Privacy policy.
Effective Date: June 2024
At Sydclinic, your privacy and trust are fundamental to the care we provide. This policy outlines how we collect, use, disclose, and protect personal and health information in accordance with PIPEDA, Alberta’s Health Information Act (HIA).
1. Information We Collect
We collect personal and health information required to provide you with safe, effective medical-aesthetic services, including:
Contact details (name, phone, email, address)
Date of birth and gender
Health and treatment history, allergies, or relevant medical information
Appointment and treatment records
Payment and billing information
Digital interactions (website forms, online booking, or email correspondence)
2. Purpose of Collection
We use your information to:
Deliver aesthetic and wellness treatments safely and professionally
Maintain accurate clinical documentation
Communicate appointment confirmations, reminders, and follow-ups
Process payments and manage accounts
Respond to inquiries and provide ongoing care recommendations
Improve our services, client experience, and website performance
Comply with legal, professional, and insurance obligations
We collect only the information reasonably necessary for these purposes.
3. Legal and Ethical Foundations
Our collection, use, and storage of information comply with:
PIPEDA (Personal Information Protection and Electronic Documents Act, Canada)
Alberta Health Information Act (HIA)
College of Registered Nurses of Alberta (CRNA) documentation standards
HIPAA, where applicable, for cross-border electronic systems that may store limited client data in the United States
4. HIPAA Compliance
Some of our service providers (for example, JaneApp, Google Workspace, or Stripe) store data on secure servers that meet or exceed HIPAA security standards.
These providers:
Use encrypted data transmission (HTTPS/SSL)
Maintain Business Associate Agreements (BAAs) ensuring HIPAA compliance
Restrict access through authentication and role-based permissions
Are regularly audited for privacy and security controls
We do not disclose identifiable health information to any U.S. entity unless it is protected under a HIPAA-compliant agreement.
5. Protection and Security
We employ technical and administrative safeguards including:
SSL-encrypted communication on www.sydclinic.co
Secure JaneApp booking and charting system with controlled staff access
Confidentiality training for all team members
Locked and encrypted digital files
Routine audits and password-protected accounts
No online system is 100% risk-free, but we take every reasonable step to protect your information.
6. Your Rights
You have the right to:
Access your personal or health record upon written request
Request correction of inaccurate or incomplete information
Withdraw consent for communication or marketing (does not affect clinical record retention)
Request deletion of certain non-clinical personal data
Requests can be made by emailing sydneyslubik@sydclinic.co.
7. Data Retention
Client health records are stored securely for at least 10 years (or longer for minors) in compliance with Alberta health legislation and nursing standards. Records are destroyed securely when no longer required.
8. Website & Cookies
Our website may use cookies or analytics tools (e.g., Google Analytics) to understand visitor behaviour and improve user experience.
You may disable cookies through your browser settings.
9. Disclosure to Third Parties
We may share information only with:
Authorized healthcare providers or staff involved in your care
Payment processors and booking platforms (JaneApp, Stripe)
Regulatory bodies if required by law or professional standards
All partners are bound by strict confidentiality and security agreements.
10. Contact & Privacy Officer
Sydclinic
📍 11515B 105 Ave NW #101, Edmonton, AB T5H 3Y5
📞 780-918-0091
✉️ sydneyslubik@sydclinic.ca
Privacy Officer: Sydney Slubik, RN, BScN