Optimizing Your Regenerative Treatment
Simply enter your name and email in the form below to get started on the path to health and recovery with our complimentary ebook
Gentle, Precise, Compassionate.
Last Updated and Effective as of April, 29, 2022.
Children’s Online Privacy Protection Act
This Website and any products and services offered herein are not intended for children under 13 years of age. No one under age 13 may provide any personal information to or on the Website. We do not knowingly collect information from anyone under 13. If we learn we have collected or received any information from anyone under the age of 13, we will delete that information. If you believe we might have any information from or about a child under 13, please contact us at firstname.lastname@example.org.
Information We Collect and How We Collect It
When you access the Website, its content and its services, we will learn certain information about you during your visit. We collect this information:
Information You Provide to Us.
The Website provides various places for visitors to provide information. We collect information when you fill out any type of form on the Website including a contact form, schedule a discovery call through a link on the Website, leave comments including on Grace Regenerative Orthopedics’s social media, purchase a program, product or service through our Website when that option is offered, or otherwise contact us via e-mail or an online form located on our Website. The information collected may include your name, e-mail, phone number, any comments you provide, records and copies of your correspondence such as messages together with your e-mail address and our responses, and if you make a purchase from us through the Website, your address, billing information, and details of purchase transactions you carry out through the Website (collectively, “personal information”). You are not required to provide any personal information to merely access or visit the Website.
If you are located in the European Economic Area (EEA), this means we are regulated under the General Data Protection Regulation which applies across the European Union (including in the United Kingdom) and we are responsible as data controller of that personal information for the purposes of those laws.
Information Collected from Other Sources
For the avoidance of doubt, if you are patient of Grace Regenerative Orthopedics, all such information you provide through Fullscript will be protected under our HIPPA Notice of Privacy Practices as part of your medical record. Furthermore, if you are not a patient of Grace Regenerative Orthopedics and you create a free account on Fullscript, this does not create a doctor-patient relationship between you and any doctor at Grace Regenerative Orthopedics.
Information We Collect Through Automatic Data Collection Technology.
We use analytics cookies to view site traffic, activity, and other data. This nonpersonal information will generally include information about your location, your traffic pattern through our Website, and any communications between your computer and our Website. Among other things, we may collect data about your computer hardware and software, your Internet connection, your IP address, your operating system, your browser type, domain names, access dates and times, referring website addresses, and information about the areas of the Website you visit and search terms you use on this Website and about the links you may select from within this Website to other areas of the Internet.
The information we collect automatically is used for statistical data and will not include personal information. We use such technologies and the information collected by them to improve the Website and our service as it enables us to analyze Website performance, estimate our audience size, track usage patterns, save information from your previous visits about your preferences to customize your experience and speed up your searches and recognize you when you return to our Website.
As with all websites hosted on Siteground, this Website uses font files from Google Fonts and Adobe Fonts. To properly display this site to you, servers where the font files are stored may receive personal information about you, including:
We also reserve the right to use technological equivalents of cookies, including social media pixels. These pixels allow social media sites to track visitors to outside websites so as to tailor advertising messages users see while visiting that social media website. We reserve the right to use these pixels in compliance with the policies of the various social media sites.
If your browser sends a “Do Not Track” signal, only a generic cookie will be placed on your device while the website is accessed.
To the extent that you voluntarily provide personal information to us, our systems will associate the automatically collected information with your personal information.
This Website is hosted by Siteground. Siteground collects certain data about you to power our Website analytics when you visit this Website, including:
This information may also include details about your use of this Website, including:
Siteground needs the data to run this Website, and to protect and improve its platform and services. Siteground analyzes the data in a de-personalized form. We share this information with Siteground, our Website analytics provider, to learn about our Website traffic and activity.
This Website may also use Google Analytics so that we can understand and analyze the usage trends and preferences of visitors in order to improve our service and develop new features and functionalities. Google Analytics is a web analytics service offered by Google that tracks and reports website traffic. Google uses the data collected to track and monitor the use of our Website. This data is shared with other Google services. Google may use the collected data to contextualize and personalize the ads of its own advertising network. To learn more about Google Analytics and how they may collect and use your data, please visit: “How Google uses data when you use our partners’ sites or apps,” located at https://policies.google.com/technologies/partner-sites.
How We Use Your Information
We use information that we collect about you or that you provide to us, including any personal information, to send you e-mails when you request information from us, to respond to your comments and questions, to provide support to users of the Website, to provide you with information about our services, to notify you about changes to our Website, to provide you with information, products or services you request from us, to carry out our obligations and enforce our rights arising from any contracts entered into between you and us, in any other way we may describe when you provide the information, to provide us with an overview of how people are accessing and using this Website, to understand and analyze usage trends and preferences of our Website visitors and users so that we can improve our service and develop new products, services, features and functionalities, and to improve our Website performance and customer service. If you make a payment or purchase directly from Grace Regenerative Orthopedics (not Fullscript) through this Website if that option is offered, we will also use the information that we collect to fulfill orders, deliver services and products and complete customer transactions, to process payments, and for billing and collection.
