Website Privacy Policy for MSA Dallas
Last Revised Date: 3/16/2026
This Website Privacy Policy ("Policy") describes how MSA Dallas, a primary care medical group ("we," "us," or "our"), collects, uses, discloses, and protects information when you visit or interact with our website [www.msadallas.com] (the "Website"). This Policy applies to personal information, including any protected health information (PHI) as defined under the Health Insurance Portability and Accountability Act of 1996 (HIPAA), that we may collect through the Website. We are committed to protecting your privacy in compliance with applicable laws, including HIPAA and state privacy regulations.
1. Information We Collect
We collect information from you in the following ways:
Personal Information You Provide:
This may include your name, email address, phone number, date of birth, medical history, insurance details, or other information you voluntarily submit through forms on the Website (e.g., appointment requests, patient portal sign-ups, contact forms, or newsletters). If this includes health-related details, it may qualify as PHI under HIPAA.
Automatically Collected Information:
When you visit the Website, we may automatically collect non-personal information such as your IP address, browser type, device information, operating system, referring URLs, pages viewed, time spent on pages, and clickstream data. We use cookies, pixels, web beacons, and similar technologies to collect this data for analytics, personalization, and to improve the user experience.
Protected Health Information (PHI):
If you access our patient portal or submit health-related inquiries, we may collect PHI, including medical records, treatment details, and billing information. This is handled in strict compliance with HIPAA.
We do not collect sensitive information, such as racial or ethnic origin, political opinions, or genetic data, unless it is necessary to provide medical services and you provide explicit consent.
2. How We Use Your Information
We use the information we collect for the following purposes:
-
To provide and manage healthcare services, including scheduling appointments, processing payments, and communicating with you about your care.
-
To improve the Website's functionality, content, and user experience.
-
For internal operations, such as auditing, data analysis, and research (in de-identified form where possible).
-
To comply with legal obligations, including HIPAA requirements for uses and disclosures of PHI for treatment, payment, and healthcare operations (TPO).
-
For marketing and communications, such as sending newsletters or updates, but only with your consent where required. We do not use PHI for marketing without your authorization.
We apply the "minimum necessary" standard under HIPAA, meaning we limit the use and disclosure of PHI to the minimum necessary to accomplish the intended purpose.
3. How We Share Your Information
We may share your information as follows:
With Healthcare Providers and Business Associates:
We share PHI with affiliated providers, labs, pharmacies, or business associates (e.g., billing services) for TPO purposes, under HIPAA-compliant agreements.
For Legal and Compliance Reasons:
We may disclose information if required by law, such as in response to a court order, subpoena, or public health reporting. We also disclose PHI for audits, investigations, or to prevent harm.
With Your Consent:
For other purposes, such as sharing with family members or for research, we obtain your written authorization. You may revoke this authorization at any time, except where we have already relied on it.
De-Identified Information:
We may share anonymized data that cannot identify you for research or analytics.
We do not sell your personal information or PHI. Disclosures to third parties are limited and protected by contracts ensuring compliance with privacy laws.
4. Cookies and Tracking Technologies
We may use cookies and similar technologies to enhance your experience. These may include:
-
Essential cookies for Website functionality.
-
Analytics cookies (e.g., Google Analytics) to track usage patterns.
-
Advertising cookies for targeted content.
You can manage cookies through your browser settings. Disabling them may limit Website features.
5. Data Security
We implement reasonable administrative, physical, and technical safeguards to protect your information, including encryption, access controls, and regular security assessments, in compliance with HIPAA security rules. However, no system is completely secure, and we cannot guarantee absolute security.
In the event of a data breach involving PHI, we will notify affected individuals as required by HIPAA and applicable laws.
6. Your Rights Regarding Your Information
Under HIPAA and other laws, you have rights regarding your PHI, including:
-
Right to Access and Inspect: Request a copy of your PHI (fees may apply for copies).
-
Right to Amend: Request corrections to inaccurate or incomplete PHI.
-
Right to an Accounting: Receive a list of certain disclosures of your PHI.
-
Right to Request Restrictions: Ask us to restrict uses or disclosures (we are not always required to agree).
-
Right to Confidential Communications: Request alternative methods (e.g., email instead of mail).
-
Right to Opt-Out: Opt out of fundraising communications or certain marketing.
-
Right to a Paper Copy: Obtain a paper copy of this Policy or our Notice of Privacy Practices.
To exercise these rights, contact our Privacy Officer at privacy@MSADallas.com. We will respond within 30 days or as required by law.
For non-PHI personal information, you may have additional rights under state laws.
7. Children's Privacy
Our Website is not intended for children under 17. We do not knowingly collect information from children without parental consent. If we learn we have collected such information, we will delete it.
8. Third-Party Links
Our Website may contain links to third-party sites. We are not responsible for their privacy practices. Review their policies before providing information.
9. Changes to This Policy
We may update this Policy periodically. Changes will be posted on the Website with the new effective date. Continued use of the Website constitutes acceptance of changes.
10. Contact Us
If you have questions or complaints about this Policy or our privacy practices, contact:
Privacy Advocate]
Medical Specialists Associated
10670 N Central Express, Suite 120
214.692.8541