Privacy Policy

1. Introduction

Montblanc Aesthetics, LLC ("we," "us," or "our") operates the website montblancaesthetics.com (the "Site"), offering compounded medications and related products for sale. This Privacy Policy describes how we collect, use, disclose, and protect your personal information when you visit our Site or make a purchase.

By accessing or using the Site, you consent to the data practices described in this Privacy Policy. If you do not agree, please discontinue use of the Site.

2. Important Notice Regarding Health Information

This website does not collect, store, or process Protected Health Information (PHI). Medical consultations and treatment are handled through a separate patient portal. Any health-related information you share on this Site is limited to general product inquiries and is not used for medical diagnosis or treatment purposes.

3. Compounded Medication Disclosure

Products offered on this site include compounded medications prepared by FDA-registered compounding pharmacies. Compounded medications are not FDA-approved and may differ from commercially available brand-name products.

4. Information We Collect

4.1 Personal Information

When you create an account, place an order, or contact us, we may collect:

• Full name and email address
• Mailing and shipping address
• Phone number
• Payment method details (credit card number, billing address) processed through our secure payment processor, Stripe
• Order history and preferences

4.2 Information Collected Automatically

When you visit the Site, we automatically collect usage data, including:

• IP address and device identifiers
• Browser type and operating system
• Pages visited, time spent, click patterns, and referral sources
• Cookies and similar tracking technologies (see Section 6)

5. How We Use Your Information

We use collected information for the following purposes:

• Processing and fulfilling your orders through our licensed compounding pharmacy partners
• Processing payments and managing subscriptions via Stripe
• Sending order confirmations, shipping updates, and customer service communications
• Sending promotional emails and newsletters (you may opt out at any time)
• Verifying your identity and ensuring the security of your account
• Improving our Site, services, and user experience
• Detecting and preventing fraud, abuse, and security breaches
• Complying with applicable legal obligations

6. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your browsing experience and collect analytics data. Types of cookies we use include:

• Essential Cookies: Required for Site functionality, such as session management and shopping cart persistence
• Analytics Cookies: Used to understand how visitors interact with our Site (e.g., Google Analytics)
• Marketing Cookies: Used to deliver relevant advertisements and track campaign performance

You can manage your cookie preferences through your browser settings. Disabling certain cookies may affect Site functionality.

7. Third-Party Services

We share your information with third-party service providers only as necessary to operate our Site and deliver our services:

• Stripe: For secure payment processing. Stripe handles your credit card information in compliance with PCI-DSS standards. We do not store your full credit card number on our servers.
• Licensed Compounding Pharmacies: For order fulfillment and related communications (name, address, and order details only — no health information)
• Shipping Partners: Name and shipping address for order delivery
• Google Analytics: For aggregated, de-identified usage analytics
• Email / Newsletter Services: For sending promotional communications (you may unsubscribe at any time)
• Legal and Regulatory Authorities: As required by law, regulation, or legal process

We do not sell, rent, or trade your personal information to third parties for their marketing purposes.

8. Data Security

We implement technical and organizational measures to protect your information, including:

• Encryption of data in transit (TLS 1.2+) and at rest (AES-256)
• Role-based access controls and multi-factor authentication
• Regular security assessments and monitoring
• Secure payment processing through Stripe (PCI-DSS compliant)

While we employ commercially reasonable safeguards, no system is completely secure. We cannot guarantee absolute security of your information.

9. Your Rights

Depending on your location, you may have the following rights:

• Access: Request a copy of the personal information we hold about you
• Correction: Request correction of inaccurate personal information
• Deletion: Request deletion of your personal information, subject to certain legal retention requirements
• Opt-Out: Opt out of promotional communications at any time by clicking the unsubscribe link or contacting us
• Do Not Sell: We do not sell your personal information

If you are a California resident, the CCPA/CPRA provides additional rights, including the right to know what personal information is collected, the right to limit the use of sensitive personal information, and the right to non-discrimination for exercising your rights. To submit a verifiable consumer request, contact us using the information below. We will respond within 45 days.

10. Data Retention

We retain your information for as long as necessary to fulfill the purposes described in this Privacy Policy, unless a longer retention period is required by law:

• Order and Financial Records: Retained for 7 years from the date of transaction
• Account Data: Retained for the duration of your account plus 2 years after deletion, unless otherwise required
• Usage Data: Retained for 2 years, then de-identified or deleted
• Cookies: Session cookies expire when you close your browser; persistent cookies expire per the durations specified in our Cookie Notice

11. Data Breach Notification

In the event of a data breach affecting your personal information, we will notify you and relevant authorities within the timeframes required by applicable law, including Florida law (Fla. Stat. §501.171), which requires notification within 30 days of discovery. Notifications will include a description of the breach, the types of information involved, steps you can take to protect yourself, and our remediation efforts.

12. Contact Information

For privacy-related inquiries, to exercise your rights, or to file a complaint:

• Company: Montblanc Aesthetics, LLC
• Email: privacy@montblancaesthetics.com
• Address: Miami, FL 33130
• Phone: (305) 555-0199

You may also file a complaint with your state Attorney General if you believe your privacy rights have been violated.

Last updated: June 4, 2026