Effective Date: March 19, 2026

Overview

This Privacy Policy explains how Nainai (“we,” “us,” or “our”) handles your information across our California and New York practices. We are committed to HIPAA compliance and protecting your data.

California Privacy Rights (CCPA/CPRA)

If you are a California resident, you have the right to know what personal information is being collected, request the deletion of your personal information, and opt-out of the "sale" of your personal information. Nainai does not sell patient data. To exercise these rights, please contact us at info@nainai.nyc.

Data Collection & PracticeQ

We use PracticeQ, a HIPAA-compliant platform, to manage your care. When you book an appointment, we collect:

• Identity: Name, Date of Birth, and contact info.

• Health Data: Intake forms, symptoms, and medical history provided via PracticeQ.

• Payment: Credit card details are encrypted and processed via a secure PCI-compliant partner. Nainai does not store your full credit card number.

New York Data Security (SHIELD Act)

In accordance with the NY SHIELD Act, we implement administrative, technical, and physical safeguards to protect the private information of our New York telehealth patients.

SMS & Email Communications

By providing your phone number, you consent to receive appointment reminders and office updates via SMS or email. You may opt-out at any time by following the "unsubscribe" link or replying "STOP."