ADVANCED EYE CARE
PROFESSIONALS
BOOK NOW

Privacy Policy

Protecting Your Personal and Health Information
BOOK NOW

Introduction

Effective Date: 9 April 2026 Last Updated: 10 September 2025

Advanced Eye Care Professionals is committed to protecting your privacy and maintaining the confidentiality of your personal and health information. This Privacy Policy explains how we collect, use, protect, and share information about you in accordance with federal and state privacy laws, including the Health Insurance Portability and Accountability Act (HIPAA).

This policy applies to all information collected through our website, patient portal, office visits, and other interactions with our practice. By using our services or website, you agree to the practices described in this Privacy Policy.

Information We Collect

Personal Information

Contact Information:

  • Name, address, phone number, and email address
  • Emergency contact information
  • Insurance information and policy details
  • Payment and billing information

Demographic Information:

  • Date of birth and age
  • Gender and preferred pronouns
  • Employment information (when relevant to care)
  • Preferred language and communication methods

Health Information

Medical Records:

  • Medical history and current health conditions
  • Vision and eye health information
  • Prescription information and treatment records
  • Diagnostic test results and imaging

Treatment Information:

  • Services received and treatment plans
  • Medication records and allergies
  • Progress notes and follow-up care
  • Referral information and care coordination

Website and Digital Information

Usage Information:

  • Website pages visited and time spent
  • Device information and browser type
  • IP address and general location data
  • Search terms and referring websites

Cookies and Tracking:

  • Session cookies for website functionality
  • Analytics cookies for website improvement
  • Preference cookies for user experience
  • Marketing cookies (with consent)

How We Use Your Information

Healthcare Services

Patient Care:

  • Providing comprehensive eye care services
  • Developing and implementing treatment plans
  • Coordinating care with other healthcare providers
  • Monitoring treatment progress and outcomes

Administrative Functions:

  • Scheduling appointments and managing calendars
  • Processing insurance claims and billing
  • Managing patient communications and follow-up
  • Maintaining accurate medical records

Practice Operations

Quality Improvement:

  • Analyzing treatment outcomes and effectiveness
  • Improving patient safety and care quality
  • Training staff and maintaining competency
  • Evaluating and upgrading practice systems

Legal and Compliance:

  • Meeting regulatory and licensing requirements
  • Responding to legal requests and investigations
  • Maintaining required documentation and records
  • Ensuring HIPAA and privacy compliance

Communication and Marketing

Patient Communication:

  • Appointment reminders and health information
  • Test results and treatment updates
  • Educational materials and health tips
  • Practice news and updates

Marketing Communications (with consent):

  • Newsletter subscriptions and email updates
  • Promotional offers and special events
  • Health awareness campaigns and information
  • Patient satisfaction surveys and feedback

Information Sharing and Disclosure

Permitted Uses and Disclosures

Healthcare Operations:

  • Insurance companies for claims processing
  • Other healthcare providers for coordinated care
  • Business associates providing services to our practice
  • Quality assurance and accreditation organizations

Legal Requirements:

  • Government agencies, as required by law
  • Public health authorities for disease reporting
  • Law enforcemen,t when legally required
  • Courts and legal proceeding,s when subpoenaed

Your Authorization Required

Optional Disclosures:

  • Family members and personal representatives
  • Marketing communications and promotional materials
  • Research studies and clinical trials
  • Fundraising activities and charitable communications

Never Without Permission:

  • Employers (except for work-related eye injuries)
  • Insurance companies for non-claim purposes
  • Marketing companies or third-party advertisers
  • Social media platforms or public forums

Website Privacy and Security

Effective Date: 9 April 2026 Last Updated: 10 September 2025

Data Collection and Cookies

Website Functionality: Our website uses cookies and similar technologies to provide essential functionality, including appointment scheduling, patient portal access, and website navigation. These cookies are necessary for the website to function properly.

Analytics and Improvement: We use analytics tools to understand how visitors use our website and to improve user experience. This information is aggregated and does not identify individual users.

Marketing and Preferences: With your consent, we may use cookies for marketing purposes and to personalize your website experience. You can control these preferences through your browser settings.

Third-Party Services

Payment Processing: Our online payment portal uses secure, encrypted processing services that meet PCI DSS compliance standards. Payment information is processed securely and not stored on our servers.

Appointment Scheduling: Our online scheduling system is HIPAA-compliant and uses secure connections to protect your personal information during the scheduling process.

Communication Tools: Any texting, email, or communication tools we use are HIPAA-compliant and include appropriate safeguards for protecting your health information.