Email Policies and CAN-SPAM Act
In compliance with the CAN-SPAM Act, all e-mails sent from Grace Regenerative Orthopedics will clearly state who the e-mail is from and provide clear information on how to contact the sender. In addition, all e-mail messages from us provide the opportunity to opt-out of receiving future communications from us by clicking on the unsubscribe link located at the bottom of any such e-mail at any time. After unsubscribing, we will discontinue sending the messages as soon as technically feasible.
Disclosure of Your Information: Who We Share Your Information With
We respect your privacy and we do not sell, rent, lease, trade or otherwise transfer any information collected, whether automatically or through your voluntary action, to third parties (beyond what is necessary for the basic functionality of an online service or for fulfilling a customer transaction if applicable) without your consent.
As previously noted, if you are located in the European Economic Area (EEA), this means we are the ‘data controller” under the General Data Protection Regulation of any personal information collected through the Website, and we determine the purposes for which and the manner in which any personal information is used and processed. However, we pay for the services of third party ‘data processors’ who hold and/or process personal information of users of the Website on our behalf. We may have multiple data processors at any given time, including, but not limited to:
Note that, while the above entities act as data processors on our behalf, some or all of them may also act as data controllers in their own rights. For example, if you purchase a product or service directly through our Website, payment merchants decide which information they need from our customers in order to process their payments correctly. The payment merchants or other data processing entities may also exercise control over the other purposes that a customer’s data is used for, for example direct marketing of their products and services, which is not within our control. The payment merchants or other data processing entities also have legal requirements of their own to meet, such as regulations relating to the use and retention of payment card data or other personal data. And, finally, each data processor has its own terms and conditions and privacy policies that apply directly to our Website users.
Because the Website is hosted on Squarespace, we agreed to Squarespace’s Data Processing Addendum, which addresses how Squarespace processes data of our Website visitors on our behalf.
Use and Transfer of Your Information Out of the European Economic Area (EEA), the UK and Switzerland
The General Data Protection Regulation (GDPR) requires certain safeguards when transferring personal data from outside the European Economic Area (EEA), the United Kingdom (UK) and Switzerland to “third countries,” which are all countries outside these protected areas, including the United States. This Website is operated in the United States, and third parties with whom we might share your personal information as explained above are also located in the United States. If you are located in the EEA, the UK, Switzerland or elsewhere outside of the United States, please be aware that any information you provide to us will be transferred to the United States. By using this Website, participating in any of its services and/or providing your information, you consent to this transfer.
The United States does not have the same data protection laws as the EEA, United Kingdom and Switzerland. While the European Commission has not given a formal decision that United States provides an adequate level of data protection similar to those which apply in the EEA, the UK and Switzerland, any transfer of your personal information will be subject to the derogation in Article 49 permitting non-repetitive transfers that concern only a limited number of data subjects, as permitted by Article 49 of the General Data Protection Regulation that is designed to help safeguard your privacy rights and give you remedies in the unlikely event of a misuse of your personal information.
If you would like further information, see How to Contact Us below. We will not otherwise transfer your personal data outside of the EEA, the UK or Switzerland, or to any organization (or subordinate bodies) governed by public international law or which is set up under any agreement between two or more countries.
How Long Your Personal Information Will Be Kept
We will retain all non-client or customer personal information until you let us know you would like for us to delete it or unsubscribe from our email contacts, which you are free to do at any time. However, if you make a purchase from our Website, we will hold personal data in our files for six years as advised by the IRS.
This does not apply to information from patients of Grace Regenerative Orthopedics. We will hold patient health information in our files as required by applicable law and until at least one (1) year after any relevant statute of limitation on professional liability has run.
How We Protect Your Information: Data Security and Information Storage
We employ commercially reasonable methods to ensure the security of the information you provide to us and the information we collect automatically. This includes using standard security protocols and working only with reputable third-party vendors. We limit access to your personal information to those who have a genuine business need to know it. Those processing your information will do so only in an authorized manner and are subject to a duty of confidentiality.
If we collect sensitive personal information (such as credit card data), that information is encrypted and transmitted to us in a secure way. Customers can verify this by looking for a closed lock icon at the bottom of their web browser or looking for “https” at the beginning of the address of the web page.
However, please note that unfortunately no data transmission over the Internet or any wireless network can be guaranteed to be 100% secure. As a result, while we strive to protect your personal information, we cannot guarantee the security of your personal information transmitted to our Website. You acknowledge that (a) there are security and privacy limitations of the Internet which are beyond our control; (b) the security, integrity, and privacy of any and all information and data exchanged between you and us through this Website cannot be guaranteed; and (c) any such information and data may be viewed or tampered within transit by a third party. Any transmission of personal information is at your own risk. We are not responsible for circumvention of any privacy settings or security measures contained on the Website.
We will notify you and any applicable authorities of a suspected data security breach where we are legally required to do so.
