Last Updated: April 29, 2026

1. Introduction

Aurenza Health, LLC (“Aurenza,” “Aurenza Health,” “we,” “our,” or “us”) is committed to protecting your privacy and maintaining the confidentiality of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you interact with us, including through our website, consultation forms, communications, and services.

This policy is designed to align with applicable privacy and electronic communications laws, including, where applicable, the General Data Protection Regulation (GDPR), the Canadian Anti-Spam Legislation (CASL), and the CAN-SPAM Act.

By using our website or submitting your information, you agree to the practices described in this Privacy Policy.

2. About Aurenza Health

Aurenza Health is a non-clinical management services organization. We provide marketing, education, intake coordination, and concierge support services. We do not provide medical care, operate clinical facilities, or employ physicians.

All clinical services referenced on our website are delivered by independent, COFEPRIS-licensed clinical entities in Mexico, with whom we maintain separate contractual relationships. Any medical care you receive is provided solely by those independent entities, and information related to your care is governed by their respective privacy practices.

3. Information We Collect

3.1 Information You Provide Directly

We collect information that you voluntarily provide when you complete forms, request a consultation, subscribe to communications, or contact us. This may include:

  • First and last name
  • Email address
  • Phone number (including mobile number)
  • Postal address and geographic location (city, state/province, country)
  • Date of birth
  • Health-related information or conditions you choose to disclose
  • Responses to intake or qualification questions (including willingness to travel or pay for treatment)
  • Any additional information you choose to provide during consultations or communications

3.2 Automatically Collected Information

When you visit our website, we may automatically collect:

  • IP address
  • Browser type, device type, and operating system
  • Pages visited, time spent, and navigation paths
  • Referral sources and traffic data
  • Approximate geographic location derived from IP
  • Cookies and tracking data

3.3 Sensitive Health Information

Some information you provide may be considered sensitive health-related information. While Aurenza is not a healthcare provider, we treat this information with heightened care and restrict access to authorized personnel only.

4. Legal Basis for Processing (GDPR Considerations)

Where applicable under GDPR or similar frameworks, we rely on the following legal bases for processing personal information:

  • Consent – Where you have provided clear permission (e.g., submitting a form or opting into communications)
  • Legitimate Interests – To operate, improve, and secure our services, provided those interests are not overridden by your rights
  • Contractual Necessity – To fulfill requests you initiate, such as consultation coordination
  • Legal Obligations – To comply with applicable laws and regulations

You may withdraw consent at any time, subject to legal or operational limitations.

5. How We Use Your Information

We use the information we collect to:

  • Respond to inquiries and communicate with you
  • Evaluate eligibility for consultations and programs
  • Coordinate consultations with independent clinical partners at your request
  • Provide program recommendations and educational information
  • Coordinate scheduling, logistics, and travel support where applicable
  • Send appointment reminders and follow-up communications
  • Deliver marketing or educational content where you have provided consent
  • Operate, analyze, and improve our website and services
  • Conduct internal analytics, performance tracking, and operational planning
  • Comply with legal and regulatory obligations

We do not sell or rent your personal information.

6. Communications & Marketing Compliance

6.1 Consent to Communications

Where required by applicable law, we obtain your consent before sending marketing or promotional communications. Consent may be:

  • Express Consent – Provided when you actively opt in (e.g., form submission with consent checkbox)
  • Implied Consent – Where permitted under applicable law based on an existing relationship or inquiry

6.2 CASL Compliance (Canada)

For individuals subject to the Canadian Anti-Spam Legislation (CASL):

  • We only send commercial electronic messages (CEMs) with appropriate consent
  • All communications clearly identify Aurenza as the sender
  • Each message includes accurate contact information
  • Every message includes a clear and functional unsubscribe mechanism
  • Unsubscribe requests are processed promptly, and no later than legally required timelines

6.3 CAN-SPAM Compliance (United States)

For recipients in the United States:

  • We do not use misleading subject lines or headers
  • Communications clearly identify themselves as promotional where required
  • Our physical mailing address is included in all applicable communications
  • Opt-out requests are honored promptly and permanently

6.4 GDPR & International Marketing Standards

For individuals in jurisdictions with GDPR-style requirements:

  • Marketing communications are based on lawful consent or legitimate interest where permitted
  • You may withdraw consent at any time
  • We maintain records of consent where required
  • Profiling or segmentation is limited to improving relevance and user experience

6.5 SMS & Mobile Communications

  • SMS messages are sent only where you have opted in
  • You may opt out at any time by replying STOP
  • Message frequency varies based on your interaction
  • Standard carrier messaging rates may apply

No mobile information will be shared with third parties or affiliates for marketing or promotional purposes. Text messaging originator opt-in data and consent will not be shared with any third parties.

