Chrome Aesthetics Privacy Policy

Welcome to the Chrome Aesthetics Privacy Policy. Chrome Aesthetics respects your privacy and is committed to safeguarding your personal information. This policy explains how we collect, use, store, and protect your personal data when you visit our website or interact with our services.

Please read this Privacy Policy carefully to understand your rights and how we protect your information.

1. Important Information and Who We Are

Purpose of This Privacy Policy

This policy describes how Chrome Aesthetics collects and processes your personal information when you:

  • Visit our website

  • Submit online forms

  • Book appointments

  • Purchase a product or service

  • Engage with our marketing or communication channels

This website is not intended for children, and we do not knowingly collect information from individuals under 18 years of age.

Controller

Between You and Me dba Chrome Aesthetics is the controller responsible for your personal information (referred to as “we”, “us” or “our” in this privacy policy).

Contact Details

If you have questions about this policy or wish to exercise your privacy rights, please contact:

  • Barbara Franklin

  • Email: [email protected]

  • Phone: (505) 897-5065

  • Address: 3613 NM-528 Suite H, Albuquerque, NM 87114

Changes to This Policy

We may update this privacy policy from time to time. The latest version will always be available on our website.

Third-Party Links

Our website may include links to third-party websites. We are not responsible for their privacy practices, and we encourage you to review their privacy policies before providing any personal information.

2. The Data We Collect About You

“Personal data” means information that can identify an individual. Chrome Aesthetics may collect the following categories:

Identity Data

  • First and last name

  • Date of birth

  • Gender

Contact Data

  • Email address

  • Phone number

  • Mailing or billing address

Appointment & Medical Intake Data

(Collected only when medically necessary for treatments)

  • Medical history provided through intake forms

  • Treatment records

  • Allergies, medications, and other procedure-relevant information

Financial Data

Payment information (processed securely through third-party providers)

Transaction Data

Details of purchases, treatments, and services you have received

Technical Data

  • IP address

  • Browser type and version

  • Device information

  • Cookies and tracking technologies

Usage Data

How you interact with our website and online services

Marketing and Communications Data

Your preferences for receiving marketing messages

We also collect and use aggregated, anonymous data that does not identify any individual.

Sensitive Personal Data

Chrome Aesthetics may collect limited medical information required to safely provide aesthetic, health, and wellness services. This information is collected only with your consent and is used solely for treatment and compliance with medical guidelines.

3. How We Collect Your Personal Data

We collect information through:

Direct Interactions

You may provide information by:

  • Filling out online forms

  • Booking services

  • Completing medical intake paperwork

  • Calling or emailing us

  • Purchasing products or services

Automated Technologies

We use cookies, analytics tools, and similar technologies to collect Technical and Usage Data.

Third Parties

We may receive information from:

  • Payment processors (e.g., Stripe, Square)

  • Analytics providers (e.g., Google Analytics)

  • Advertising networks (e.g., Meta/Facebook Ads)

4. How We Use Your Personal Data

We use your personal data only when legally allowed, including:

We Use Your Data To:

  • Register you as a client

  • Schedule and manage appointments

  • Provide treatments and wellness services

  • Process payments and manage billing

  • Communicate about your appointments, updates, or inquiries

  • Send marketing communications (only with consent or existing customer relationships)

  • Improve our website, services, and client experience

  • Comply with legal or regulatory obligations

Marketing

You may receive marketing messages if:

  • You opted in

  • You previously received services from us

You may opt out at any time by clicking “unsubscribe” or contacting us.

Cookies

Cookies help us:

  • Personalize website experience

  • Improve site performance

  • Track analytics and advertising results

You may control cookies through your browser settings.

5. Disclosures of Your Personal Data

We may share your information with:

  • Service providers (payment processors, booking systems, email platforms)

  • Medical professionals involved in your care

  • Marketing and analytics partners

  • Legal or regulatory authorities, when required

We never sell your personal information.

All partners are required to protect your data and use it only for the purpose provided.

6. International Transfers

Some service providers (e.g., analytics or hosting companies) may operate internationally. We ensure appropriate safeguards are in place to maintain the protections required under applicable law.

7. Data Security

We use technical and administrative safeguards to protect your information from unauthorized access, loss, or misuse.

Only authorized personnel with a legitimate business purpose may access your personal data.

8. Data Retention

We retain your personal data only for as long as necessary to:

  • Deliver services

  • Meet legal or regulatory obligations

  • Maintain treatment records

  • Resolve disputes

Medical and treatment information may be stored according to healthcare regulatory requirements.

Once the retention period expires, we securely delete or anonymize your information.

9. Your Privacy Rights

You may have the following rights, depending on your location:

  • Access your personal data

  • Correct inaccurate data

  • Request deletion of your personal information

  • Restrict processing

  • Object to marketing

  • Withdraw consent at any time

To exercise your rights, contact our Privacy Manager.

