Follow us on


At Boston Sports & Biologics, we are committed to protecting the privacy and security of visitors to our website. This website privacy policy (“Privacy Policy”) and additional policies linked below will tell you what information we collect, how it is used and your options as you interact with our website. By using our website, you consent to the collection, use and sharing of information as described in this Privacy Policy. Please read the following carefully before using the website.

“Protected health information” as defined under the Health Insurance Portability & Accountability Act and related regulations (collectively referred to as “HIPAA”), including information you provide while being treated as a patient of Boston Sports & Biologics or within the Patient Gateway portal, is separate and subject to the Notice of Privacy Policy as required by the Health Insurance Portability & Accountability Act of 1996 (HIPAA).

Your Consent

By providing us with an email address or phone number, you agree that we may use your email address or phone number to follow up on your inquery and communicate with you about our services.

Information We Collect

You may use our website without providing any personal information. Our Website and our Service Providers only collect personally identifiable information ("PII") with your consent. Collection of PII occurs if you enter information to contact us or register for an appointment on the Website. You may visit our Site anonymously, but when you fill out a request to “Contact Us” or request an appointment you may complete online forms that ask you to provide PII. For example, you may be asked to provide PPI such as name, phone number, email address, and medical information.

If you submit any personal information relating to other people, you represent that you have the authority to do so and permit us to use the information in accordance with this Privacy Policy. By submitting personal information, you grant Boston Sports & Biologics the right to transmit, monitor, retrieve, store and use your information in connection with the operation of the website.

Retention and Accuracy of PII

Personal information is kept only for as long as it is required. If PII is no longer required, we destroy it or render it anonymous. We rely on the information that you give us. If your personal information changes, please notify us.

Non-Personally Identifiable Information

Our website and third-party products or services (“Service Providers”) may collect non-personally identifiable (anonymous) information ("Non-PII") from visitors. Third-party products include Google, and other Service Providers who help us track and analyze visitor activity on the website, measure the effectiveness of our advertising efforts, and support the optimization of our digital marketing campaigns. Non-PII cannot identify a specific individual unless combined with Personally Identifiable Information, and examples of Non-PII that may be collected by the Website or required to provide the Services, including zip code or “Cookies”.

“Cookies,” or tracking pixels and related technologies are small data files that online services can store on, and retrieve from, a user’s computer or mobile device through the user’s web browser. The information is stored and retrievable either for the duration of a website visit (known as “session cookies”), or until some later point in time set by the website setting the cookie (known as “persistent cookies”).

The following are examples of Non-PII third party service providers collect with cookies:

  • Browser type and operating system
  • Date and time of visit
  • Referring web page
  • Links that connected you to the Website
  • IP address
  • Mobile Device ID
  • Medical condition or symptoms

We and our Service Providers use this information in the aggregate to understand how our visitors as a group use different resources and to help us improve our website. We and our Service Providers also collect information about the activity of individual website users. Most internet browsers accept cookies by default, but you can modify your browser preferences to block or restrict cookies if you do not want your web browsing activity tracked. We are not responsible for the effectiveness or compliance of third party opt-out mechanisms or programs.

Our Service Providers may acquire additional information about your activity on our website, including pages you visit, access times, visit duration, how you arrived at our website and your IP address. An IP address is a number that identifies a device connected to the Internet. For most devices, the IP address changes on at least a weekly basis. Our Service Providers may also acquire device identifiers and specific information about the browser you use. In some cases, this information may be unique to you.

Data Security

Boston Sports & Biologics is committed to protecting the privacy of the personal information you provide to us via this website so that we can make sure it remains as secure as possible. Accordingly, we use reasonable efforts to prevent unauthorized access. We use a secure firewall and a security infrastructure that protects the integrity and privacy of personal information submitted to us via this website. Although we work hard to protect your personal information, we cannot guarantee the security of any information you transmit to us through online applications, and you do so at your own risk. Depending on the nature of the inquiry, your communication could be discarded or archived. If you wish, you can contact us instead by telephone at the numbers provided throughout our website.

In order to be in line with Fair Information Practices we will take the following responsive action, should a data breach occur:

  • We will notify the users via email? Within 1 business day.

California Online Personal Privacy Act Disclosures

The California Online Privacy Protection Act (CalOPPA) was drafted to protect the privacy rights and personal data of California residents. According to CalOPPA we agree to the following:

  • Users can visit our site anonymously.
  • Our Privacy Policy link includes the word ‘Privacy’, and can be easily be found through a link to the privacy policy on our home page.
    Users will be notified of any privacy policy changes on our Privacy Policy Page by noting the date the policy was revised.
  • Users are able to change their personal information by emailing us
    We honor do not track signals and do not track, plant cookies, or use advertising when a Do Not Track (DNT) browser mechanism is in place.

Users in Canada (PIPEDA)

Canada’s federal law, the Personal Information Protection and Electronic Documents Act (PIPEDA) applies to all personal data, health or otherwise regardless of the entity. All Canadian provinces, with exception of British Columbia and Nova Scotia, allow health data to reside in the United States. We do not intend to collect PII from Canadian users from British Columbia and Nova Scotia, and if you are from these Canadian provinces do not provide us with PII. If we learn that we collected PII from a user from these Canadian provinces, we will promptly delete that information.

The 10 principles of PIPEDA are covered in this Website Privacy Policy, including: Accountability; Identifying Purposes; Consent; Limiting Collection; Limiting Use, Disclosure and Retention; Accuracy; Safeguards; Openness; Individual Access; and Challenging Compliance. Provided PII will only be used to by Boston Sports & Biologics to facilitate care. Information can be corrected as discussed above, and attempts will be made to safeguard the information as detailed in this policy. Information will be destroyed according to the “Retention and Accuracy of PII” policy, but no information will be destroyed after a valid access request.

Users in the European Union (EU)

The General Data Protection Regulation (GDPR) governs the protection and dissemination of personal data and digital privacy for people located in the EU. By law, you can ask us what information we hold about you, and you can ask us to correct it if it is inaccurate or you can request that your data be erased. If we have asked for your consent to process your personal data, you may withdraw that consent at any time. Where you have withdrawn your consent to our processing of your personal data, we will cease to process that information, though your withdrawal of consent does not affect the lawfulness of our actions before you withdraw your consent.

Children Online Privacy Protection Act (COPPA)
The Children’s Online Privacy Protection Act (COPPA) protects against the collection of personal information from children under 13, and puts parents in control. The Federal Trade Commission (FTC) enforces the COPPA Rule, which spells out what operators of websites and online services must do to protect children’s privacy and safety online.

  • We do not specifically market to children under 13.

Third-Party Vendors/Content Providers

Boston Sports & Biologics shares information with third parties, including as required by law or in order to provide the services requested. Mass General engages reputable third-party vendors to help us manage this website, provide content and information, and interact better with our patients and visitors.

Links to External Websites

This online Privacy Policy applies only to this website. This website contains links to other websites. Please be aware that this Privacy Policy does not apply to those websites. We encourage you to read the Privacy Policy on any other websites before providing them with personal information.

Changes to This Policy

Boston Sports & Biologics has the right to change or update this Website Privacy Policy from time to time without notice. We encourage you to periodically check back and review this policy so that you know what information we collect, how we use it and with whom we share it.

Last Revised

June 9, 2021