Privacy Policy for Vasile Functional Health

Last Updated: March 12, 2025

This Privacy Policy outlines the policies and procedures of Vasile Functional Health ("We", "Us", or "Our") regarding the collection, use, and disclosure of Your information when You use Our Service. It also informs You about Your privacy rights and how the law protects You. By using the Service, You agree to the collection and use of information in accordance with this Privacy Policy.

1. Interpretation and Definitions

1.1 Interpretation

Words with capitalized initial letters have specific meanings defined under the following conditions. These definitions apply regardless of whether the words appear in singular or plural form.

1.2 Definitions

For the purposes of this Privacy Policy:

* Account: A unique account created for You to access Our Service or parts of Our Service.

* Affiliate: An entity that controls, is controlled by, or is under common control with a party, where "control" means ownership of 50% or more of the shares, equity interest, or other securities entitled to vote for the election of directors or other managing authority.

* Business (for CCPA/CPRA): Refers to Healthy Doc Inc., the legal entity that collects Consumers' personal information and determines the purposes and means of processing such information, or on behalf of which such information is collected, and that does business in the State of California.

* CCPA/CPRA: Refers to the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act of 2020 (CPRA).

* Company: Healthy Doc Inc., 14409 Lakeshore Rd, Kent, NY 14477. For GDPR purposes, the Company is the Data Controller.

* Consumer (for CCPA/CPRA): A natural person who is a California resident.

* Cookies: Small files placed on Your computer, mobile device, or any other device by a website, containing details of Your browsing history.

* Country: New York, United States.

* Data Controller (for GDPR): The Company as the legal person which alone or jointly with others determines the purposes and means of processing Personal Data.

* Device: Any device that can access the Service, such as a computer, cellphone, or digital tablet.

* Do Not Track (DNT): A concept promoted by US regulatory authorities for allowing internet users to control the tracking of their online activities across websites.

* GDPR: EU General Data Protection Regulation.

* Personal Data: Any information that relates to an identified or identifiable individual. For GDPR, it includes name, identification number, location data, online identifier, or factors specific to physical, physiological, genetic, mental, economic, cultural, or social identity. For CCPA/CPRA, it includes any information that identifies, relates to, describes, or can be linked to You.

* Service: The Website.

* Service Provider: Any natural or legal person who processes data on behalf of the Company, including third-party companies or individuals employed to facilitate the Service. For GDPR, Service Providers are considered Data Processors.

* Usage Data: Data collected automatically, either generated by the use of the Service or from the Service infrastructure.

* Website: Vasile Functional Health, accessible from [https://www.vasilefunctionalhealth.com](https://www.vasilefunctionalhealth.com).

* You: The individual accessing or using the Service, or the company or other legal entity on behalf of which such individual is accessing or using the Service. Under GDPR, You can be referred to as the Data Subject or User.

2. Collecting and Using Your Personal Data

2.1 Types of Data Collected

* Personal Data: While using Our Service, We may ask You to provide personally identifiable information, including but not limited to:

* Email address

* First name and last name

* Phone number

* Usage Data: Collected automatically when using the Service, including:

* Device's Internet Protocol address (IP address)

* Browser type and version

* Pages of Our Service visited

* Time and date of visit

* Time spent on pages

* Unique device identifiers

* Other diagnostic data

* Information collected when accessing the Service through a mobile device (e.g., mobile device type, unique ID, operating system, mobile Internet browser).

* Tracking Technologies and Cookies: We use Cookies and similar tracking technologies to track activity on Our Service and store certain information. These include:

* Cookies or Browser Cookies: Small files placed on Your Device. You can refuse Cookies in Your browser settings, but this may limit access to parts of Our Service.

* Web Beacons: Small electronic files that permit the Company to count users who have visited pages or opened emails.

* Types of Cookies:

* Necessary/Essential Cookies (Session Cookies): Essential for providing services and features of the Website.

* Cookies Policy/Notice Acceptance Cookies (Persistent Cookies): Identify if users have accepted the use of cookies.

* Functionality Cookies (Persistent Cookies): Remember choices You make on the Website.

3. Use of Your Personal Data

The Company may use Personal Data for the following purposes:

* To provide and maintain Our Service.

* To manage Your Account.

* For the performance of a contract.

* To contact You via email, telephone, SMS, or other electronic communication.

* To provide You with news, special offers, and general information.

* To manage Your requests.

* For business transfers.

* For other purposes, such as data analysis and improving Our Service.

4. Sharing Your Personal Data

WE DO NOT SELL YOUR DATA

We do not sell, trade, or otherwise transfer to outside parties your personally identifiable information for marketing or promotional purposes. Your information will never be sold, exchanged, transferred, or given to any other company for any reason whatsoever, without your consent, other than for the express purpose of delivering the purchased product or service requested.

