Effective Date: 1/1/24
Last Updated: 5/1/25
I. Introduction
This Privacy Policy describes how Body Restore Naples (“Clinic,” “we,” “us,” or “our”) collects, uses, stores, and shares information about you when you access or use our website, bodyrestorenaples.com (the “Website”). Body Restore Naples is a clinic located in Naples, Florida.
We are committed to protecting your privacy and handling your personal information transparently and securely. This Policy outlines our practices concerning the information collected through the Website, including personal information and information collected automatically. It also describes your choices regarding use, access, and correction of your personal information.
This Privacy Policy applies solely to information collected through this Website. It does not apply to information collected offline or through other means, including information collected during the course of patient care, which is governed by our Health Insurance Portability and Accountability Act (HIPAA) Notice of Privacy Practices (NPP). Please refer to Section VI for more information regarding HIPAA and our NPP.
By using the Website, you agree to the collection, use, and disclosure of your information as described in this Privacy Policy. If you do not agree, please do not use the Website.
II. Information We Collect
We collect information about you directly from you and automatically through your use of our Website. Understanding the types of information collected is the first step towards transparency.
- A. Information You Provide Directly: We collect information that you voluntarily provide to us when you interact with the Website. This may include:
- Contact Information: Such as your full name, email address, phone number, and mailing address when you fill out contact forms, request appointments, or subscribe to newsletters.
- Communications: Records and copies of your correspondence (including email addresses) if you contact us.
- Other Information: Any other information you choose to provide through forms or interactive features on the Website.
- B. Information Collected Automatically: When you navigate through and interact with our Website, we may use automatic data collection technologies to collect certain information about your equipment, browsing actions, and patterns. This information helps us improve our Website and deliver a better service. This includes:
- Log Data: Information such as your Internet Protocol (IP) address, browser type, browser version, operating system, the pages of our Website that you visit, the time and date of your visit, the time spent on those pages, and other statistics. This data is often collected by web servers.
- Device Information: Information about the computer or mobile device you use to access our Website, such as the hardware model, operating system and version, unique device identifiers, and mobile network information.
- Usage Details: Details of your visits to our Website, including traffic data, location data (general, inferred from IP address), logs, and other communication data and the resources that you access and use on the Website.
- Cookies and Similar Technologies: We and our third-party partners (like Google Analytics and Taboola) use cookies, web beacons (pixels), and similar tracking technologies to collect information about your browsing activities over time and across different websites following your visit to our Website. This helps us understand user activity, personalize content, and deliver targeted advertising. See Section IV for more details on cookies and tracking technologies.
- C. Sensitive Information and Protected Health Information (PHI): We request that you do not send us, and you do not disclose, any sensitive personal information (e.g., social security numbers, information related to racial or ethnic origin, political opinions, religion or other beliefs, detailed health information, or criminal background) on or through the general contact forms or public areas of the Website. While Body Restore Naples is a healthcare provider subject to HIPAA, the standard contact forms on this public Website are generally not the appropriate or secure method for transmitting Protected Health Information (PHI) as defined under HIPAA. Submitting PHI through unencrypted website forms or email may pose a security risk. For patient-related communications and inquiries involving PHI, please use designated secure patient portals (if applicable) or contact the Clinic directly via phone as outlined in our Notice of Privacy Practices.
III. How We Use Your Information
We use the information we collect for various purposes, consistent with the disclosures in this Privacy Policy and as permitted by law. These purposes include:
- A. Providing and Improving Services:
- To operate, maintain, and improve our Website and the services offered.
- To respond to your inquiries, comments, and questions, schedule appointments, and provide customer support.
- To personalize your experience on the Website.
- B. Communication:
- To send you administrative information, such as changes to our terms, conditions, and policies.
- To send you appointment reminders or information you have requested.
- To send you marketing communications (such as newsletters or information about our services) if you have opted-in to receive them. You may opt-out of receiving marketing emails at any time.
- C. Analytics and Performance:
- To understand how users interact with our Website using tools like Google Analytics. This helps us analyze usage patterns, monitor the effectiveness of our content, improve site functionality, and understand user needs.
- D. Advertising:
- To work with third-party advertising partners like Taboola to display advertisements on other websites or platforms after you have visited our Website (retargeting) or to display relevant content recommendations. This involves using cookies and tracking technologies to gather information about your browsing activities.
- E. Security and Compliance:
- To protect the security and integrity of our Website and business operations.
- To comply with applicable laws, regulations, legal processes (like subpoenas), and governmental requests.
- To enforce our terms and conditions and protect our rights, privacy, safety, or property, and/or that of you or others.
- To meet requirements under laws like the Florida Information Protection Act (FIPA) regarding data security.
IV. Cookies, Analytics, and Advertising
This section provides detailed information about how we and our third-party partners use cookies and similar technologies, and your choices regarding these technologies. Using tools like Google Analytics and Taboola necessitates clear disclosure about cookie usage and data collection practices.
