting, licensing, professional, and legal obligations

Retention periods vary according to the type of information and applicable requirements.

Children and Minors

Our website is intended for a general audience and is not directed to children under 13.

A parent, legal guardian, or other authorized representative may communicate with us regarding a minor’s care where permitted by law. Treatment of minors is subject to clinical policies, consent requirements, and applicable law.

Your Privacy Choices

Depending on the information and applicable law, you may be able to:

  • Ask what personal information we maintain about you
  • Request that inaccurate contact information be corrected
  • Update communication preferences
  • Unsubscribe from promotional email
  • Opt out of automated text messages
  • Adjust cookie and browser settings
  • Exercise rights concerning protected health information under our HIPAA Notice of Privacy Practices

Some information must be retained or used to comply with healthcare, insurance, billing, legal, or professional obligations.

Third-Party Websites and Social Media

Our website may link to third-party websites, social media platforms, maps, financing providers, scheduling platforms, pharmacies, laboratories, insurers, or other services.

We are not responsible for the privacy, security, accuracy, or content of third-party services. A link does not necessarily indicate endorsement.

Information you post publicly on social media may be visible to others and should not be considered private or confidential.

Changes to This Privacy Policy

We may update this Privacy Policy to reflect changes in our practices, services, technology, or legal obligations.

The updated policy will be posted on this website with a revised effective or last-updated date. Your continued use of the website after an update is subject to the revised policy.

Contact Us

For questions about this Privacy Policy or our privacy practices, contact:

Elysian Medspa & Rejuvenation Center
6280 Shadeland Ave., Suite A
Indianapolis, IN 46220
Phone: (317) 526-5090
Email: info@elysianmedirejuv.com

For questions concerning protected health information or patient privacy rights, contact our Privacy Officer using the same telephone number, email address, or mailing address.