Last Updated: 07.07.2025
This Privacy Policy describes how All Solutions Consulting LLC, an Oklahoma entity doing business as Lift My Spa ("we", "us", or "our"), collects, uses, and protects personal information through our marketing, automation, and software services ("Services") provided to licensed medical spas and related businesses in the United States.
By using our website, platform, or services, you agree to the practices outlined in this Privacy Policy.
1. Information We Collect
We may collect the following types of information:
A. From Med Spa Clients (you):
Name, email address, phone number, business name, and business address
Billing and payment information
Login credentials and account preferences
Service usage data (e.g., page views, form submissions, campaign analytics)
B. From Your Customers (End Users):
When you use our platform to collect data from your own clients (e.g., for appointment scheduling, marketing, or review requests), we may process on your behalf:
Contact details (e.g., name, phone, email)
Booking and interaction history
Responses to forms, surveys, or intake flows
Marketing consent preferences
Note: We do not directly collect Protected Health Information (PHI), but PHI may be processed by our platform as configured by you. See Section 6: HIPAA Compliance.
2. How We Use Information
We use the information we collect to:
Provide, maintain, and improve our services
Customize your account and campaign settings
Process payments and deliver support
Analyze usage patterns and campaign effectiveness
Send you operational updates and marketing communications (with opt-out options)
We do not sell, rent, or share your personal data with third parties for their own marketing purposes.
3. Sharing of Information
We may share limited data with:
Trusted third-party providers that assist us in delivering services (e.g., CRM platforms, cloud hosting, SMS/email providers)
Legal or regulatory authorities, when required by law, subpoena, or government request
Authorized users within your account or organization
All vendors and subprocessors we engage are contractually required to maintain high standards of security, confidentiality, and data protection.
4. Your Rights & Choices
As a business client, you may:
Access or update your information at any time
Request deletion of personal data (subject to account status and legal data retention obligations)
Opt out of receiving marketing emails or SMS
Request a data export of your client profile
To make a request, email us at: 📧 [email protected]
5. Data Security
We implement commercially reasonable administrative, technical, and physical safeguards, including:
Encrypted storage and transmission (SSL/TLS)
Secure cloud infrastructure
Role-based access controls and user audit logs
You are responsible for maintaining the security of your passwords and account access credentials.
6. HIPAA Compliance (For Clients in Healthcare)
Lift My Spa is not a Covered Entity under HIPAA. However, we:
Use HIPAA-compliant vendors (e.g., SMS and CRM systems that offer Business Associate Agreements)
Provide tools, templates, and workflows designed to support HIPAA-compliant communication
Do not access, store, or use PHI unless configured by you, and only as necessary to provide platform functionality
You are solely responsible for complying with HIPAA, including:
Executing Business Associate Agreements (BAAs) with necessary vendors
Avoiding transmission of PHI unless proper safeguards are in place
Reviewing all automation and marketing workflows for HIPAA and state-level compliance
We recommend legal review of all patient-facing materials and can assist in identifying HIPAA-compatible tools.
7. Children’s Privacy
Our services are designed for licensed businesses and are not directed to children under 13. We do not knowingly collect or process data from minors.
8. Changes to this Privacy Policy
We may revise this Privacy Policy from time to time. If material changes are made, we will notify you via email or in-platform alerts. Your continued use of our services after an update constitutes acceptance of the revised policy.
9. Cookies & Tracking Technologies
We use cookies and similar technologies to:
Enable website functionality and security
Analyze usage patterns (e.g., via Google Analytics)
Deliver remarketing and ad performance tracking (e.g., via Meta Pixel)
These tools may collect:
Browser and device type
Pages visited and time on site
Referral sources and click-through behavior
IP address and approximate location (city/state level only)
9.1 Your Choices
You can control or delete cookies through your browser settings. You may also:
Opt out of behavioral ads via optout.aboutads.info
Use Google Analytics opt-out: tools.google.com/dlpage/gaoptout
Note: Disabling cookies may affect platform performance.
9.2 Third-Party Tools We May Use
Google Analytics
Meta (Facebook/Instagram) Pixel
Hotjar or Microsoft Clarity
Google Ads remarketing
HubSpot or GoHighLevel tracking scripts
These tools may use their own cookies under their privacy policies. Please review those directly if you interact with their tools through our site.
Contact Us
For privacy questions, data requests, or compliance inquiries, please contact us at:
📧 [email protected]