Legal document

Privacy policy.

How we collect, use and protect your information. We comply with HIPAA (federal) and CCPA/CPRA (California). Last updated: May 26, 2026.

El Monte Dentist by Dr. Soto ("we", "our office") operates the dental clinic located at 3230 Santa Anita Ave, El Monte, CA 91733, and the website drasotodentista.com. This policy explains how we handle your personal and medical information.

1. Information we collect

We collect information in three contexts: when you book or attend an appointment, when you fill out forms on our website, and when you interact with our email or text communications.

1.1 Medical and dental information

Your medical and dental history, X-rays, intraoral photographs, treatment plans, clinical notes, allergies, current medications, and all information protected by HIPAA. This information is kept in encrypted electronic systems and in locked physical files.

1.2 Contact and administrative information

Name, address, phone, email, date of birth, dental insurance information, payment methods, and emergency contact.

1.3 Website information

When you visit drasotodentista.com, we automatically collect: IP address, browser type, pages visited, time on each page, traffic source (Google, social media, direct). This information is processed through Google Analytics 4.

2. How we use your information

We use your medical information solely for the purposes permitted under HIPAA: treatment, payment and healthcare operations. Specifically:

  • Diagnose and plan your dental care
  • Bill your dental insurance and process payments
  • Coordinate care with other medical providers when you authorize it
  • Appointment reminders by text, email or phone
  • Post-operative follow-up communication
  • Compliance with legal, public-health and regulatory requirements

We use your website information to improve the experience, measure which pages are useful, and for responsible advertising (we do not sell your information to advertisers).

3. Who we share it with

We do not sell your medical information or share it with advertisers. We share information only with:

  • Your dental insurance — to process claims and authorizations
  • Referred specialists — only when you authorize it in writing
  • Dental laboratories — to fabricate crowns, dentures or other appliances
  • Encrypted technical services — Formspree (processes form submissions by email) and our electronic health record system. All signed Business Associate Agreements under HIPAA.
  • Authorities — only when the law requires it (court order, mandatory public-health reporting)

4. HIPAA and medical records

As a dental practice in the United States, we are subject to the federal Health Insurance Portability and Accountability Act (HIPAA). You have the right to:

  • View and obtain a copy of your dental record (delivered within 30 days)
  • Request corrections to your record
  • Obtain a history of disclosures of your information over the past 6 years
  • Request specific restrictions on how it is used or shared
  • Receive confidential communication through the channel and address you prefer
  • Be notified if a breach of your data security occurs
  • File a complaint directly with us or with the Office for Civil Rights of the Department of Health and Human Services, without fear of retaliation

To exercise any of these rights, email elmontedentist3230@gmail.com or ask Jess for a form at the office.

5. Cookies and site tracking

We use first- and third-party cookies for:

  • Essential — basic site functionality (cannot be disabled)
  • Analytics — Google Analytics 4 (you can opt out of sharing)
  • Functional — remembering your preferred language and form options

You can disable cookies in your browser. The site will work but some features (form reminders, language) may not remember your preferences.

6. Your rights under CCPA/CPRA

As a California resident, under the California Consumer Privacy Act and the California Privacy Rights Act, you have the right to:

  • Know what personal information we collect and why
  • Access a copy of the information we hold about you
  • Delete your information (subject to certain legal and medical exceptions)
  • Correct inaccurate information
  • Limit the use of sensitive information
  • Non-discrimination — we don't treat you differently for exercising these rights

We do not sell personal information. We do not share personal information for cross-context advertising. To exercise these rights, write to elmontedentist3230@gmail.com with the subject "CCPA/CPRA Request".

7. How we protect your data

We apply the following safeguards:

  • Encryption at rest and in transit for all electronic records
  • Role-restricted access — only authorized staff see each part of the record
  • Annual HIPAA training for the whole team
  • Annual security audits of the electronic health record system
  • A documented security-incident response procedure
  • Signed agreements with all technology providers (Business Associate Agreements)

8. Changes to this policy

We may update this policy to reflect changes in the law or in our practices. Any substantial change is announced 30 days in advance by email or by a visible notice on this site. The date of the last update appears at the top of this page.

9. Contact

For any questions about this policy, about your personal information, or to file a complaint:

El Monte Dentist by Dr. Soto
3230 Santa Anita Ave
El Monte, CA 91733
Tel: (626) 415-7775
Email: elmontedentist3230@gmail.com

If you believe your rights under HIPAA were violated, you can also file a complaint with the Office for Civil Rights, U.S. Department of Health and Human Services, at hhs.gov/ocr.