top of page

Privacy Policy

A legal disclaimer

Lavish Lotus Beauty & Wellness is committed to protecting the privacy and security of your personal and health-related information. This privacy policy explains how we collect, share, use, and protect your information in compliance with applicable Ohio laws and federal regulations

Privacy Policy - the basics

This policy applies to all personal information collected or maintained by us in connection with our health spa services, including but not limited to consultations, treatments, billing, or wellness programs. It covers information collected in person, via telephone, website, or by other means.

Information we collect

We may collect the following categories of information:

  • Personal identification information  : name, DOB, address, phone, email

  • Health information: Medical history, treatment information, allergies, physician referrals, or other health conditions needed to safely provide the spa services. 

  • Payment information: credit card or other payment details, insurance information if applicable

  • Appointment and Treatment records: dates of services, nots, photographs(if needed for treatment)

  • Communications: correspondences via email, phone, or other media; feedback; testimonials (if consented)

  • Online & technical Data: IP address, device IDs, cookies, usage patterns (if you use website or book online)

Legal Basis for Processing

(if applicable)To perform the spa services you request (treatment etc.).

  • To comply with legal and regulatory obligations (e.g. health and safety, recordkeeping).

  • For payment processing and billing.

  • With your consent for certain uses (like marketing, photos).Our legitimate interest (e.g. improving services, maintaining security).

 

 How We Use Your Information

  • We use your information for purposes such as:

  • To provide and manage spa treatments, consultations, and wellness services.

  • To communicate with you (appointment reminders, treatment plan updates).

  • To process payments.

  • To maintain records for health, safety, and legal compliance.

  • To improve our services through feedback, analytics, and quality control.

With your consent, for marketing: newsletters, promotions, or special offers.

 

Disclosure of Information

  • We may share your information:

  • With third‐party service providers (e.g. payment processors, booking platforms) who need the information to perform services on our behalf.

  • With other health or wellness professionals involved in your care (if you consent or as necessary for your treatment).

  • To comply with legal obligations (e.g. public health reporting, law enforcement, subpoenas).In emergencies (e.g. to protect health or safety).

  • With your explicit consent for other disclosures (e.g. testimonial photos, marketing with identifiable data).

 

 Data Storage & Security

  • We maintain physical, administrative, and technical safeguards designed to protect your information from unauthorized access, disclosure, alteration, or destruction.

  • Access to your data is limited to those employees or contractors who need it for their work.

  • We retain information only as long as it is needed to fulfill its purpose or as required by law.

 Rights You Have

You may have rights under Ohio state law, and federal law if applicable, including:

  • Right to access the information we hold about you.

  • Right to correct or amend inaccurate or incomplete information.

  • Right to request restrictions on certain uses or disclosures.

  • Right to request confidential communications (e.g. prefer alternate method or location).

  • Right to withdraw consent, where our use is based on consent.

  • Right to know about any breach affecting your information.

 HIPAA & Special Considerations (if applicable)

If Lavish Lotus beauty & Wellness is a covered entity under the Health Insurance Portability and Accountability Act (HIPAA), or handles “Protected Health Information” (PHI), additional federal requirements apply:

We will provide a Notice of Privacy Practices describing your rights under HIPAA.

We will only use or disclose PHI as permitted under HIPAA (for treatment, payment, operations, with consent/authorization when required).

We will safeguard PHI in compliance with HIPAA’s security, confidentiality, and breach notification rules.

 

Ohio State Laws & Regulatory Compliance

Under Ohio law, certain health, diagnosis, treatment, and payment information must be kept confidential unless disclosure is allowed by law.

We comply with the Ohio Data Protection Act (SB 220) regarding personal information, which requires reasonable cybersecurity practices to protect personal information. If required, we comply with Ohio regulations regarding business practices and consumer privacy concerning health service providers.

 

Cookies & Online Tracking

(if applicable)If you use our website:

  • We may use cookies or similar tracking technologies to enhance user experience, monitor website usage, and for analytics.

  • You may disable cookies via your browser, though some features may not function correctly.

  • We will provide notices or obtain consent if required under law for certain non‐essential cookies.

 

Marketing & Communications

  • We will not send you marketing communications without your consent, unless otherwise permitted by law.

  • You may opt‐out of marketing emails or messages at any time via a link in the message or by contacting us.

 

Children’s Information

  • If you are under [18] (or applicable age under state law), we require parental or guardian consent for collection or use of personal or health information.

  • Our website or services are not directed toward children unless explicitly stated.

 

Changes to This Privacy Policy

           We may update this policy from time to time. When changes are made, we will revise the “Effective Date” and notify clients (for example via our website or email). We encourage you to review this policy periodically.

 

Contact Information

If you have any questions about this policy, to request access, correction, or to make a complaint Lavish Lotus Beauty & Wellness

Address: 987 e ash st. Piqua Ohio 45356

Phone: 937.541.6604

Email: Lavishlotus24@gmail.com

 

If you believe your privacy rights have been violated, you may contact:

The Ohio Attorney General’s Office; If HIPAA applies, the U.S. Department of Health & Human Services, Office for Civil Rights.

bottom of page