Privacy Policy

Privacy Policy

Archangel Michael Health, PA
Effective June 10, 2026 · Version v2026.06.10

1. Who We Are

Archangel Michael Health, PA is a telehealth-first direct primary care practice owned by Christopher L. Bray, MD, PhD, CPE, FACP — board-certified in Internal and Integrative Medicine. This website, archangelmichaelhealth.com, is operated by the practice.

Archangel Michael Health, PA
Phone: 352-441-9110 · Fax: 352-441-9114
Email: [email protected]

2. Information We Collect

We collect only what we need, and we will tell you why we are asking for it.

• Membership and guide-library accounts. When you create an account to access our online health-guide library, we collect your name and email address only. That is the entire account record.
• Contact forms and patient applications. If you send us a message or apply to become a patient, we receive whatever you choose to include — typically your name, contact details, and the reason you are reaching out.
• Payments. Payments are processed by Stripe, our payment processor. When you pay, your card details go directly to Stripe — we never see or store your card numbers. Stripe receives billing details only (such as your name, email, and billing address). Stripe never receives medical information.
• Voluntary communications. If you email, call, or text us, we keep a record of that communication so we can respond and follow up appropriately.

3. What We Don’t Do

• We do not sell your personal information, and we do not share it with third parties for their own marketing.
• We do not use advertising trackers or ad pixels on this website.
• Our only analytics tool is Cloudflare Web Analytics — a privacy-first, cookieless tool that measures overall site traffic (page views, load times), not your identity.
• We do not allow third-party advertising or analytics trackers on logged-in member pages or patient-application pages, period.

4. Cookies

This site uses a small number of cookies, for narrow purposes:

• Essential cookies keep you logged in and maintain your session while you move between pages. The site cannot function for members without them.
• Accessibility-preference cookies remember the settings you choose in our accessibility widget, provided by UserWay (such as larger text or higher contrast), so you don’t have to re-select them on every visit.

You can control or delete cookies through your browser’s settings — most browsers let you block cookies entirely, block third-party cookies, or clear cookies when you close the browser. Look under “Privacy” or “Privacy and security” in your browser’s settings menu. Blocking essential cookies may prevent member login from working.

5. Third-Party Services on This Site

A few outside services help run this website. Here is each one, and what it sees:

• Cloudflare delivers and protects the site (a content-delivery and security network) and provides the cookieless analytics described above. Like any service that delivers web pages, it processes standard technical data such as your IP address and browser type.
• UserWay provides the accessibility widget available on every page. It loads from UserWay’s servers and stores your accessibility preferences as described in the Cookies section.
• Google Fonts supplies the site’s typefaces. Your browser fetches font files from Google’s servers, which involves the same standard technical data (IP address, browser type).
• Stripe handles checkout when you pay, as described in Section 2 — card details go directly to Stripe, never to us.

Social media. We maintain accounts on X, Instagram, and Telegram (and Dr. Bray on LinkedIn) for general announcements and education only. We never request or share personal health information on social media — please don’t send us health details through those platforms; use the patient portal or call us instead. Each platform has its own privacy policy.

6. Text Messaging & Phone Calls

Text messages (SMS)

With your opt-in consent, we send text messages related to your care — such as appointment reminders, scheduling, and follow-up communications. The basics of our SMS program:

• Message frequency varies.
• Message and data rates may apply, depending on your mobile plan.
• Reply STOP at any time to cancel; reply HELP for help.
• Consent to receive texts is not a condition of purchase or treatment — you can decline texting and still receive full care.
• If you opt out, we honor your request within 10 business days (and usually much sooner).

Phone calls

When you call us, your call may be answered by an AI assistant that identifies itself as an AI at the start of the call. The assistant is configured not to retain conversations, and it will ask you not to share personal health details — please save those for Dr. Bray and the secure patient portal. Voicemail messages are stored on HIPAA-compliant systems.

7. Email

Our practice email runs on HIPAA-capable business platforms (Microsoft and Google business services), not consumer email accounts.

If we offer email newsletters, they are entirely optional and separate from care-related communications. Every newsletter includes its own unsubscribe link, and unsubscribing from a newsletter never affects communications about your care.

8. Data Security

We protect the personal information described in this policy with safeguards that include:

• Encryption of data in transit and at rest;
• Access controls so information is available only to those who need it; and
• Backups and activity logging to preserve data and detect problems.

9. Data Retention & Your Choices

We keep website-related personal information only as long as we need it for the purposes described in this policy. You have real choices, and exercising them is simple:

• Account deletion. You may ask us to delete your membership or guide-library account at any time.
• Communication preferences. You may opt out of texts (reply STOP), unsubscribe from newsletters (use the link in any newsletter), or ask us to change how we contact you.
• How to ask. Email [email protected] or call 352-441-9110 and tell us what you’d like — we will take care of it.

Note: medical records are different. They are retained under the schedules described in our Notice of Privacy Practices and applicable law, and cannot be deleted on request.

10. If a Breach Happens

If a security incident affects your personal information, we will notify you consistent with applicable law — including the FTC Health Breach Notification Rule where it applies — without unreasonable delay, and we will tell you plainly what happened and what we are doing about it.

11. Children

This website and our membership accounts are not directed to children under 13, and we do not knowingly collect personal information from children under 13 online. Patients under 18 require parental or guardian involvement under our practice policies.

12. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will post the revised policy on this page with a new effective date. Material changes will be noted clearly at the top of the policy.

This policy is effective as of June 10, 2026.

13. Contact Us

Questions about this policy, or about how we handle your information? We’re glad to help.

For concerns about your health information specifically, our Notice of Privacy Practices explains your HIPAA rights and how to file a complaint with us or with the U.S. Department of Health & Human Services, Office for Civil Rights. We will never retaliate against you for raising a privacy concern.

Archangel Michael Health, PA
Attn: Privacy Officer / Practice Manager
Phone: 352-441-9110
Fax: 352-441-9114
Email: [email protected]
Website: https://archangelmichaelhealth.com