- A. Cookies Explained: Cookies are small text files stored on your device (computer, tablet, mobile phone) when you visit certain websites. They are widely used to make websites work, or work more efficiently, as well as to provide information to the owners of the site. Cookies can be “session” cookies (which expire once you close your web browser) or “persistent” cookies (which stay on your device for a set period or until you delete them). We may use both types.
- B. Google Analytics: We use Google Analytics, a web analytics service provided by Google LLC (“Google”), to help us understand how users engage with our Website.
- Data Collection: Google Analytics uses first-party cookies (e.g.,
_ga,_gid) to collect information about user interactions, such as the time of visit, pages visited, time spent on pages, and the website visited before navigating to our Website. Google Analytics may also collect IP addresses, but we may have configured it to anonymize IP addresses where possible. Google acts as a data processor for the data collected through Google Analytics, processing it according to our instructions. Google prohibits sending Personally Identifiable Information (PII) to Google Analytics. - Purpose: The information generated by Google Analytics helps us compile reports on website activity and improve the user experience.
- Google’s Privacy Policy: For more information on how Google collects and uses data, visit Google’s Privacy Policy: https://policies.google.com/privacy.
- Opt-Out: You can prevent your data from being used by Google Analytics by installing the Google Analytics opt-out browser add-on, available at: https://tools.google.com/dlpage/gaoptout/.
- Data Collection: Google Analytics uses first-party cookies (e.g.,
- C. Taboola Advertising: We partner with Taboola, Inc. (“Taboola”) to provide sponsored content recommendations and advertisements that may be relevant to your interests, both on our Website and on other websites you visit.
- Data Collection: Taboola uses cookies, pixels, and other tracking technologies to collect information about your browsing behavior. This may include “Passive-Interaction Personal Data” such as your IP address, page URL, browser type (user agent string), device information, general location, and interactions with Taboola’s content recommendations. Taboola may collect this data passively as you browse pages where its code is implemented. Taboola may combine this information with data from other sources and third-party partners to build an advertising profile. Taboola acts as a Controller or Business for the data it collects for its advertising purposes.
- Purpose: This information is used to personalize the content and ads you see, measure ad performance, and provide reporting. This includes showing you ads for our services on other websites after you have visited ours (remarketing).
- Taboola’s Privacy Policy: For more details on Taboola’s data practices, please review the Taboola Privacy Policy: https://www.taboola.com/policies/privacy-policy.
- Opt-Out: You have several options to opt out of Taboola’s personalized advertising and data collection:
- Taboola Opt-Out Tools: Visit Taboola’s user choices page: https://www.taboola.com/policies/privacy-policy#user-choices-and-opting-out or use their Data Subject Access Request Portal: https://accessrequest.taboola.com/. Note that opting out via Taboola’s tools typically requires cookies to be enabled in your browser to recognize the opt-out preference, and the opt-out is specific to the browser and device you use.
- Industry Opt-Out Tools: You can also use industry-wide opt-out tools provided by the Network Advertising Initiative (NAI) at http://optout.networkadvertising.org/ or the Digital Advertising Alliance (DAA) at https://youradchoices.com/control or https://www.aboutads.info/choices.
- D. Cookie Management: Most web browsers allow you to control cookies through their settings preferences. You can set your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, some parts of our Website may not function properly.
- E. Cookie Details Table: The following table provides summary information about key cookies potentially used by our Website:
| Cookie Name (Example) | Provider | Purpose | Duration |
|---|---|---|---|
_ga, _gid | Google Analytics | Website analytics, user interaction tracking | Persistent (e.g., 2 years), Session |
trc_cookie_storage | Taboola | Advertising personalization, tracking | Persistent (e.g., 1 year) |
taboola_session_id | Taboola | Session tracking for advertising | Session |
| “ | Body Restore Naples | Website functionality (e.g., session mgmt) | Session/Persistent |
Export to Sheets
*Note: This table provides examples. The specific cookies, their names, and durations may vary. Please refer to the respective privacy policies of Google and Taboola for the most current details.*
The use of both Google Analytics and Taboola means that data related to your website visit is shared with these third parties for the specific purposes of website analysis and advertising delivery. Explicitly detailing both services, their data practices, and distinct opt-out mechanisms is essential for transparency and compliance with both legal requirements and the terms of service of these platforms.[1, 5, 10] Providing vague information or incorrect opt-out links would fail to meet these obligations.
V. Sharing and Disclosure of Information
We do not sell your personal information for monetary value. However, we may share your information with third parties under certain circumstances, as described below. This operational sharing is necessary to provide website functionality, analytics, and advertising services.
