Privacy Policy

Your Data.
Handled Right.

We take privacy seriously — not as a legal formality, but as a core part of the trust you place in Dr. Baird and this practice. Here is exactly how your information is collected, used, and protected.

Dr. John R. Baird, MD · Rejuv Medicine, Louisville, KY · Last Updated: May 2026
01

Section 1Information We Collect

Personal & Contact Information

When you submit an inquiry, book a consultation, or enroll in a program, we collect information you provide directly, including:

  • Full name, email address, phone number, and mailing address
  • Health goals, current concerns, and medical history you choose to share
  • Program and tier preferences
  • Payment and billing information (processed through secure third-party processors — we do not store full card numbers)

Clinical & Health Information

For enrolled patients and program participants, we collect health-related information including:

  • Medical history, current medications, supplements, and substance use — required for safe program participation
  • Lab results, biomarker data, and diagnostic imaging where applicable
  • Intake questionnaires, health assessments, and symptom trackers
  • Genetic data obtained through SelfDecode or similar platforms, where you choose to share it

Website & Technical Data

When you visit our website, we may automatically collect:

  • Browser type, IP address, device type, and operating system
  • Pages visited, time spent, and navigation patterns
  • Referral source (how you found us)
  • Cookies and similar tracking technologies — you may disable these in your browser settings

Standard website disclosure. This section reflects common data automatically collected by websites and is legally required to disclose. It is not specific to Dr. Baird's clinical programs or policies — it applies to the website itself, as it does with virtually any website you visit.

02

Section 2How We Use Your Information

Program Delivery & Clinical Care

  • To enroll you in and deliver the health optimization program you selected
  • To personalize protocols based on your lab results, history, and health goals
  • To coordinate care with your existing physicians where appropriate
  • To communicate about appointments, test results, and program updates
  • To process payments and manage your account

Communication & Education

  • To send program-related content, module updates, and educational materials
  • To respond to inquiries and support requests
  • To send marketing communications — only with your consent, and you may opt out at any time
  • Transactional and clinical communications cannot be opted out of while you are enrolled

Legal & Safety Obligations

  • To comply with applicable laws including HIPAA and Kentucky state health regulations
  • To protect the safety of patients, staff, and the practice
  • To enforce program agreements and resolve disputes
  • To maintain required clinical and financial records
03

Section 3HIPAA & Clinical Privacy

HIPAA Compliance Framework

For patients receiving clinical services through Rejuv Medicine, we comply with the Health Insurance Portability and Accountability Act (HIPAA) and all applicable health privacy laws. This means:

  • All clinical communication is conducted through HIPAA-compliant, encrypted secure systems
  • Protected Health Information (PHI) is shared only with your explicit consent or as required by law
  • You will receive a Notice of Privacy Practices at enrollment in any clinical program
  • You have the right to request access to, amendment of, or restriction on your PHI

Educational Programs vs. Clinical Programs

It is important to understand the distinction between program types and how privacy protections apply:

  • Digital education programs — modules, group webinars, group coaching — Dr. Baird serves as a coach and educator. These are not clinical encounters and HIPAA may not apply in the same way
  • In-person clinical programs at Rejuv Medicine — Dr. Baird acts as treating physician within Kentucky, and full HIPAA protections apply
  • We apply the same rigorous privacy standards to both regardless of the legal distinction

Coaching is not treatment. Information shared in coaching or group contexts should not be considered privileged medical communications in the clinical sense.

04

Section 4Data Storage & Security

How We Store Your Data

  • Lab results, imaging, and clinical notes are stored in our secure, HIPAA-compliant Electronic Health Record (EHR) system
  • Website data and contact information are stored in GoHighLevel (GHL), our CRM platform, which employs industry-standard encryption
  • Payment information is processed and stored by our payment processors — we do not retain full payment card data on our own systems
  • Supplement orders and history are managed through Fullscript's secure platform

Data Retention

  • Clinical records are retained for the period required by Kentucky state law — generally a minimum of 7 years
  • Program enrollment records are retained for the duration of your program plus 3 years
  • Marketing and inquiry records are retained until you request deletion or opt out
  • You may request deletion of non-clinical data at any time by contacting us directly
05

Section 5Genetic & Lab Data

Your Genetic Data — You Own It

Where genetic testing is used as part of a program (e.g. SelfDecode, genetic methylation panels), the following rules apply:

  • Patient ownership — You retain full ownership and lifetime account access to your genetic data — it is never owned by this practice
  • Genetic data shared with Dr. Baird is used solely to personalize your protocol — it is never sold, licensed, or shared with third parties without your explicit written consent
  • We do not require genetic testing for any program; it is offered as an optional enhancement
  • Genetic data is stored within the platform you use (e.g. SelfDecode) and governed by that platform's own privacy policy

SelfDecode and similar platforms have their own privacy policies. We encourage you to review them directly. We recommend only sharing the specific reports relevant to your program.

