Privacy Policy

At New York Headache Center, we respect your privacy. This policy outlines how we collect, use, and protect your personal information when you visit our website or use our services.
last updated: 27.08.25

This Privacy Policy explains how NYHC collects, uses, discloses, and safeguards information when you visit nyheadache.com (the "Site"), contact us, subscribe to communications, or receive care in our clinics. Patient health information used in the course of treatment or billing is protected by HIPAA and described in our separate Notice of Privacy Practices below.

Information We Collect
  • Contact & Inquiry Data: name, email, phone, and message content.
  • Appointment & Patient Intake Data: insurance, medical history and symptoms, preferred provider; may include Protected Health Information (PHI).
  • Payment Data: limited billing details processed by our payment vendors; we do not store full card numbers.
  • Technical Data: IP address, device/browser, pages viewed, referral URLs; cookies and similar technologies.
  • Communications Preferences: newsletter opt‑in, unsubscribe data.
    • How We Use Your Data
  • Provide and improve the Site, services, scheduling, and patient communications.
  • Respond to inquiries, send administrative messages, and deliver newsletters (with your consent where required).
  • Secure our systems, prevent fraud/abuse, and comply with law.
    • Sharing Your Information
  • Vendors/Service Providers: website hosting, analytics, email/SMS, payment processors, EHR/scheduling, telehealth platforms. They may access information only to perform services for us.
  • Legal/Compliance: to satisfy applicable law or lawful requests; to protect rights, safety, or property.
  • Business Changes: in a merger, acquisition, or other transfer, consistent with legal requirements.
    • Disclosure of Information

    We may share your information with:

    • Healthcare providers involved in your treatment.
    • Insurance companies or billing processors.
    • Technology vendors (e.g., website hosting, secure email).
    • Government agencies, when required by law.
    Data Retention & Security
  • PHI is maintained in compliance with HIPAA and state laws.
  • Technical safeguards (encryption, secure servers) protect your data.
  • Data is retained only as long as necessary for medical and legal purposes.
    • Your Rights
  • Request access to your records.
  • Ask for corrections or updates.
  • Request restrictions on disclosures.
  • Opt-out of non-essential communications.
  • File a complaint with us or the U.S. Department of Health & Human Services.
    • Changes to This Policy

    We may revise this Privacy Policy from time to time to reflect changes to our practices, legal obligations, or service offerings. When we do, we will update the effective date at the top of this page and, where appropriate, provide you with notice by email or through our platform. We encourage you to review this page periodically to stay informed about how we are protecting your data and respecting your privacy preferences.

    Do you have questions?
    Reach out to our team and start a discussion.
    Contact us
    Contact us
    About NYHC
    Our StaffNYHC in the PressContact Us Blog
    patients
    How Our Office WorksEducational MaterialsTestimonials & Feedback
    physicians
    Lecture SlidesNYHC Educational Symposia & Doctor TrainingScientific Articles
    Contact
    Manhattan: 30 East 76th Street,
    New York, NY 10021
    Phone: 212‑794‑3550
    Fax: 212‑794‑0591
    Westchester: 99 Maple Avenue,
    White Plains, NY 10605
    Tel: 212-794-3550
    Fax: 212-794-0591
    monthly Newsletter
    Thank you! Your submission has been received!
    Oops! Something went wrong while submitting the form.
    © Copyright
    Privacy PolicyTerms of UseNotice of Privacy Practices (HIPAA)
    This text is a legal disclaimer designed for the footer of a website. Begin with a statement acknowledging the company's registration status. This should include a placeholder for a generic location and a fictitious registration number, for example, "Registered in [Location], USA (No. XX-123456)". The text should mention the company's authorization under a specific state department, citing a relevant act. Include a placeholder for a license number, like "Authorized by the [State Department of Business Oversight] under the [State Money Transmission Act] (License No. YZ-987654)."