Mirza Aesthetics™ is a registered trademark of ALLIED MEDICAL AND DIAGNOSITIC SERVICES LLC (“ALLIED MEDICAL”). ALLIED MEDICAL respects every individual’s rights to privacy. The company managing Mirza Aesthetics™ complies with the necessity of open and frank communication and the collection of personal and sensitive personal data in order to administer to the needs of Mirza Aesthetics™ and its activity, and the corresponding necessity to maintain confidentiality and ensure that information is adequately protected.  ALLIED MEDICAL highly values confidentiality.

Various countries have enacted data protection laws to ensure their citizen’s rights to privacy. As far as it has depended on, and to the extent possible, ALLIED MEDICAL has respected privacy rights and maintaining confidentiality, even before the enactment of such data protection laws. Therefore, ALLIED MEDICAL dba Mirza Aesthetics™ will continue to protect information disclosed to it in harmony with its longstanding practice, now recorded in this policy, and in accordance with Federal law and HIPAA regulations.

• SCOPE OF APPLICATION
• DATA PROTECTION
• THE HEALTH PORTABILITY AND ACCOUNTABILITY ACT OF 1996
• RIGHTS OF THE DATA SUBJECT
• RIGHT OF APPEAL

Scope of Application

This policy applies to the entire company of ALLIED MEDICAL as represented by medical offices located along the eastern seaboard of the United States of America, NA.

Data Protection

ALLIED MEDICAL handles all personal data in accordance with the following principles:

• Personal data will be processed in a fair and lawful manner.
• Personal data will be collected, processed, and used only to the extent necessary to fulfill the business purposes of ALLIED MEDICAL and/or Mirza Aesthetis™.
• Personal data will be accurate and kept up to date. Any error will be corrected as soon as possible after ALLIED MEDICAL becomes aware of it.
• Personal data will be kept only for as long as it is necessary for the legitimate purpose(s) of business and as necessary by Federal law and HIPAA regulations.
• Due consideration will be given to respect the rights of data subjects.

Appropriate technical and organizational measures will be taken to prevent unauthorized or unlawful disclosure of personal data. All computer-held personal data is held on password-protected computers, to which only authorized users are granted access. Offices are locked after office hours and only authorized staff may gain entry.

Personal data will not be transferred between offices unless necessary to accomplish the business of ALLIED MEDICAL, to which all patients have consented by virtue of their signature on the waiver of liability.

The Health Insurance Portability and Accountability Act of 1996

The HIPAA Privacy Rule (“The Rule”) establishes national standards to protect individuals’ medical records and other personal health information and applies to health plans, health care clearinghouses, and those health care providers that conduct certain health care transactions electronically.  The Rule requires appropriate safeguards to protect the privacy of personal health information and sets limits and conditions on the uses and disclosures that may be made of such information with and without patient authorization. The Rule also gives patients rights over their health information, including rights to examine and obtain a copy of their health records and to request corrections.

Personally-identifiably sensitive and confidential information, including but not limited to, medical records, doctor’s notes, dates of service/visit, products and services administered/carried out, and date of birth are not shared without your prior written authorization. For more information or to obtain a copy of your records, please email legal@mirzaaesthetics.com.

Rights of the Data Subject

A data subject’s right to the protection of personal and sensitive personal data and to the correction or deletion of personal and sensitive personal data is to be granted according to the practice of ALLIED MEDICAL as set forth in this policy.

Whomsoever makes a request according to this section must provide sufficient evidence of his identity, and sufficient cause for deletion of his records in accordance with Federal law and HIPAA regulations.

If a data subject requests access to, correction of, or deletion of personal data or sensitive personal data about himself, ALLIED MEDICAL will fairly consider granting the request by balancing the interests of the individual in gaining access or correcting or deleting data against the legitimate interests of the company, including whether granting the request would endanger the rights of ALLIED MEDICAL, according to the United States Constitution.

Right of Appeal

If a person believes that his rights have been infringed, upon he can appeal to ALLIED MEDICAL by means of a written personal letter. The letter must be sent within two weeks of the action that forms the basis of the appeal to legal@mirzaaesthetics.com. Wherein an appointed representative of ALLIED MEDICAL will examine the case in question under the laws and jurisdiction of the state of New Jersey, U.S.A and under the Federal laws of the United States of America.