privacy policy

Last Updated: 4.16.24

**1. Information We Collect:**

We receive, collect, and store information you provide on our website or through other means. This includes, but is not limited to:

- Internet Protocol (IP) address

- Login information

- Email address

- Password

- Computer and connection information

- Purchase history

- Personally identifiable information (name, email, password, communications)

- Payment details (credit card information)

- Comments, feedback, product reviews, recommendations

- Personal profile

**2. Use of Information:**

We collect both non-personal and personal information for the following purposes:

- Providing and operating our services

- Offering ongoing customer assistance and technical support

- Contacting visitors and users with service-related notices and promotional messages

- Creating aggregated statistical data for service improvement

- Compliance with applicable laws and regulations

**3. Data Storage:**

Our company is hosted on the Wix.com platform, which stores data on secure servers behind a firewall. Your data may be stored through Wix.com’s data storage and databases.

**4. Payment Information:**

All direct payment gateways offered by Wix.com adhere to PCI-DSS standards, ensuring secure handling of credit card information.

**5. Communication:**

We may contact you for account notifications, dispute resolution, fee collection, surveys, updates, or as necessary to enforce agreements. We may contact you via email, telephone, text messages, and postal mail.

**6. Opt-Out:**

If you wish to stop the processing of your data, please contact us at drcastelli@castellichiro.com or send us mail.

**7. Visitor Information Protection:**

Your personal information is stored securely and is accessible only to a limited number of authorized personnel. Sensitive/credit information is encrypted via SSL technology. Transactions are processed through a secure gateway provider and are not stored on our servers.

**8. Cookies:**

We may use cookies for tracking purposes. You can manage cookie preferences in your browser settings, but disabling them may affect site functionality.

**9. Third-Party Disclosure:**

We do not sell, trade, or transfer personally identifiable information to outside parties.

**10. Google Services:**

We implement Google services, including Remarketing with Google AdWords, Google Display Network Impression Reporting, and Demographics and Interests Reporting.

**11. COPPA Compliance:**

We do not specifically market to children under 13.

**12. Fair Information Practices:**

In the event of a data breach, users will be notified via email within 7 business days.

**13. CAN-SPAM Act Compliance:**

We collect email addresses to send information and respond to inquiries. To comply with CAN-SPAM, we agree not to use false subjects, identify messages as advertisements, include our business address, monitor third-party email marketing services, honor opt-out requests, and allow users to unsubscribe.

**14. HIPAA Privacy Policy:**

In compliance with HIPAA, we do not use or disclose PHI other than as permitted, do not sell PHI, store PHI securely, ensure confidentiality, and limit the use and/or disclosure of PHI to the minimum necessary.

**15. Policy Changes:**

We reserve the right to modify this privacy policy. Changes will be effective immediately upon posting. Material changes will be notified.

**16. Contact Information:**

If you would like to access, correct, amend, or delete any personal information, please contact us at drcastelli@castelliciro.com or by mail.