LIMITED SHARING WITH SERVICE PROVIDERS

We may share your information with trusted third parties who assist us in operating our website, conducting our business, processing payments, or servicing you, so long as those parties agree to keep this information confidential.

These service providers include:

Payment processors (Stripe, PayPal, and Intuit) - solely for the purpose of processing your payments

Email service providers - solely for sending communications you have opted into

Website hosting services - solely for the purpose of hosting our website and its content

SMS message aggregators and providers - solely for delivering text messages you have opted into receiving

Course delivery platforms - solely for the purpose of delivering digital course content you have purchased

Coaching session schedulers - solely for the purpose of scheduling coaching sessions you have enrolled in

Certification verification systems - solely for the purpose of issuing and verifying certifications you have earned

HighLevel CRM - for client relationship management (see special provisions below)

Important Note About SMS Data: All text messaging originator opt-in data and consent information will not be shared with any third parties, excluding aggregators and providers of the Text Message services necessary to deliver the SMS service. Your mobile information will not be shared with third parties or affiliates for marketing or promotional purposes.

SMS/TEXT MESSAGE PRIVACY/Text Message Policy

If you have opted in to receive SMS/text messages from us, we are committed to protecting your privacy regarding these communications:

No Data Sharing: All text messaging originator opt-in data and consent information will not be shared with any third parties, excluding the aggregators and providers necessary to deliver the SMS service.

Marketing Restrictions: Your mobile information will not be shared with any third parties or affiliates for marketing or promotional purposes.

Limited Use: Your SMS opt-in data will only be used for the specific purposes you have consented to, such as appointment reminders, event notifications, receipts, customer service updates, and promotional messages you've explicitly opted into.

Opt-Out Control: You can stop receiving text messages at any time by texting "STOP" to our shortcode. Upon doing so, we will confirm your opt-out status via SMS and will cease sending you text messages.

We may share Your personal information in the following situations:

* With Service Providers: To monitor and analyze Service use, for payment processing, and to contact You.

* For Business Transfers: In connection with mergers, sales of Company assets, financing, or acquisitions.

* With Other Users: When You share information in public areas.

* With Your Consent: For any other purpose with Your consent.

5. Retention of Your Personal Data

We will retain Your Personal Data only as long as necessary for the purposes set out in this Privacy Policy, to comply with legal obligations, resolve disputes, and enforce agreements. Usage Data is generally retained for a shorter period, except for security or legal reasons.

6. Transfer of Your Personal Data

Your information may be transferred to and maintained on computers located outside Your jurisdiction where data protection laws may differ. Your consent to this Privacy Policy and submission of information represents Your agreement to that transfer.

7. Delete Your Personal Data

You have the right to delete or request assistance in deleting Your Personal Data. You can update, amend, or delete information in Your Account settings or by contacting Us. We may need to retain certain information for legal reasons.

8. Disclosure of Your Personal Data

* Business Transactions: Your Personal Data may be transferred in mergers, acquisitions, or asset sales.

* Law Enforcement: We may disclose Personal Data if required by law or valid requests by public authorities.

* Other Legal Requirements: To comply with legal obligations, protect rights or property, prevent wrongdoing, protect personal safety, and protect against legal liability.

9. Security of Your Personal Data

While We strive to protect Your Personal Data, no method of transmission or storage is 100% secure.

10. Detailed Information on Processing Personal Data

* Service Providers: May have access to Your Personal Data.

* Email Marketing: You may opt-out of receiving marketing communications.

* Payments: We use third-party payment processors and do not store Your payment card details.

11. GDPR Privacy

* Legal Basis for Processing: We process Personal Data based on consent, contract performance, legal obligations, vital interests, public interests, or legitimate interests.

* Your Rights under GDPR: Access, correction, objection, erasure, transfer, and withdrawal of consent.

* Exercising GDPR Rights: Contact Us to exercise Your rights.

12. CCPA/CPRA Privacy Notice

* Applies to California residents.

* Categories of Personal Information Collected: Identifiers, Personal information categories listed in the California Customer Records statute, Commercial information, Internet or other similar network activity, Sensitive personal information.

* Sources of Personal Information: Directly from You, indirectly from You, automatically from You, from Service Providers.

* Use of Personal Information: To operate Our Service, provide support, fulfill requests, comply with law, and for internal purposes.

* Disclosure of Personal Information: To Service Providers, payment processors, affiliates, business partners, and third-party vendors.

* Sale of Personal Information: We may allow Service Providers to use Your information, which may be deemed a sale under CCPA/CPRA.

* Your Rights under CCPA/CPRA: Notice, access, opt-out, correction,