PRIVACY POLICY

Roya Nikzad PhD Allergy & Acupuncture DBA Create Wellness (“Create Wellness”, “we,” “us,” or “our”) is committed to protecting your privacy and maintaining the confidentiality of your personal and health information. This Privacy Policy describes how we collect, use, share, and protect your information when you visit our website at www.createwellnesslajolla.com, use our services, or interact with us.

By using our website or services, you agree to the terms of this Privacy Policy. Please read it carefully to understand our practices regarding your information.

CCPA/CPRA NOTICE AT COLLECTION

Notice at Collection of Personal Information

Create Wellness collects personal information from you when you interact with our website, book appointments, subscribe to newsletters, or purchase products and services. Under the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA), we are required to inform you at or before the point of collection about the categories of information we collect and how we use it.

Categories of Personal Information We Collect

  • Identifiers (e.g., name, email, phone number, mailing address, date of birth)
  • Health information (e.g., medical history, treatment details, laboratory results)
  • Financial information (e.g., billing and payment details)
  • Internet activity (e.g., IP address, browser type, pages visited)
  • Commercial information (e.g., purchase history, service preferences)

Purposes for Collection

We use this information to:

  • Provide healthcare services and treatment
  • Schedule and manage appointments
  • Process payments and billing
  • Communicate with you (e.g., appointment reminders, newsletters)
  • Improve and personalize our website and services
  • Comply with legal and regulatory requirements

We do not sell your personal information.

INFORMATION WE COLLECT

Through Our Booking System

We use Charm EHR, a third-party practice management platform, which collects:

  • First and Last Name
  • Date of birth
  • Mailing address
  • Email address
  • Phone number

Newsletter Subscriptions

When you subscribe to our newsletter, we collect:

  • Email address
  • Name (optional)

Health Information During Care

During consultations and treatment, we collect:

  • Medical history and current health conditions
  • Symptoms and treatment responses
  • Laboratory test results and diagnostic information
  • Treatment plans and progress notes
  • Insurance information for billing purposes

Automatically Collected Information

Information about your computer hardware and software may be automatically collected when you visit our website. This information can include:

  • IP address
  • Browser type and version
  • Domain names and access times
  • Referring website addresses
  • Pages visited and time spent on site
  • Device type and operating system

This information is used for the operation of our website, to maintain quality of service, and to provide general statistics regarding website usage.

E-Commerce and Payment Information

If you purchase products or services from us, we collect:

  • Billing and credit card information
  • Shipping address
  • Transaction history

This information is used solely to complete purchase transactions and provide customer service.

Cookies and Tracking Technologies

Our website may use “cookies” and similar tracking technologies to help personalize your online experience. A cookie is a small text file placed on your device by a web page server. Cookies help us:

  • Remember your preferences and settings
  • Improve website functionality
  • Analyze website usage patterns
  • Provide customized content

You can accept or decline cookies through your browser settings. Most web browsers automatically accept cookies, but you can modify your browser to decline them if you prefer. If you decline cookies, you may not be able to fully experience all features of our website.

External Data Storage

We may store your data on servers provided by third-party hosting vendors and service providers with whom we have contracted, including but not limited to Charm EHR and our website hosting provider. All third-party vendors are required to maintain appropriate security measures and comply with applicable privacy laws.

HOW WE USE YOUR INFORMATION

We use your information for the following purposes:

Healthcare Services:

  • Providing wellness consultations and treatments
  • Developing personalized treatment plans
  • Managing appointments through our Charm EHR booking system
  • Coordinating care and follow-up treatments
  • Processing payments
  • Creating superbills and other health insurance related documents
  • Maintaining accurate medical records

Communication:

  • Sending appointment confirmations and reminders
  • Providing treatment updates and test results
  • Responding to your inquiries
  • Sending newsletters and educational health information (with your consent)
  • Sending promotional offers, announcements, and updates about our services and clinic (with your consent)

Website Personalization and Analytics:

  • Delivering customized content based on your interests and behavior
  • Analyzing website usage to improve our services
  • Tracking user behavior within our website to determine popular services
  • Personalizing your online experience

Legal and Operational:

  • Complying with healthcare regulations and legal requirements
  • Maintaining patient safety and quality of care
  • Professional record-keeping requirements

HOW WE SHARE YOUR INFORMATION

We may share your information only in the following limited circumstances:

Healthcare Operations:

  • With other healthcare providers involved in your care (with your written authorization)
  • With laboratories for testing purposes
  • With insurance companies for coverage verification and claims processing, if applicable

Service Providers:

  • Charm EHR (our practice management platform) for appointment booking and record keeping
  • Payment processors for billing and e-commerce transactions
  • Email service providers for newsletter delivery and communications
  • Website hosting providers and IT support services
  • Third-party vendors who help perform statistical analysis or provide customer support

All third parties are prohibited from using your personal information except to provide services to us, and they are required to maintain the confidentiality of your information.