Information Security

Physical Safeguards

Facility Security:

  • Controlled access to patient records and information
  • Secure storage of physical files and documents
  • Locked filing systems and restricted areas
  • Security systems and surveillance monitoring

Equipment Protection:

  • Secure disposal of records and electronic media
  • Regular equipment maintenance and updates
  • Backup systems for data protection
  • Encrypted storage devices and systems

Technical Safeguards

Electronic Protection:

  • Encryption of electronic health records
  • Secure network connections and firewalls
  • Access controls and user authentication
  • Regular security updates and patches

Data Backup and Recovery:

  • Regular backups of patient information
  • Secure cloud storage with encryption
  • Disaster recovery plans and procedures
  • Business continuity planning

Administrative Safeguards

Staff Training:

  • Regular HIPAA and privacy training for all employees
  • Background checks and confidentiality agreements
  • Role-based access controls and permissions
  • Incident response procedures and reporting

Policy Management:

  • Written privacy policies and procedures
  • Regular policy reviews and updates
  • Compliance monitoring and auditing
  • Workforce security and access management

Your Privacy Rights

Access to Your Information

Right to Access: You have the right to inspect and obtain copies of your health information, including medical records, billing information, and other documents used to make decisions about your care.

Request Process: Submit written requests for access to your information. We will respond within 30 days and provide access in the format you request when reasonably feasible.

Amendment and Correction

Right to Amend: You may request amendments to your health information if you believe it is incorrect or incomplete. We will review your request and either make the amendment or explain why we cannot.

Documentation: All amendment requests must be in writing and include the reason for the requested change. We will document all amendment requests and responses.

Restriction Requests

Right to Request Restrictions: You may request restrictions on how we use or disclose your health information for treatment, payment, or healthcare operations. We are not required to agree to all restrictions, but will consider each request.

Out-of-Pocket Payments: If you pay out-of-pocket in full for services, you may request that we not disclose information about those services to your health plan.

Communication Preferences

Alternative Communications: You may request that we communicate with you about your health information in a specific way or at a specific location to protect your privacy.

Contact Methods: We can accommodate reasonable requests for alternative communication methods, including different phone numbers, email addresses, or mailing addresses.

Patient Portal and Online Services

Portal Security

Access Controls: Our patient portal uses secure login credentials and encryption to protect your health information. You are responsible for maintaining the confidentiality of your login information.

Automatic Logout: For your security, the patient portal will automatically log you out after a period of inactivity. Always log out completely when using shared or public computers.

Online Communications

Secure Messaging: Communications through our patient portal are encrypted and secure. However, regular email is not secure and should not be used for sensitive health information.

Test Results: Test results and health information available through the patient portal are encrypted and accessible only with your secure login credentials.

Children's Privacy

Minors’ Information

Parental Rights: Parents or legal guardians have the right to access their minor children’s health information and make decisions about their healthcare until the child reaches the age of majority.

Adolescent Privacy: In accordance with state and federal laws, certain health information for adolescents may be kept confidential from parents in specific circumstances, such as reproductive health or mental health services.

Family Communications

Information Sharing: We may share relevant health information with family members who are involved in the patient’s care or payment for care, unless the patient objects or it is otherwise inappropriate.

Contact Information and Complaints

Privacy Officer

Contact Information: Dr. Amy Rudser, Privacy Officer, Advanced Eye Care Professionals, 17799 Kenwood Trail
Lakeville, Minnesota 55044 Phone: (952)-898-4088 Email: info@visionsourcelakeville.com

Filing Complaints

Internal Complaints: If you believe your privacy rights have been violated, you may file a complaint with our Privacy Officer. All complaints will be investigated promptly and confidentially.

External Complaints: You also have the right to file a complaint with the U.S. Department of Health and Human Services if you believe your privacy rights have been violated.

No Retaliation: We will not retaliate against you for filing a privacy complaint or for exercising any of your privacy rights.

Changes to This Privacy Policy

Policy Updates

Notification of Changes: We reserve the right to revise this Privacy Policy as needed. Material changes will be posted on our website and made available in our office. The effective date of the current policy is listed at the top of this document.

Retroactive Application: Changes to this Privacy Policy may apply to health information we already have about you, as well as information we receive in the future.

Acknowledgment

By continuing to use our services after policy changes are posted, you acknowledge and agree to the updated Privacy Policy terms and conditions.

Effective Date and Acknowledgment

Effective Date: 9 April 2026

By using our services, visiting our website, or providing us with your personal information, you acknowledge that you have read, understood, and agree to this Privacy Policy.

For questions about this Privacy Policy or to exercise your privacy rights, please contact our Privacy Officer using the information provided above.

Advanced Eye Care Professionals Dr. Amy Rudser, Minnesota Phone: (952)-898-4088 Email: info@visionsourcelakeville.com