This Privacy Policy describes how Enhanced Health PLLC dba Little Steps Pediatric House Calls (“we” or “us”) collects, uses, and shares your personal and protected health information when you use our services and website [website URL] and any of our subdomains (the “Website”).

PERSONAL INFORMATION WE COLLECT
When you visit the Site, we may collect certain information about your device, including information about your web browser, IP address, time zone, and some of the cookies that are installed on your device.
Additionally, as you browse the Site, we collect information about the individual web pages or products that you view, what websites or search terms referred you to the Site, and information about how you interact with the Site. We refer to this automatically-collected information as “Browsing Information”.

We collect Browsing Information using the following technologies:
– “Cookies” are data files that are placed on your device or computer and often include an anonymous unique identifier. For more information about cookies, and how to disable cookies, visit http://www.allaboutcookies.org
– “Log files” track actions occurring on the Site, and collect data including your IP address, browser type, Internet service provider, referring/exit pages, and date/time stamps.
– “Web beacons”, “tags”, and “pixels” are electronic files used to record information about how you browse the Site.
Additionally when you make a purchase for services or attempt to make a purchase through the Site, we collect certain information from you, including your name, billing address, shipping address, payment information (including credit card numbers, email address, and phone number). We refer to this information as “Purchase Information”.
When we talk about “Your Personal Information” in this Privacy Policy, we are talking both about Browsing Information and Purchase Information.

HOW DO WE USE YOUR PERSONAL INFORMATION?
We use the Purchase Information that we collect generally to fulfill any orders placed through the Site (including processing your payment information, arranging for shipping, and providing you with invoices and/or order confirmations).

Topics:

• Personal information we collect

• How we use your personal information

• How we share your personal information

• How we store your data

• Retention of Patient Identification on File

• Email marketing

• Behavioral advertising

• Your data protection rights

• Third party websites

• Changes

• Contact Us

OUR LEGAL RESPONSIBILITIES

We are required by law to provide you with this notice. It explains how we may use and disclose protected health information about you and describes your rights and our obligations regarding the use and disclosure of that information. We are committed to maintaining the privacy of protected health information and providing you with notice of our legal duties and privacy practices.

We have the right to change these policies at any time. If we change our privacy policies, we will notify you immediately. This policy is in effect unless otherwise stated, and any changes will apply to all your current and past health information. You may request a copy of our notice at any time by contacting us at the information provided below.

Personal Information We Collect

When you visit the Website, we automatically collect certain information about your device, including your web browser, IP address, time zone, and some cookies installed on your device. We also collect information about the web pages or products you view, websites or search terms that referred you, and how you interact with the Website. This is referred to as “Device Information.”

Technologies Used to Collect Device Information:

• Cookies: Data files placed on your device or computer, often including an anonymous unique identifier. For more information about cookies and how to disable them, visit All About Cookies (http://www.allaboutcookies.org).

• Log Files: Track actions on the Website and collect data such as IP address, browser type, Internet service provider, referring/exit pages, and date/time stamps.

• Web Beacons, Tags, and Pixels: Electronic files used to record information about how you browse the Website.

Usage of Device Information:

• Functionality: Recognize you on our website and recall your previously selected preferences, such as language and location.

• Advertising: Collect information about your visit, content viewed, links followed, and details about your browser, device, and IP address. We may share limited aspects of this data with third parties for advertising purposes.

• Affiliate Marketing: Track which affiliate referred you for commission purposes if you purchase from us.

You can set your browser to not accept cookies, and the above website explains how to remove cookies. Some website features may not function if cookies are disabled. We do not alter our Website’s data collection and use practices when we see a Do Not Track signal from your browser.

We also collect data you provide directly, referred to as “Provided Information,” when you:

• Register online or place an order

• Complete a customer survey or provide feedback

• Provide your email for access to a free resource

• Sign up for our newsletter

• Submit an intake or application form for services or programs

Provided Information May Include:

• Personal identification information (name, email, phone, etc.)

• Billing information (billing address, payment information, etc.)

• Business information (if applicable)

How We Use Your Personal Information

We use Provided Information to fulfill orders, process payments, deliver products, and provide invoices and confirmations. Additionally, to:

• Communicate with you

• Screen for potential risk or fraud

• Provide information or advertising related to our products or services, in line with your preferences

Device Information helps us screen for potential risk and fraud (particularly IP addresses) and improve and optimize our Website, including generating analytics and assessing marketing campaign success. We also use Device Information to track affiliate referrals.

How We Share Your Personal Information

We share your Personal Information with third parties to help us use it, as described above. For example, we use Google Analytics to understand how visitors use the Website. You can read more about Google’s use of your information here (https://www.google.com/intl/en/policies/privacy/) and opt-out here (https://tools.google.com/dlpage/gaoptout).

