Gaia Functional Medicine

Privacy Policy

PRIVACY POLICY

1. Introduction

Welcome to Gaia Functional Medicine (“Gaia,” “we,” “our,” or “us”).

Gaia Functional Medicine is a Florida-based functional medicine and integrative healthcare practice operating in compliance with Florida state law and applicable federal regulations.

We are committed to protecting your privacy and maintaining the confidentiality of your personal and protected health information.

By using our website, booking services, or engaging with our practice, you agree to this Privacy Policy.

2. HIPAA Compliance & Protected Health Information (PHI)

Gaia Functional Medicine is a healthcare provider and may be considered a HIPAA-covered entity under federal law.

  • Any Protected Health Information (PHI) submitted through secure intake forms, EMR systems, or patient portals is protected under the Health Insurance Portability and Accountability Act (HIPAA).

  • PHI is stored in secure, HIPAA-compliant electronic medical record (EMR) systems.

  • We implement administrative, physical, and technical safeguards to protect PHI.

Important: Email and SMS are not always fully secure. By communicating with us electronically, you acknowledge this risk.

Patients will receive a separate Notice of Privacy Practices as required under HIPAA.

3. Information We Collect

We may collect:

A. Personal Information

  • Name

  • Address

  • Email

  • Phone number

  • Date of birth

  • Insurance information (if applicable)

  • Emergency contact

  • Payment information

B. Health Information

  • Medical history

  • Lab results

  • Functional medicine testing results

  • Supplement protocols

  • Lifestyle information

  • Intake form data

C. Automatically Collected Data

  • IP address

  • Browser/device type

  • Website usage analytics

  • Cookies

4. Telehealth Services

Gaia Functional Medicine may provide telehealth services in compliance with:

  • Florida Telehealth Act (Fla. Stat. §456.47)

  • Applicable federal telehealth regulations

By participating in telehealth:

  • You consent to remote medical services.

  • You acknowledge potential technology risks.

  • You understand telehealth does not replace emergency care.

If experiencing a medical emergency, call 911.

5. Lab Portals & Third-Party Testing

We may utilize third-party laboratory companies for functional testing (e.g. specialty labs).

  • These labs maintain their own privacy policies.

  • Gaia is not responsible for third-party data handling outside our systems.

  • By purchasing labs, you agree to their terms and privacy practices.

6. Payment Processing (Stripe)

Gaia Functional Medicine uses Stripe for secure payment processing.

  • We do not store full credit card information..

  • Payment data is encrypted and processed via Stripe’s PCI-compliant platform.

  • Stripe maintains its own privacy and security policies.

By submitting payment, you agree to Stripe’s terms of service.

7. Supplement Dispensary (Fullscript)

Gaia may recommend supplements through Fullscript, a third-party supplement dispensary platform.

  • Orders placed through Fullscript are governed by Fullscript’s privacy policy and terms.

  • Gaia does not control supplement shipping, pricing changes, or inventory.

  • Supplements are not FDA-approved to diagnose, treat, cure, or prevent disease.

  • Individual results vary.

8. SMS Privacy Policy

No mobile opt-in or text message consent will be shared with third parties or affiliates.

By opting into SMS from a web form or other medium, you are agreeing to receive SMS messages from Gaia Functional Medicine. This includes SMS messages for Customer Care. Message frequency varies. Message and data rates may apply. See privacy policy at [Insert Privacy Policy URL]. Message HELP for help. Reply STOP to any message to opt out.

9. Use of Information

We use collected data to:

  • Provide medical care

  • Schedule appointments

  • Process payments

  • Deliver lab results

  • Communicate treatment plans

  • Improve website functionality

  • Comply with legal obligations

We do not sell personal or health information.

10. Florida Compliance

This website and practice operate under the laws of the State of Florida.

All disputes shall be governed by Florida law and adjudicated in Indian River County, Florida.

11. Data Security

We use:

  • HIPAA-compliant EMR systems

  • Encrypted data storage

  • Secure hosting environments

  • Access controls and password protections

However, no electronic system can guarantee absolute security.

12. Children’s Privacy

We do not knowingly collect information from children under 13 without parental consent.

13. Changes to This Policy

We reserve the right to update this Privacy Policy. Updates will be posted on this page with a revised effective date.

SMS Privacy Policy

No mobile opt-in or text message consent will be shared with third parties or affiliates.