Legal Requirements:

  • When required by law, court order, or regulatory authorities
  • In emergency situations to protect your health and safety
  • To comply with HIPAA and other healthcare privacy regulations

We will never:

  • Sell your personal or health information to third parties
  • Share your information with third parties for their marketing purposes without your explicit consent
  • Use your information for advertising purposes outside of our own communications

PROTECTED HEALTH INFORMATION (HIPAA)

Create Wellness complies with the Health Insurance Portability and Accountability Act (HIPAA) and California state privacy laws. Your protected health information receives additional protections, and you will receive a separate HIPAA Notice of Privacy Practices that explains your specific rights regarding your health information.

EMAIL COMMUNICATIONS AND OPT-OUT PROCEDURES

From time to time, we may contact you via text, email, or through your patient portal for the purpose of providing:

  • Appointment confirmations and reminders
  • Treatment updates and health information
  • Promotional offers and announcements (with your consent)
  • Educational newsletters and health tips (with your consent)
  • Surveys and feedback requests
  • General communications about our services

To improve our services, we may receive notifications when you open an email from us or click on links within our emails.

Unsubscribing from Marketing Communications:

If you would like to stop receiving marketing or promotional communications via email from Create Wellness, you may opt out by:

  • Clicking the “UNSUBSCRIBE” link at the bottom of the marketing email
  • Contacting us directly by phone or email using the information in the “Contact Us” section below or on our website

Please note that even if you opt out of marketing communications, we may still send you important service-related communications such as appointment confirmations, treatment information, and other communications related to your healthcare.

CALIFORNIA CONSUMER PRIVACY RIGHTS

If you are a California resident, you have the right to:

  • Know what personal information we collect, use, disclose, and sell about you
  • Delete personal information we have collected from you (subject to certain exceptions)
  • Opt-out of the sale of your personal information (we do not sell personal information)
  • Non-discrimination for exercising your privacy rights
  • Request specific pieces of personal information we have collected about you
  • Correct inaccurate personal information we maintain about you

To exercise these rights, contact us at hello@createwellnesslajolla.com or call (858) 202-0322. We will verify your identity before processing your request and respond within the timeframes required by law.

LINKS TO OTHER WEBSITES

Our website may contain links to other sites. Please be aware that we are not responsible for the content or privacy practices of other websites. We encourage you to read the privacy statements of any other site that collects personally identifiable information. This Privacy Policy applies only to information collected by our website.

YOUR RIGHTS AND CHOICES

You have the following rights regarding your information:

Communication Preferences:

  • Unsubscribe from newsletters at any time using the link in our emails
  • Request to stop appointment reminders
  • Choose your preferred method of communication

Access and Correction:

  • Request access to your medical records
  • Request corrections to inaccurate information
  • Obtain copies of your health information

Deletion:

  • Request deletion of newsletter subscription information
  • Request deletion of certain personal information (subject to medical record retention requirements)

Restriction:

  • Request limitations on how we use or share your health information

To exercise these rights, please contact us using the information in the “Contact Us” section below.

DATA SECURITY

We implement appropriate administrative, physical, and technical safeguards to protect your personal and health information, including:

  • Secure data transmission and storage
  • Limited access to information on a need-to-know basis
  • Regular security updates and monitoring
  • HIPAA-compliant practices and procedures

Our third-party service providers are also required to maintain appropriate security measures and comply with applicable privacy laws.

DATA BREACH NOTIFICATION

In the event of a data breach involving your personal information, we will notify you in accordance with applicable law requirements. For breaches involving protected health information, we follow HIPAA breach notification requirements as outlined in our separate HIPAA Notice of Privacy Practices.

DATA RETENTION

We retain your information as follows:

  • Medical records: As required by California law and professional standards (typically 7-10 years after last treatment)
  • Newsletter subscriptions: Until you unsubscribe
  • Appointment booking information: As long as necessary for healthcare operations and legal requirements
  • Website analytics data: Up to 24 months
  • Payment information: As required by law and accounting practices

CHILDREN’S PRIVACY

We do not knowingly collect personal information from children under 13 through our website without parental consent. When providing healthcare services to minors, we collect health information through parents or legal guardians in accordance with HIPAA and applicable state laws. If you are under 18, your parent or guardian must provide consent for treatment and information collection.

CHANGES TO THIS PRIVACY POLICY

Create Wellness reserves the right to change this Privacy Policy from time to time. We may update our Privacy Policy periodically to reflect changes in our privacy practices, applicable laws, and industry best practices. Any changes will become effective when we post the revised Privacy Policy on our website, unless a later effective date is stated. If we make material changes to this Privacy Policy, we will provide you with additional notice as required by law. Your continued use of our website and/or services after such modifications will constitute your acknowledgment of the modified Privacy Policy and agreement to abide by that Policy.

You are responsible for periodically reviewing this Privacy Policy to check for any updates.

CONTACT US

If you have any questions, concerns, complaints or suggestions regarding our Privacy Policy, you may contact us at:

Roya Nikzad PhD Allergy & Acupuncture DBA Create Wellness
5151 Shoreham Pl, Suite 120, San Diego, CA 92122
Phone: (858) 202-0322
Email: hello@createwellnesslajolla.com

Because email communications are not always secure, please do not include credit card or other sensitive information in your emails to us.

Last Updated: September 16, 2025

Skip to content