At Dripology, protecting your personal and health information is as important as the care we deliver in the treatment room. We follow strict safeguards across every touchpoint — from booking your appointment to storing your records — so you can trust us with both your body and your data.
HIPAA Compliance
All client records, treatment history, and health information are handled in accordance with the Health Insurance Portability and Accountability Act (HIPAA). Every member of our team is trained on HIPAA protocols, and access to protected health information (PHI) is strictly limited to authorized personnel directly involved in your care.
How We Protect Your Information
- Encrypted storage. Client records, intake forms, and treatment notes are stored in secure, encrypted systems with controlled access.
- Secure transmission. Any information shared between your device and our website is protected by industry-standard SSL/TLS encryption.
- Access controls. Only authorized team members with a legitimate need can view your information, and access is logged and auditable.
- Vetted third-party partners. We work with trusted, compliant partners for payment processing, SMS communications, scheduling, and electronic medical records. All partners are contractually bound to maintain confidentiality and data security.
- Physical safeguards. Our Santa Monica and New York City locations follow strict protocols for the handling, storage, and disposal of any physical records.
Payment Security
Dripology does not store your credit card or banking details on our own servers. All payments are processed through PCI-DSS compliant third-party processors that use tokenization and encryption to protect your financial information.
Website Security
Our websites are monitored for unauthorized access, vulnerabilities, and malicious activity. We use modern firewalls, regular security updates, and automated scanning to keep our digital properties safe. If you notice anything suspicious, please report it to [email protected] immediately.
Your Control Over Your Data
You have the right to:
- Access your personal and health information on file
- Request corrections to any inaccurate or outdated information
- Request deletion of your data, subject to legal and medical record retention requirements
- Opt out of marketing communications at any time
To exercise any of these rights, email [email protected] or call the location where you receive care.
Reporting a Concern
If you believe your information may have been compromised, or if you have any questions about how we protect your data, please contact us right away:
- Email: [email protected]
- Santa Monica: +1 (424) 255-4144
- New York City: +1 (646) 480-2891
Related Policies
Dripology is committed to meeting or exceeding all applicable federal, state, and local regulations governing patient privacy and data security. This page is updated as our safeguards evolve.