7. Information Sharing

7.1 Independent Clinical Partners

We may share information with independent clinical entities solely to coordinate consultations or services you have requested.

7.2 Service Providers & Subcontractors

We may share information with trusted service providers, including:

  • CRM and marketing automation platforms
  • Hosting and infrastructure providers
  • Analytics and tracking providers
  • Email and SMS delivery platforms
  • Payment processors and professional advisors

These parties are contractually required to maintain confidentiality and use information only as necessary to perform their services.

7.3 Travel & Logistics Coordination

Where applicable, information may be shared with travel or logistics partners to facilitate accommodations, transportation, or scheduling.

7.4 Legal & Regulatory Disclosure

We may disclose information where required to:

  • Comply with legal obligations
  • Respond to lawful requests from authorities
  • Protect rights, safety, or property

7.5 Business Transfers

In the event of a merger, acquisition, or asset sale, information may be transferred to a successor entity under appropriate protections.

8. Cookies & Tracking Technologies

We use cookies and similar technologies to:

  • Ensure website functionality and performance
  • Remember preferences and settings
  • Analyze user behavior and engagement
  • Support marketing and remarketing efforts

You may control or disable cookies through your browser settings. Disabling cookies may impact site functionality.

9. Data Security

We implement administrative, technical, and physical safeguards designed to protect personal information from unauthorized access, disclosure, alteration, or destruction.

While we take reasonable measures to protect your information, no system can guarantee absolute security. By providing your information, you acknowledge this inherent risk.

We will notify affected individuals and applicable authorities of any data breach as required by law.

10. Data Retention

We retain personal information only as long as necessary to:

  • Fulfill the purposes outlined in this Privacy Policy
  • Maintain records of communications and consultations
  • Meet legal, regulatory, and operational requirements

You may request deletion of your information, subject to applicable legal obligations.

11. Your Rights & Choices

Depending on your jurisdiction, you may have rights including:

  • Access to personal information we hold about you
  • Correction of inaccurate or incomplete information
  • Deletion of your personal information
  • Restriction or objection to certain processing activities
  • Withdrawal of consent
  • * Data portability (where applicable)

You may also:

  • * Unsubscribe from email communications using the provided links
  • * Opt out of SMS communications by replying STOP

Requests may be submitted to: info@aurenzahealth.com

We respond within legally required timeframes.

12. California Privacy Rights

If you are a California resident, you may have rights under the CCPA/CPRA, including:

  • * Right to know what personal information we collect and how it is used
  • * Right to request deletion
  • * Right to correct inaccurate information
  • * Right to opt out of sale or sharing (we do not sell personal data)
  • * Right to limit use of sensitive personal information

We will not discriminate against you for exercising your rights.

13. International Users

Aurenza serves an international clientele. Your information may be transferred to and processed in the United States, Mexico, or other jurisdictions where our service providers operate.

These jurisdictions may have different data protection laws. By using our services, you consent to such transfers.

14. Third-Party Links

Our website may include links to third-party websites, including those of independent clinical partners. We are not responsible for their privacy practices and encourage you to review their policies.

15. Children’s Privacy

Our services are intended for individuals aged eighteen (18) and older. We do not knowingly collect personal information from children. If such information is identified, it will be deleted promptly.

16. Changes to This Policy

We may update this Privacy Policy periodically. The “Last Updated” date reflects the most recent revision. Continued use of our services constitutes acceptance of any updates.

17. Contact Information

For questions, requests, or concerns regarding this Privacy Policy:

Aurenza Health, LLC

Attn: Chief Operating Officer

591 Camino De La Reina, Suite 810

San Diego, CA 92108

Email: info@aurenzahealth.com

Phone: +1 (408) 540 8450