Washington My Health My Data Act (MHMDA)
Effective Date: February 1, 2026
Last Updated: [Date]
1. SCOPE & EXEMPTIONS (IMPORTANT)
Most information we collect is exempt from this policy. Because Hiroshi Suzuki, MD, PC is a healthcare provider, the majority of the information we collect—including medical records, consultation notes, and treatment communications—is considered Protected Health Information (PHI) under HIPAA or Health Care Information under Washington’s HCIA (RCW 70.02).
• If you are a current patient: Your data is governed by our Notice of Privacy Practices (NPP) and healthcare privacy laws, not this policy.
• Who this policy applies to: This policy applies only to Consumer Health Data (CHD) defined by the Washington My Health My Data Act (MHMDA) that falls outside standard medical care—for example, data collected from website visitors who are not yet established patients.
• Sensitive Health Data: Some CHD may qualify as “Sensitive Health Data” (e.g., reproductive health, genetic data, sexual health, biometric identifiers). We collect such data only when you voluntarily provide it and never share or sell it without distinct opt-in authorization.
​
2. CONSUMER HEALTH DATA WE COLLECT
We may collect the following categories of Consumer Health Data solely from your website interactions or general inquiries:
• Individual Health Inquiries: Information you provide through web forms or email before a doctor–patient relationship exists.
• Browsing & Search Data: Pages viewed, searches related to health topics, and interactions with symptom-related content.
• Inferred Data: Information derived from browsing activity that could indicate interest in specific medical services.
​
3. SOURCES OF DATA
We collect Consumer Health Data in two ways:
1. Directly from you: When you fill out forms or request information.
2. Automatically: Through cookies and device identifiers used to operate the website. We do not use cookies for advertising or cross-site tracking. Any tracking that could infer health information is limited to site functionality and security.
​
4. PURPOSES OF COLLECTION
We use Consumer Health Data ONLY for the following purposes:
• Responding to your inquiries or requests.
• Operating, securing, and maintaining website functionality.
Note: We do NOT use Consumer Health Data for third-party marketing or advertising without clear opt-in consent.
​
5. SHARING OF CONSUMER HEALTH DATA
We do not sell your Consumer Health Data. We may share it only when necessary:
• Processors (Service Providers): Trusted vendors (e.g., hosting, secure email, EHR platforms) who are contractually required to protect data and act only on our instructions pursuant to MHMDA.
• Legal Requirements: When required to comply with law or valid legal process.
PROHIBITION ON GEOFENCING: We do not use geofencing that identifies, tracks, or collects Consumer Health Data within 2,000 feet of any healthcare facility, pharmacy, or digital healthcare service provider, as defined by Washington law.
​
6. YOUR RIGHTS (WASHINGTON RESIDENTS)
Under the MHMDA, Washington residents have the following rights:
1. Right to Access: Confirm whether we collect your Consumer Health Data and receive a copy of it.
2. Right to Delete: Request deletion of your Consumer Health Data.
3. Right to Withdraw Consent: Withdraw consent for collection or processing at any time.
How to submit a request:
• Email: info@hiroshisuzukimdpc.onmicrosoft.com (Subject: “Privacy Request”)
• Mail: 2108 N St, #4693, Sacramento, California 95816
We will respond to verified requests within 45 days.
​
7. APPEAL PROCESS
If we deny your request, you have the right to appeal. If your appeal is unsuccessful, you may also contact the Washington State Attorney General directly: