KHAN DDS, PLLC

NOTICE OF PRIVACY PRACTICES & WEBSITE PRIVACY POLICY

Effective Date: March 24, 2026

NOTICE OF PRIVACY PRACTICES

THIS NOTICE DESCRIBES HOW MEDICAL INFORMATION ABOUT YOU MAY BE USED AND DISCLOSED AND HOW YOU CAN ACCESS THIS INFORMATION. PLEASE REVIEW IT CAREFULLY.

WHO WE ARE

This Notice applies to Khan DDS, PLLC (“we,” “our,” or “the Practice”), an orthodontic practice located in North Carolina. We are required by the Health Insurance Portability and Accountability Act (HIPAA), the HITECH Act, and applicable North Carolina law to maintain the privacy and security of your protected health information (“PHI”).

YOUR HEALTH INFORMATION

We create and maintain records of your care, including: Medical and dental history, Photos, x-rays, and digital scans, Treatment plans and progress notes, Insurance and billing information

HOW WE MAY USE AND DISCLOSE YOUR INFORMATION

Treatment

We use your information to provide and coordinate your orthodontic care.

Payment

We may use your information for billing, insurance, and collections.

Healthcare Operations

We use your information to operate and improve our practice.

Business Associates

We work with third-party vendors, including:Cloud9, OrthoCharts (clinical systems)Weave (communications) LeadSigma (marketing/lead management)These vendors are contractually required to safeguard your information.

Communications

We may contact you via phone, text, email, or portal. Electronic communication may not be fully secure. You accept this risk unless you request alternatives.

Family & Caregivers

We may share relevant information unless you object.

As Required by Law

We may disclose information as required by law or for public health and safety.

Other Permitted Uses

Including research (with safeguards), FDA reporting, and government functions.

USES REQUIRING AUTHORIZATION

We require written authorization for: Marketing beyond treatment, Sale of information, Other non-standard uses

YOUR RIGHTS

You may: Access records, Request corrections, Request restrictions, Request confidential communication, Request disclosure history, Receive breach notification, Request a paper copy. If you pay out-of-pocket in full, you may restrict insurance disclosure.

SECURITY

We maintain safeguards including secure systems, access controls, staff training, and vendor agreements.

WEBSITE PRIVACY

Voluntary Information Submission

You may choose to provide personal information through forms. You are not required to do so, but some features may not function without it.

Anonymous Use

You may visit our website anonymously.

Types of Information Collected

We may collect: Information you provide: Name, email, phone number, address

Automatically collected information: IP address, Browser and device type, Pages visited and usage data, Mobile device information

How We Use Website Information

We may use information to: Operate and improve the website, Respond to inquiries, Communicate with you, Analyze usage and marketing performance, Deliver relevant advertising

Cookies & Tracking Technologies

We may use cookies, pixels, and similar technologies to: Improve user experience, Analyze traffic, Support marketing and advertising, You may disable cookies in your browser settings.

Third-Party Advertising & Remarketing

We may work with third-party vendors to: Show ads after you visit our site, Measure advertising performance, These vendors may use tracking technologies across websites.

Third-Party Processing

Service providers may process information for: Analytics, Communications, Marketing, Security.

They are required to safeguard your information.

Third-Party Websites

Our website may contain links to third-party sites. We are not responsible for their privacy practices.

Aggregated & De-Identified Data

We may use non-identifiable data to: Analyze trends, Improve services, Evaluate performance

No Sale of Personal Information

We do not sell, rent, or lease your personal information.

Website vs Medical Information

This website is not intended for submission of protected health information (PHI).Do not submit sensitive medical information through: Contact forms, Email, Chat tools

Data Retention

We retain data only as long as necessary for: Operational purposes, Legal and regulatory requirements

Data Transfers

Your information may be processed in different locations by service providers.

Business Transfers

If Khan DDS, PLLC is sold, merged, or reorganized, your information may be transferred as part of that transaction.

Children’s Privacy

Our website is not intended for children under 13. We do not knowingly collect data from children without parental involvement.

Security Disclaimer

No method of internet transmission or storage is 100% secure. We cannot guarantee absolute security.

Do Not Track

Our website does not respond to “Do Not Track” signals.

User Acceptance

By using this website, you agree to this Privacy Policy.

COMPLAINTS

Contact Us

Privacy Officer: Salaar Khan
Practice: Khan DDS, PLLC
Address: 417 N Church Street, Asheboro, NC 27203
Phone: 336-629-9115We will not retaliate.

File with HHS

You may also file a complaint with the
U.S. Department of Health and Human Services Office for Civil RightsWebsite: https://www.hhs.gov/hipaa/filing-a-complaint/index.html
Phone: 1-800-368-1019

CHANGES TO THIS POLICY

We may update this policy at any time. Updates will be posted in-office and online.