- A. Service Providers: We may share your information with third-party vendors, consultants, and other service providers who perform services on our behalf. These services may include website hosting, data analysis, email delivery, customer service, and marketing assistance.
- Google (for Analytics): We share information collected automatically (as described in Section IV.B) with Google to utilize Google Analytics services.
- Taboola (for Advertising): We share information collected automatically (as described in Section IV.C) with Taboola to facilitate personalized content recommendations and advertising. Taboola may act as an independent controller for the data it processes for advertising purposes.
- Other Providers: We may also share information with providers of website hosting, maintenance, and potentially secure communication platforms if used. These service providers are generally authorized to use your personal information only as necessary to provide the specific services to us. Where service providers handle Protected Health Information (PHI) on our behalf (e.g., a secure patient portal provider, HIPAA-compliant hosting for forms storing PHI), we ensure a Business Associate Agreement (BAA) is in place as required by HIPAA to protect that information.
- B. Legal Requirements and Safety: We may disclose your information if we believe in good faith that such disclosure is necessary to:
- Comply with a legal obligation, such as a law, regulation, court order, or subpoena.
- Respond to lawful requests from public authorities, including to meet national security or law enforcement requirements.
- Protect and defend the rights, property, or safety of Body Restore Naples, our patients, employees, or the public.
- Prevent or investigate possible wrongdoing in connection with the Website or our services.
- Comply with public health reporting requirements as permitted or required by law.
- C. Business Transfers: In the event that Body Restore Naples is involved in a merger, acquisition, financing due diligence, reorganization, bankruptcy, receivership, sale of all or a portion of our assets, or transition of service to another provider, your information may be sold or transferred as part of such a transaction, as permitted by law and/or contract. We will provide notice if your information becomes subject to a different privacy policy.
- D. With Your Consent: We may share your information with other third parties when we have your explicit consent to do so.
- E. No Sale of Personal Data: We explicitly state that we do not sell your personal information to third parties for monetary consideration. While the use of analytics and advertising tools like Google Analytics and Taboola involves sharing data with those partners for the specific operational purposes disclosed in this policy (website analytics, delivering relevant advertising), this is distinct from selling data to data brokers or other third parties for their independent commercial use. This clarification aims to reconcile the necessary data sharing for website functionality and advertising with the commitment not to engage in the sale of personal data as commonly understood.
VI. Health Information (HIPAA Compliance)
As a healthcare provider in Florida, Body Restore Naples is subject to the Health Insurance Portability and Accountability Act of 1996 (HIPAA), which governs the privacy and security of Protected Health Information (PHI).
- A. Applicability of HIPAA: HIPAA regulations apply to PHI, which is individually identifiable health information related to your past, present, or future physical or mental health or condition, the provision of health care to you, or the past, present, or future payment for the provision of health care.
- B. Website Data vs. Patient Records: This Privacy Policy primarily addresses information collected through your use of the public-facing areas of our Website (
bodyrestorenaples.com). The privacy and security of PHI collected during the course of your diagnosis and treatment as a patient of Body Restore Naples (including information potentially submitted through secure patient portals linked from this website, if applicable) are governed by our separate Notice of Privacy Practices (NPP). The NPP provides a detailed description of how we may use and disclose your PHI for treatment, payment, and healthcare operations, as well as for other purposes permitted or required by law. It also outlines your rights regarding your PHI under HIPAA. Differentiating the scope of this website policy from the formal NPP is crucial for clarity and compliance. - C. Accessing Our Notice of Privacy Practices (NPP): You can access our full Notice of Privacy Practices, which details your rights under HIPAA and our duties concerning your PHI, here: If the NPP is not available online, you may request a paper copy from our Clinic reception or by contacting us using the details in Section XII.
- D. Summary of HIPAA Rights: Our NPP provides detailed information on your rights under HIPAA, which include, but are not limited to:
- The right to inspect and obtain a copy of your PHI.
- The right to request amendments to your PHI if you believe it is incorrect or incomplete.
- The right to receive an accounting of certain disclosures of your PHI.
- The right to request restrictions on certain uses and disclosures of your PHI.
- The right to request confidential communications of your PHI.
- The right to receive a paper or electronic copy of our Notice of Privacy Practices. Please refer to the full NPP for complete details on these rights and how to exercise them.
VII. Data Security
We take the security of your information seriously and implement reasonable administrative, technical, and physical safeguards designed to protect the personal information we collect from loss, misuse, and unauthorized access, disclosure, alteration.
- A. Security Measures: Measures we may employ include, but are not limited to:
- Using Secure Sockets Layer (SSL) or Transport Layer Security (TLS) encryption for transmitting information submitted through certain forms on our Website.
- Implementing firewalls and access controls to restrict access to systems storing personal information.
- Utilizing secure hosting environments, particularly important given our status as a healthcare provider and the potential sensitivity of data.
- Regularly reviewing our security practices.
