Effective Date: 4/15/2025
Updated as of: 4/15/2025Who We Are
Welcome to Magical Plastic Surgery (“we,” “us,” “our”). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, www.magicalplasticsurgery.com, and use our services. By accessing or using our website, you agree to the terms of this Privacy Policy. We reserve the right to make changes to this Policy at any given time. We advise you to frequently visit this page to make sure that you are up to date with the latest changes. This Policy applies to Magical Plastic Surgery, and it governs any and all data collected and used by us through this website.
This Privacy Policy does not apply to information collected through other means, such as by telephone or in person or by other third parties that are not part of this website. Please review our privacy practices below, email us or write to us at the address below if you have any questions.
Magical Plastic Surgery LLC
Attention: Privacy Requests
8809 Commodity Cir
Orlando, FL 32819
This Privacy Policy does not apply to information that would be considered “Protected Health Information” under the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”). Our use and disclosure of Protected Health Information is set forth in the Magical Plastic Surgery Notice of Privacy Practices, which is shared with patients of this facility at the time of care.
Information We Collect
When website visitors voluntarily leave comments on the website we collect the data shown in the comments form, and also the visitor’s IP address, operating system, and browser user agent string for spam detection and mitigation. In addition, voluntary information you disclose, such as your name, address, email address, phone number, billing and/or credit card information, etc. may be collected and used to offer you the services, products, and level of service necessary to deliver the products and services you request.
An anonymized string created from your email address (also called a hash) is provided to a Gravatar service to see if you are using it. The Gravatar service privacy policy is available from Automattic. We monitor and in certain cases moderate comments, and upon approval of your comment, your profile picture and comment will be visible to the public in the context of your comment.
Information Collected From Other Sources
We participate in targeted marketing campaigns meant to reach out to people that may have expressed an interest in products and services that we offer. We will on occasion collect limited data from public databases, marketing partners, and other outside sources. This is in order to enhance our ability to provide relevant marketing, promotional offers, and services to you. So that we can keep our records up-to-date, we may verify and obtain information about you from data clearing houses and other sources, such as public databases, marketing partners, affiliate programs, data providers, social media, and from other third parties. This information will usually include mailing addresses, job titles, email addresses, phone numbers, interest or service inquired about, Internet Protocol (IP) addresses, social media profiles, social media URLs, and custom profiles, for purposes of targeted advertising and event promotion.
Media
If you upload public images to the website, such as for your profile picture, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from public images on the website.
Why We Collect Information and Our Retention Periods
If you purchase, request services, or leave a comment on our website, you may opt-in to saving your name, email address, and other personally identifiable information and we save those in cookies. These are for your convenience so that you do not have to fill in your details when you visit again, go to place another order, leave another comment, etc. These cookies will last for one year.
If you visit our shopping cart login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you publish or edit a product review or blog post response, an additional cookie will be saved to your browser. This cookie includes no personal data and simply indicates the post ID of the product review, article, or blog post you authored or edited. It expires after 1 day.
Embedded Content from other Websites
Content on this site may include embedded material (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.
How We Use Your Data
Magical Plastic Surgery does not and will not in the future sell, rent, or lease your data or any of its customer lists and/or customer names to any third parties. You may opt-in/opt-out from receiving/not receiving content from us. The purpose for us to collect this data is so that we can provide you with the services you request. For example: If you request a password reset, your IP address will be included in the reset email and we utilize this information as well as other identifying information to verify your authenticity. Here are some additional purposes for us to collect your data:
- Providing Services: To schedule appointments, process payments, and deliver services.
- Improving User Experience: To understand how visitors interact with the website and enhance its functionality.
- Marketing and Promotions: To send newsletters, special offers, and updates about new services and contact you regarding a purchase or request or inquiry you made for a service/product.
- Compliance with Legal Obligations: To adhere to regulations such as HIPAA and CCPA.
- Security and Fraud Prevention: To protect against unauthorized access and ensure secure transactions.
- Customer Support: To respond to inquiries and provide assistance and fulfill any other legitimate business service, provide you with our services and/or products.
How Long We Retain Your Data
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize who posted the comment and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register on our website, create an account or profile, purchase from our shopping cart, or subscribe to our newsletter, we also store the personal information they provide in their user profile. All users can see, edit, or delete their own personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
Who We Share Your Data With
We do not sell, lease, rent or otherwise disclose the Personal Information collected from our website to third parties unless otherwise stated below or with your expressed consent.
- Healthcare Providers: Our surgeons and clinical staff and healthcare providers may have access to Personal Information for administrative and healthcare services. We may also use Personal Information to respond to and fulfill your orders and requests for information, products, or services.
- Authorized Representatives: If another individual is responsible for your care, managing your affairs on your behalf (for example, a parent managing the affairs for their child), as authorized by you or as a personal or legal representative under applicable law, that person can view all Personal Information about you. This includes your next of kin, spouse, partner, domestic partner, legal guardian, same-sex partner or civil union partner.
- Authorized Third-Party Suppliers: We transfer Personal Information to third-party service providers to perform tasks on our behalf and to assist us in providing our Services. For example, we use Stripe for credit card payment processing and invoicing and other providers such as CareCredit and Cherry for financing, billing, and/or payment processing. We make every commercially reasonable effort to only engage or interact with third-party service providers and partners that post a privacy policy governing their processing of Personal Information and require our service providers to maintain confidentiality and comply with applicable laws in the processing of Personal Information. For a list of our current third party service providers, please contact us.
- Others: We may disclose Personal Information about you if we have a good faith belief that disclosure of such information is helpful or reasonably necessary to: (i) comply with any applicable law, regulation, legal process or governmental request; (ii) enforce our terms of use, including investigations of potential violations thereof; (iii) detect, prevent, or otherwise address fraud or security issues; or (iv) protect against harm to our business or other parties’ rights, property or safety.
What Rights You Have Over Your Data
If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are required to keep for administrative, legal, or security purposes.
Information Security & Data Breaches
At Magical Plastic Surgery, we take information security and privacy concerns very seriously. While no website can guarantee security, we maintain appropriate technical and organizational measures to protect your Personal Information. For example, we prevent unauthorized access, use, or disclosure through the use of encryption, secure payment processing via Stripe, regular security audits, and strict access controls, including assuring that third-party service providers who access or handle Personal Information on our behalf and affiliates maintain such safeguards.
Despite following best practices, there is no guarantee that information will not be accessed, disclosed, altered, or destroyed by breach of any of our physical, technical, or managerial safeguards. When you submit information to us through our website, you should be aware that your information is transmitted across the Internet and that no method of transmission over the Internet is completely or 100% secure. Please note that emails, live chat messages and other communications you send through our website are not encrypted, and we strongly advise you not to communicate any confidential information through these means.
In the event that a breach in our security system occurs and there is evidence that an unauthorized person acquires your Personal Information, we will notify you of such a breach in accordance with applicable law. However, delays in notification may occur while we take necessary measures to determine the scope of the breach and restore reasonable integrity to the system, as well as for the legitimate needs of law enforcement, if notification would impede a criminal investigation. From time to time, we evaluate new technologies for protecting information and, when appropriate, we will undertake reasonable efforts to upgrade our information security systems. If you notice or suspect any security violations, please contact us.