We may request information to confirm your identity before fulfilling your request.

10. HIPAA Notice of Privacy Practices

Last updated: March 3, 2026

This section explains how we may use and disclose your protected health information (PHI) and your rights under the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and related federal law.

Our Responsibilities

We are required by law to:

  • Maintain the privacy and security of your PHI.

  • Provide you with this Notice explaining our legal duties and privacy practices.

  • Follow the terms of this Notice currently in effect.

  • Notify you if a breach occurs that may have compromised the privacy or security of your PHI.

How We May Use and Disclose Your Health Information

The following categories describe the ways we may use and disclose your PHI. Not every use or disclosure is listed, but all permitted uses fall within these categories.

  • Treatment

    We may use and disclose your PHI to provide, coordinate, or manage your healthcare and related services. This may include sharing information with physicians, therapists, nurses, or other healthcare professionals involved in your care.

  • Payment

    We may use and disclose your PHI to bill and receive payment for services provided to you. This may include disclosures to insurance companies, health plans, or other payers.

  • Healthcare Operations

    We may use and disclose your PHI for healthcare operations, including quality assessment and improvement activities, training, licensing, accreditation, auditing, compliance, and business planning.

Uses and Disclosures Without Your Authorization

We may use or disclose your PHI without your authorization as required or permitted by law, including for:

  • Public health activities (such as reporting certain diseases or adverse events).

  • Health oversight activities (such as audits, investigations, inspections, and licensure).

  • Legal proceedings and law enforcement purposes, as permitted by law.

  • Compliance with workers’ compensation laws.

  • To prevent or lessen a serious threat to health or safety, consistent with applicable law.

Uses and Disclosures Requiring Authorization

We will obtain your written authorization before using or disclosing your PHI for purposes not described in this Notice, including:

  • Most uses and disclosures of psychotherapy notes.

  • Marketing purposes (where an authorization is required by law).

  • Sale of PHI.

You may revoke an authorization at any time by submitting a written request, except to the extent that we have already taken action based on your authorization.

Special Protections for Substance Use Disorder Records (42 C.F.R. Part 2)

Certain health information related to the treatment of Substance Use Disorders (SUD) is subject to additional federal confidentiality protections under 42 C.F.R. Part 2 .

If this practice creates, receives, or maintains records that identify an individual as having sought or received Substance Use Disorder treatment, those records are afforded heightened protections beyond standard HIPAA requirements. In general, such information may not be used or disclosed without the patient’s written consent, except as expressly permitted or required by law.

Federal law further prohibits the use or disclosure of Substance Use Disorder records in civil, criminal, administrative, or legislative proceedings against the patient, except as authorized by a court order or otherwise permitted under applicable regulations.

Patients have specific rights related to Substance Use Disorder records, including limitations on disclosures and the right to revoke certain authorizations, subject to applicable legal requirements.

These additional protections apply only to information covered by 42 C.F.R. Part 2 and do not necessarily apply to all health information maintained by this practice.

Your Rights Regarding Your Health Information

You have the right to:

  • Inspect and obtain a copy of your medical and billing records, and other PHI we maintain about you, as permitted by law.

  • Request a correction (amendment) to your PHI if you believe it is incorrect or incomplete, as permitted by law.

  • Request restrictions on certain uses and disclosures of your PHI (we are not required to agree to all requested restrictions, except where required by law).

  • Request confidential communications (for example, that we contact you at an alternative phone number or address).

  • Receive an accounting of disclosures of your PHI, as permitted by law.

  • Obtain a paper copy of this Notice at any time, even if you agreed to receive it electronically.

  • Be notified following a breach of unsecured PHI, as required by law.

Requests must typically be submitted in writing. We may deny certain requests as permitted or required by law.

Complaints

If you believe your privacy rights have been violated, you may file a complaint with us or with the Secretary of the U.S. Department of Health and Human Services. To file a complaint with us, contact Barbara Franklin at the address or phone number above. You will not be penalized for filing a complaint.

SEND US A MESSAGE

Have questions or want to book a consultation? Send us a message, and our team at Chrome Aesthetics will get back to you.

CONTACT US

(505) 897-5065

Albuquerque, NM 87114

Northwest, 3613 NM-528 suite h, Albuquerque, NM 87114, USA

Office Hours

Monday to Friday - 9:00 AM to 6:00 PM

Saturday - 9:00 AM to 2:00 PM

Sunday - Closed

Northwest, 3613 NM-528 suite h, Albuquerque, NM 87114, USA

CONTACT US

(505) 897-5065

Albuquerque, NM 87114

Chrome Aesthetics logo

© 2026 All Rights Reserved. Terms of Use and Privacy Policy