- B. Data Retention: We retain personal information collected through the Website for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law (e.g., for legal, accounting, or reporting requirements). For instance, HIPAA imposes specific retention requirements for certain records. We aim to securely delete or anonymize personal information when it is no longer needed for its collected purpose.
- C. Disclaimer: Despite our efforts, please be aware that no method of transmission over the Internet or method of electronic storage is 100% secure. Therefore, we cannot guarantee absolute security of your personal information. Any transmission of personal information is at your own risk.
VIII. Your Privacy Rights (Florida and Other Applicable Laws)
Depending on your location and applicable data protection laws, you may have certain rights regarding the personal information we hold about you.
- A. Rights Overview: We are committed to facilitating the exercise of your privacy rights as required by law.
- B. Florida Specific Considerations:
- Florida Information Protection Act (FIPA): FIPA requires entities that acquire, maintain, store, or use personal information of Florida residents to take reasonable measures to protect and secure that data. It defines “personal information” to include specific data elements like name combined with SSN, driver’s license number, financial account number, or certain medical information. FIPA also establishes procedures for notifying affected individuals in the event of a data breach involving this information. We implement security measures consistent with FIPA’s requirements.
- C. General User Rights: Subject to applicable law, you may have the following rights concerning your personal information collected through this Website:
- Right to Access/Know: The right to request confirmation of whether we process your personal information and to access details about the information collected, its sources, the purposes of processing, and the categories of third parties with whom it has been shared.
- Right to Delete: The right to request the deletion of your personal information that we have collected, subject to certain legal exceptions (e.g., information needed to complete a transaction, comply with a legal obligation, or necessary for security purposes).
- Right to Correct: The right to request correction of inaccurate personal information we maintain about you.
- Right to Opt-Out of Sale/Sharing: As stated in Section V.E, we do not sell your personal information for monetary value. If future regulations applicable to us define the use of certain advertising technologies (like those used by Taboola) as “sharing” for cross-context behavioral advertising, the opt-out mechanisms provided in Section IV.C (Taboola Opt-Out and Industry Opt-Out Tools) serve as your means to exercise such an opt-out right.
- Right to Non-Discrimination: The right not to be discriminated against for exercising any of your privacy rights.
- D. Exercising Your Rights: To exercise any of the rights described above that are applicable to you, please contact us using the information provided in Section XII (“Contact Us”). We will respond to your request consistent with applicable law. We may need to verify your identity before processing your request, which may require you to provide additional information.
- E. Universal Opt-Out Mechanisms (UOOMs): Some jurisdictions require businesses to honor browser-based opt-out preference signals, such as the Global Privacy Control (GPC). At this time,.
IX. Children’s Privacy
Our Website is not intended for or directed at individuals under the age of 18. Taboola’s terms also prohibit its use on properties directed to individuals under 18.
- A. Age Limitation: The Website is intended for adults aged 18 and over.
- B. No Knowing Collection: We do not knowingly collect personal information directly from children under the age of 18 without verifiable parental consent. Compliance with laws like the Children’s Online Privacy Protection Act (COPPA) regarding younger children is a priority.
- C. Action on Discovery: If we become aware that we have inadvertently collected personal information from a child under 18 without appropriate consent, we will take reasonable steps to delete such information from our records as soon as possible. If you believe we might have any information from or about a child under 18, please contact us using the details in Section XII.
X. International Data Transfers
- A. Data Storage Location: Body Restore Naples is located in the United States. Our Website servers are located in the United States, and all information collected through the Website is processed and stored primarily in the United States.
- B. Transfer Mechanism (If Applicable): If you are accessing the Website from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States, where our servers are located and our central database is operated. Data protection laws in the U.S. may differ from those in your country of residence. By using the Website, you consent to the transfer of your information to the U.S. If we transfer personal information to service providers located outside your jurisdiction, we will take steps to ensure that your information receives an adequate level of protection in compliance with applicable law.
XI. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.
- A. Right to Modify: We reserve the right to amend this Privacy Policy at any time.
- B. Notification of Changes: We will post any changes to this Privacy Policy on this page with an updated “Effective Date” or “Last Updated” date at the top. We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting the personal information we collect.
- C. Acceptance of Changes: Your continued use of the Website after any changes or revisions to this Privacy Policy shall indicate your agreement with the terms of such revised Privacy Policy.
XII. Contact Us
If you have any questions, comments, or concerns about this Privacy Policy, our data practices, or if you wish to exercise your privacy rights, please contact us using the following information :
Full Clinic Name: Body Restore Naples
Mailing Address:4760 Tamiami Trl N, Naples, FL 34103
Phone Number: 239-682-2869
For inquiries specifically related to HIPAA and your Protected Health Information (PHI), please refer to the contact information provided in our Notice of Privacy Practices (NPP) or use the general contact details above. Sources used in the report
