Last updated: April 5, 2026
Be Well LifeStyle Centers ("we," "us," or "our") is committed to protecting the privacy of our patients, website visitors, and users of our services. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website at bewelllifestylecenters.com, use our services, or interact with us at any of our locations (Birmingham, Berkley, and UWM).
1. Information We Collect
Personal Information
We collect personal information that you voluntarily provide to us, including but not limited to:
- Full name, date of birth, and gender
- Contact information (phone number, email address, mailing address)
- Emergency contact information
- Insurance information and policy details
- Payment and billing information (credit/debit card numbers, billing address)
- Government-issued identification when required for healthcare services
Health Information (Protected Under HIPAA)
As a healthcare provider, we collect and maintain Protected Health Information (PHI) including:
- Medical history, current symptoms, and health conditions
- Medications, supplements, and treatment preferences
- Treatment records, progress notes, and care plans
- Lab results, diagnostic information, and test results
- Health goals, pain levels, and wellness assessments
- BioSync health assessment data and AI-generated reports
Usage Data
When you visit our website, we may automatically collect certain information, including:
- IP address and browser type
- Pages visited, time spent, and navigation patterns
- Device information (operating system, screen resolution)
- Referring website or source
- Cookies and similar tracking technologies (see Section 11)
2. How We Use Your Information
We use the information we collect for the following purposes:
- Provide healthcare services: Deliver chiropractic care, wellness treatments, colon hydrotherapy, IV therapy, massage therapy, and other services
- Appointment scheduling: Book, confirm, remind, and manage your appointments across all locations
- Billing and payment processing: Process payments, manage patient balances, handle insurance claims, and send billing notifications
- Communication: Send appointment reminders, treatment follow-ups, account notifications, and respond to your inquiries
- Improve our services: Analyze usage patterns, gather feedback, and enhance patient experience
- Comply with legal obligations: Meet state and federal regulatory requirements, including HIPAA
- Marketing (with consent): Send wellness tips, new service announcements, and promotional offers
3. HIPAA Compliance
Be Well LifeStyle Centers is committed to protecting your health information in full compliance with the Health Insurance Portability and Accountability Act (HIPAA). We maintain administrative, physical, and technical safeguards to protect your PHI.
Permitted Uses and Disclosures
We may use or disclose your Protected Health Information for the following purposes without your written authorization:
- Treatment: Providing, coordinating, and managing your healthcare, including referrals and consultations with other healthcare providers
- Payment: Billing, collecting payment, and communicating with insurance companies regarding your coverage and claims
- Healthcare Operations: Quality improvement, staff training, compliance activities, and business management functions
- Legal Requirements: When required by federal, state, or local law, court order, or subpoena
- Public Health and Safety: Reporting as required by law to prevent serious threats to health or safety
All other uses and disclosures of your PHI require your written authorization, which you may revoke at any time.
4. SMS/Text Messaging
Important: No mobile information will be shared with third parties or affiliates for marketing or promotional purposes. All the above categories exclude text messaging originator opt-in data and consent; this information will not be shared with third parties.
When you opt in to receive text messages from Be Well LifeStyle Centers:
- Your mobile number and consent data are kept strictly confidential
- We will only use your number for the specific purposes you consented to (customer care, account information, and/or marketing)
- We will never sell or share your mobile information to third parties for marketing purposes
- SMS messages will never contain Protected Health Information (PHI)
- You can opt out at any time by replying STOP to any message
For complete SMS terms, please review our SMS Terms of Service.
5. Information Sharing
We do not sell, rent, or trade your personal information to third parties.
We may share your information only in the following circumstances:
- Healthcare providers: Other practitioners involved in your care, with your consent or as permitted by HIPAA
- Service providers: Trusted third-party companies that help us operate our business, including:
- Stripe — secure payment processing
- Twilio — SMS messaging and communication
- Supabase — secure database and patient data storage
- Netlify — website hosting
- Insurance companies: For processing claims and verifying coverage
- Legal requirements: When required by law, court order, government regulation, or to protect our rights and safety
- Business transfers: In connection with a merger, acquisition, or sale of assets, your information may be transferred as a business asset
All third-party service providers are contractually obligated to protect your information and are prohibited from using it for any purpose other than providing services to Be Well LifeStyle Centers.