Lab Results & Biomarker Data

  • Lab panels ordered through Rupa Health, LabCorp, or other providers are governed by the ordering lab's own privacy practices
  • Results shared with Dr. Baird are stored in our secure EHR and used only for your care
  • You have the right to request copies of any lab results at any time
  • Lab data is never shared with third parties, advertisers, or insurers without your explicit consent
06

Section 6Third-Party Services

Platforms We Use

We work with a number of trusted third-party platforms to deliver our programs and services. Each has its own privacy practices:

  • GoHighLevel (GHL) — CRM, website hosting, and form data management
  • Fullscript — Supplement dispensing and order history. Access at us.fullscript.com/welcome/drbaird
  • Skool — Community platform for group coaching and program access
  • SelfDecode — Optional genetic analysis platform; patients retain full ownership
  • Rupa Health / LabCorp — Lab panel ordering and results delivery
  • Stripe / payment processors — Secure payment processing
  • Zoom / telehealth platforms — Video consultations and group coaching calls

Affiliate Links & External Sites

  • Amazon affiliate links may appear for non-supplement items such as food, kitchen equipment, or exercise equipment — small commissions may accrue to this practice
  • Affiliate links are clearly identified wherever possible
  • We are not responsible for the privacy practices of external websites you visit via links on our site
  • We never use affiliate links for supplements — all supplements are ordered exclusively through Fullscript
07

Section 7Financial Disclosures

Transparency on Financial Relationships

Honest disclosure is part of the contract with every patient. Here is what we benefit from financially:

  • Dr. Baird receives a portion of supplement revenue when patients order through the Fullscript dispensary
  • Dr. Baird is the founder and primary clinician of all programs — recommendations are not independent of financial benefit
  • Amazon affiliate commissions may be earned on non-supplement product links
  • No third-party advertisers pay to influence content, recommendations, or clinical protocols on this site

Why we disclose this: Honest financial transparency is part of the trust this practice is built on. We disclose all material financial relationships — not because we are required to, but because patients deserve to know.

08

Section 8Community & Group Spaces

Group Webinars, Coaching Calls & Skool Community

When participating in group program elements, the following privacy norms apply:

  • No recording — Group webinars and coaching calls are not to be recorded by participants without explicit written consent from all parties
  • No sharing — Information shared by other participants in group spaces is confidential. Sharing outside the group is a violation of community standards and grounds for removal
  • De-identified content only — Dr. Baird may reference patient cases for educational purposes only when de-identified and with written consent
  • The Skool community platform has its own privacy policy — you agree to both Skool's terms and ours upon joining
09

Section 9Testimonials & Case Studies

Explicit Consent Required

  • Patient testimonials and case discussions are only published with explicit written consent from the patient
  • All testimonials are either fully identified (with consent) or de-identified so that no individual can be recognized
  • Consent to use testimonials may be withdrawn at any time — previously published content will be removed upon request
  • Before-and-after data, lab improvements, and clinical outcomes are only shared with the express consent of the patient
  • Individual results are always disclosed as variable — what is shown is not a guaranteed outcome for any other patient
10

Section 10Your Rights

What You Are Entitled To

You have the following rights regarding your personal information:

  • Access — Request a copy of the personal and clinical data we hold about you
  • Correction — Request that inaccurate information be corrected or updated
  • Deletion — Request deletion of non-clinical personal data (clinical records are subject to retention requirements)
  • Portability — Request your data in a portable format for transfer to another provider
  • Opt-out — Unsubscribe from marketing communications at any time via the link in any email
  • Restriction — Request that we limit how we process your information in certain circumstances
  • Withdraw consent — Where processing is based on your consent, you may withdraw it at any time — this does not affect prior lawful processing

To exercise any of these rights, contact us at [email protected]. We will respond within 30 days.

11

Section 11Contact & Policy Updates

How to Reach Us

For any privacy-related questions, concerns, or requests:

Policy Updates

  • This Privacy Policy may be updated periodically to reflect changes in our practices, services, or legal requirements
  • Material changes will be communicated to enrolled patients via email at least 14 days before taking effect
  • Continued use of our services after a policy update constitutes acceptance of the revised terms
  • The effective date at the top of this page will reflect the most recent revision

Questions About Your Privacy?

We are committed to transparency. If something in this policy is unclear, or if you have concerns about how your data is handled, reach out directly. We will respond personally — not with an auto-reply.

[email protected]  ·  Contact Us  ·  Rejuv Medicine · Louisville, KY

Educational content. Not medical advice. Consult your physician.
© 2026 John Baird, MD, PLLC. All rights reserved.