Types of Third Parties We Share Information With:

• Payment processors

• Email management and distribution providers

• Security and fraud prevention services

• Data aggregation and analytics services

• Affiliate marketing tracking services

• Client management systems

We may also share your Personal Information to comply with laws, respond to subpoenas, or protect our rights.

Data Storage

We process and store your data using the following providers:

• [List the software/websites used for data storage,UENI, website host, UENI and Google email provider,Stripe payment processor, Acuity Scheduling]

Visit their websites for server location information. We use commercially reasonable security measures to protect against unauthorized access or alterations. However, no network or transmission is 100% secure, so you submit your information at your own risk. We will maintain your Personal Information for our records unless you request deletion.

HIPAA Policy: Retention of Patient Identification on File

To ensure the secure retention and protection of patient identification in compliance with HIPAA. Applies to all staff handling patient identification information. Patient identification information will be collected, stored, and used only for legitimate healthcare purposes while ensuring privacy and security in compliance with HIPAA.

Procedures:

Collection and Use:

1. Collect only necessary information with patient consent.

2. Use information solely for treatment, payment, and operations.

2. Storage and Access:

1. Store electronic data securely with encryption and access controls.

2. Keep physical records in locked, restricted-access areas.

3. Limit access to authorized personnel only.

3. Disclosure:

1. Disclose information only with patient consent or as legally required.

2. Document all disclosures as per HIPAA guidelines.

4. Security and Compliance:

1. Conduct regular training and audits.

2. Implement security measures to prevent unauthorized access.

5. Breach Notification:

1. Follow breach notification procedures promptly if a breach occurs.

Email Marketing

By making a purchase, downloading a resource, or opting in, you agree to receive emails from us, including newsletters, updates, and promotions. Ensure our email addresses are not blocked. You can unsubscribe at any time, but you may miss out on information and updates.

Behavioral Advertising

We use your Personal Information for targeted ads or marketing communications. For more on targeted advertising, visit the NAI educational page (http://www.networkadvertising.org/understanding-online-advertising/how-does-it-work).

Opt-out links:

• Meta (https://accountscenter.facebook.com/ads)

• Google (https://www.google.com/settings/ads/anonymous)

• Bing (https://advertise.bingads.microsoft.com/en-us/resources/policies/personalized-ads)

• TikTok ttps://support.tiktok.com/en/account-and-privacy/personalized-ads-and-data/personalization-and-data) Additional opt-outs via the Digital Advertising Alliance (http://optout.aboutads.info/).

Your Data Protection Rights

If you are a European resident, you have rights regarding access, correction, deletion, restriction, objection, and data portability. Contact us to exercise these rights. Your information will be transferred outside Europe, including to Canada and the United States.

Third Party Websites

Our privacy policy applies only to our website. We are not responsible for the privacy practices or policies of third-party sites linked to or from our site. Review their privacy statements and terms of use.

Changes

We may update this privacy policy to reflect changes in our practices or for legal reasons. The “Last updated” date indicates the latest revision. Changes are effective immediately upon publication on our Website.

MINORS The Site is not intended for individuals under the age of 18.

Compliance with Illinois Privacy Laws

We adhere to applicable Illinois privacy laws, including the Illinois Personal Information Protection Act, ensuring the protection and confidentiality of your personal information.

How We May Use or Disclose Your Protected Health Information

• Treatment: We may use and disclose your protected health information to provide treatment, including sharing with other medical providers, trainees, therapists, medical staff, and office staff involved in your care.

• Payment: Your protected health information may be used to obtain payment from an insurance company or another third party.

• Health Care Operations: We may use or disclose your protected health information for operations such as training, quality improvement, and appointment reminders.

• Marketing Activities: We may use your protected health information for marketing, such as sending you information about products or services that might interest you.

• Legal Requirements: We will disclose protected health information as required by law, including for public health risks, health oversight activities, and law enforcement.

Your Rights Regarding Your Protected Health Information

• Access to Medical Records: You have the right to access and receive copies of your protected health information.

• Amendment: You may request an amendment to your protected health information if you believe it is incorrect or incomplete.

• Accounting of Disclosures: You have the right to receive a list of disclosures of your protected health information.

• Restriction Requests: You can request restrictions on the use or disclosure of your protected health information.

• Confidential Communication: You can request that we communicate with you in a certain way or at a certain location.

• Paper Copy of This Notice: You may request a hard copy of this privacy policy.

Please contact us at the provided email address for any requests or questions regarding your protected health information.

Contact Us

For more information about our privacy practices or to exercise your data protection rights,

CONTACT US
For more information about our privacy practices, if you have questions, or if you would like to make a complaint, please contact us by e‑mail at the email address provided in the Contact section of the Site

Complaints

Contact us with complaints about our use of Personal Information. EU residents can lodge complaints with local data protection regulators. California residents can contact the Complaint Assistance Unit of the California Department of Consumer Affairs.