6. Data Security
We implement comprehensive security measures to protect your personal and health information:
- Encryption: All data transmitted between your device and our servers is encrypted using TLS/SSL protocols
- Secure storage: Patient data is stored in HIPAA-compliant databases with encryption at rest
- Access controls: Role-based access ensures only authorized staff can view patient information
- Authentication: Multi-factor authentication and secure login systems protect staff and patient accounts
- Regular audits: We conduct periodic security assessments and vulnerability testing
- Staff training: All employees receive regular training on data privacy and HIPAA compliance
- Secure disposal: Records are securely destroyed when no longer needed, in compliance with retention requirements
While we strive to protect your information, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security but are committed to using commercially reasonable safeguards.
7. Data Retention
We retain your information as required by applicable healthcare regulations and professional standards:
- Medical records: Maintained for at least 7 years after your last visit, or longer as required by Michigan state law
- Billing records: Retained for the period required by tax and accounting regulations
- Minor patient records: Retained until the minor reaches the age of majority plus the applicable retention period
- Website usage data: Retained for up to 2 years for analytics purposes
- SMS consent records: Retained for the duration of your consent and as required for compliance
8. Your Rights
Under HIPAA and applicable state law, you have the following rights regarding your health information:
- Right to Access: Request copies of your health records and personal information we hold about you
- Right to Amend: Request corrections to inaccurate or incomplete health information in your records
- Right to an Accounting of Disclosures: Receive a list of instances where we disclosed your health information for purposes other than treatment, payment, or operations
- Right to Request Restrictions: Ask us to limit how we use or disclose your health information
- Right to Confidential Communications: Request that we communicate with you in a specific manner or at a specific location
- Right to Opt Out of Marketing: Unsubscribe from marketing communications at any time by replying STOP to texts, clicking unsubscribe in emails, or contacting us directly
- Right to File a Complaint: File a complaint with us or with the U.S. Department of Health and Human Services if you believe your privacy rights have been violated. You will not be retaliated against for filing a complaint.
To exercise any of these rights, please contact us using the information provided at the bottom of this policy.
9. Cookies and Tracking Technologies
Our website may use cookies and similar technologies to enhance your experience:
- Essential cookies: Required for basic website functionality, such as session management and authentication
- Analytics cookies: Help us understand how visitors use our website so we can improve the experience (e.g., Google Analytics)
- Preference cookies: Remember your settings and preferences for future visits
You can control cookie preferences through your browser settings. Disabling certain cookies may affect website functionality.
We do not use cookies to collect Protected Health Information.
10. Third-Party Services
We use the following third-party services to operate our business. Each has its own privacy policy governing the use of your information:
- Stripe (stripe.com/privacy) — Payment processing. Stripe is PCI-DSS compliant and handles all payment card data securely.
- Twilio (twilio.com/legal/privacy) — SMS messaging and communication services. Twilio processes messages on our behalf and does not use your data for its own marketing.
- Supabase (supabase.com/privacy) — Cloud database hosting for patient records and application data with encryption at rest and in transit.
- Netlify (netlify.com/privacy) — Website hosting and serverless function execution.
11. Children's Privacy
Our website and online services are not directed to children under the age of 13. We do not knowingly collect personal information from children under 13 without verifiable parental or guardian consent.
For patients who are minors (under 18), a parent or legal guardian must provide consent for the collection and use of the minor's personal and health information. Parents and guardians have the right to review, request deletion of, and refuse further collection of their child's information.
If you believe we have inadvertently collected information from a child under 13 without proper consent, please contact us immediately so we can take appropriate action.
12. Changes to This Policy
We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or other factors. When we make changes:
- The updated policy will be posted on this page with a new "Last updated" date
- For material changes, we may notify you via email or through a notice on our website
- Your continued use of our services after changes are posted constitutes your acceptance of the updated policy
We encourage you to review this Privacy Policy periodically.
13. Contact Us
For questions about this Privacy Policy, to exercise your privacy rights, or to file a complaint, please contact us:
You may also file a complaint with the U.S. Department of Health and Human Services Office for Civil Rights:
You will not be retaliated against for filing a complaint.