Privacy Policy

Effective Date: 12/10/2023
Last Updated: 4/15/2025

Hayy Medical PLLC (“we,” “our,” or “the Practice”) respects your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, use, store, and protect information obtained through our website and services.

By using our website, you consent to the data practices described in this statement.

1. What This Policy Covers

This policy applies to all personal information collected through our website, contact forms, appointment scheduling tools, and communications with our practice. This includes:

  • Basic contact information (name, email, phone, ZIP)

  • Intake form responses

  • Payment information (if submitted via online payment platform)

  • Non-identifying site usage data (browser, IP, cookies)

This policy does not replace our HIPAA Notice of Privacy Practices, which governs how we handle your protected health information (PHI) in the context of medical care.

2. Information We Collect

We may collect the following types of information:

  • Name, email address, phone number, and physical address

  • Information voluntarily submitted through forms (e.g., symptoms, health goals)

  • Device and browser data (IP address, cookies, access time, referral source)

  • Information provided through third-party services (e.g., Stripe, Google Analytics)

We do not knowingly collect personal data from individuals under the age of 18 without parental consent.

3. How We Use Your Information

We use the information collected to:

  • Schedule and manage consultations

  • Provide requested services or communications

  • Improve website functionality and user experience

  • Comply with applicable legal and medical regulations

We do not sell, rent, or lease your personal data to third parties.

4. HIPAA Compliance

Any medical or health-related information you submit as part of a licensed consultation is governed by HIPAA and our formal Notice of Privacy Practices. That policy outlines how your PHI is collected, stored, shared, and protected.

View our full HIPAA Notice here.

5. Cookies and Tracking

Our site may use cookies or tracking technologies to personalize content and analyze website usage. You can disable cookies in your browser settings.

6. Third-Party Tools

We may use secure third-party platforms for payment processing, appointment booking, email communication, or analytics. These vendors are required to maintain the confidentiality and security of your information.

7. International and State-Specific Rights (GDPR / CCPA)

If you are located in the EU or California, you may have the right to:

  • Access or request deletion of your data

  • Object to or restrict certain types of data processing

  • Request data portability

To exercise these rights, email us at [admin@malekmd.com].

8. Data Security

We take appropriate technical and administrative measures to protect your information. Sensitive data submitted through this website is encrypted and securely stored.

9. Data Retention

We retain your personal data only as long as necessary for legal, operational, or medical purposes. You may request deletion of your data where legally permitted.

10. Your Consent

By using our site, submitting forms, or engaging with Hayy Medical PLLC, you consent to this privacy policy and the use of your data as described.

11. Changes to This Policy

This Privacy Policy may be updated at any time. Any changes will be posted on this page with a new effective date. We encourage you to review it regularly.

12. Contact

If you have any questions about this policy or how your information is used, contact:

Hayy Medical PLLC
admin@malekmd.com