Effective date: March 14, 2026
MedSpa Performance Academy ("MSPA," "we," "us," or "our") operates MSPA Teams at mspateams.com. We take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and protect your information when you use our platform.
By using MSPA Teams, you agree to the collection and use of information in accordance with this policy.
Information We Collect
We collect information you provide directly to us, including:
- Name, email address, and practice information when you join our waitlist or create an account
- Employee files, job descriptions, interview scorecards, and HR documentation you upload or create within the platform
- Professional license information for staff members
- Performance review data entered through the ALIGN Review system
- Billing and payment information processed through our secure payment processor (Stripe)
- Communications you send to us directly
We also collect certain information automatically when you use our platform, including log data, device information, and usage analytics.
How We Use Your Information
We use the information we collect to:
- Provide, maintain, and improve the MSPA Teams platform
- Process transactions and send related information including confirmations and invoices
- Send communications about your account, product updates, and educational content
- Respond to your comments, questions, and requests
- Monitor and analyze usage patterns to improve our services
- Comply with legal obligations
HIPAA Compliance
MSPA Teams is operated under a HIPAA-compliant infrastructure. Our platform is covered by a Business Associate Agreement (BAA) and operates with full encryption and security controls required under the Health Insurance Portability and Accountability Act.
While MSPA Teams is designed for HR and staffing purposes and does not store Protected Health Information (PHI) about patients, we maintain HIPAA-level security standards for all data stored on our platform, including employee files, license records, and HR documentation.
Data Security
We implement industry-standard security measures to protect your information, including:
- Full encryption of data in transit and at rest
- Row-level security ensuring your data is isolated from other accounts
- HIPAA-compliant infrastructure with BAA in place
- Regular security audits and monitoring
Data Sharing
We do not sell your personal information. We may share your information with:
- Service providers who assist in operating our platform (Supabase, Stripe, Mailgun) under strict data processing agreements
- Legal authorities when required by law or to protect our rights
- A successor entity in the event of a merger or acquisition
Your Rights
You have the right to access, correct, or delete your personal information. To exercise these rights, contact us at george@mspacoach.com. We will respond to your request within 30 days.
Cookies
We use cookies and similar tracking technologies to track activity on our platform and hold certain information. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent.
Children's Privacy
MSPA Teams is not directed to individuals under the age of 18. We do not knowingly collect personal information from anyone under 18.
Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the effective date. Your continued use of MSPA Teams after any changes constitutes your acceptance of the new policy.
Contact Us
If you have questions about this Privacy Policy, please contact us:
- Email: george@mspacoach.com
- Website: mspateams.com
- Address: 21305 189th St, Woodinville, WA