Please note that any comments or information that you post on the Website, including Grace Regenerative Orthopedics’s social media pages, become public, and third parties may use your information. We are not responsible for any unauthorized uses by third parties in such context. You disclose such information at your own risk.
The HIPAA Privacy Rule
The U.S. Department of Health and Human Services provides: “The HIPAA Privacy Rule establishes national standards to protect individuals’ medical records and other personal health information and applies to health plans, health care clearinghouses, and those health care providers that conduct certain health care transactions electronically. The Rule requires appropriate safeguards to protect the privacy of personal health information, and sets limits and conditions on the uses and disclosures that may be made of such information without patient authorization. The Rule also gives patients certain rights over their health information, including rights to examine and obtain a copy of their health records, and to request corrections.”
You acknowledge that our operation of the Website does not constitute the practice of medicine, and specifically does not create a doctor-patient relationship between you and any doctor at Grace Regenerative Orthopedics. The information provided on the Website is for informational purposes only.
Notwithstanding the fact that the Website does not create a doctor-patient relationship between you and any doctor at Grace Regenerative Orthopedics, our preservation of any personal health information we receive shall be HIPAA compliant if you schedule an appointment to become a patient of Grace Regenerative Orthopedics.
Passwords for Patients to Access Patient Portal
As a patient of Grace Regenerative Orthopedics, in order to access the patient portal, you will create a unique password. You are responsible for maintaining the confidentiality of the password and your patient portal account and are responsible for all activities (whether by you or by others) that occur under your password or account.
To protect your health information, please do not share your password with anyone. If you share your password with another person, we cannot and will not be liable for any loss or damage arising from your failure to protect your password. If you share your password with anyone, they may be able to obtain access to your personal health information at your own risk.
Passwords to Access Purchased Products and Services
To use certain features of our Website, you may be issued a unique or group username and password, which you will receive through your registration and/or purchase process. You are responsible for maintaining the confidentiality of the password and account, and are responsible for all activities (whether by you or by others) that occur under your password or account.
You are not permitted to share your username and/or password with anyone. If you share your username and/or password with another person, we reserve the right to immediately terminate your access to the Website, program, product or service. We cannot and will not be liable for any loss or damage arising from your failure to protect your password or account information. You are responsible for activities that take place using your password(s) and within your account. If you share your password(s) with anyone, they may be able to obtain access to your personal information at your own risk.
You agree to notify Grace Regenerative Orthopedics immediately of any unauthorized use of your password or account or any other breach of security, and to ensure that you exit from your account at the end of each session.
By using this Website, you agree to enter true and accurate information as part of the registration, purchase process and otherwise. If you enter a false email address, or other false or inaccurate information, we have the right to immediately inactivate your account or block your participation in any feature delivered on or through this Website.
We will use our best efforts to keep your password(s) private and will not otherwise share your password(s) without your consent, except as necessary when the law requires it or in the good faith belief that such action is necessary, particularly when disclosure is necessary to identify, contact or bring legal action against someone who may be causing injury to others or interfering with our rights or property.
We do not control these third parties’ tracking technologies or how they may be used. If you have any questions, you should contact the responsible provider directly.
Third-Party Links and Online Supplement Dispensary
We abide by Facebook’s Data Use Restrictions.
Your Rights: Accessing, Correcting and Deleting Your Information
As noted above, if you want to unsubscribe from receiving e-mails from Grace Regenerative Orthopedics, you may do so at any time. Each e-mail from us includes instructions for unsubscribing from these e-mail communications.
You may send us an e-mail to email@example.com in order request access to, correct or delete any personal information that you have provided to us.
Please note that we may retain some or all of the information you submit for backups, archiving, prevention of fraud and abuse, analytics, satisfaction of legal obligations, or where we otherwise reasonably believe that we have a legitimate reason to do so.
You may also decline to share certain personal information with us, in which case we may not be able to provide you with some of the features and functionality of our services.
If you place an order through the Website, we will maintain your order information for our records unless and until you ask us to delete this information. We are required to keep some basic information about our customers including transaction data for tax and legal purposes and therefore there is some information that cannot be deleted.
Visitors’ GDPR Rights
If you are located within the European Union, you are entitled to certain information and have certain rights under the General Data Protection Regulation. Those rights include:
We hope that we can resolve any question or concern you raise about our use of your information.
If you are covered by the General Data Protection Regulation, you may lodge a complaint with a supervisory authority, in particular in the European Union (or European Economic Area) state where you work, normally live, or where any alleged infringement of data protection laws occurred.
For further information on each of those rights, including the circumstances in which they apply, see the Guidance from the UK Information Commissioner’s Office (ICO) on individuals’ rights under the General Data Protection Regulation, available at:
We require only the information that is reasonably required to enter into a contract with you. We will not require you to provide consent for any unnecessary processing as a condition of entering into a contract with us.
If you would like to exercise any of those rights, please:
Simply enter your name and email in the form below to get started on the path to health and recovery with our complimentary ebook