SMS Messaging Policy

How patients consent to receive SMS messages on Luxey

This page documents the four patient-facing opt-in flows used by Luxey-powered clinics to collect explicit consent for transactional and operational SMS communications. It is provided for transparency, compliance review, and A2P 10DLC verification.

Last updated: April 27, 2026 · Status: Pre-launch (platform launch Q3 2026)

Overview

Luxey is a practice management and EMR platform for medical aesthetics clinics. End users are patients of clinics that use Luxey. SMS messages are sent on behalf of those clinics for transactional and operational purposes only — appointment confirmations, appointment reminders, rescheduling notifications, intake instructions, treatment follow-up care, payment receipts, one-time passcodes (OTPs) for account login, and two-way patient communication initiated by the patient or sent by the clinic in response to a patient inquiry.

Marketing and promotional messages are not sent under transactional or 2FA campaigns and require separate, explicit consent collected through an independent marketing opt-in.

Pre-launch notice for reviewers Luxey is currently in pre-launch development and the patient-facing booking flow is not yet publicly accessible. The mockups on this page accurately represent the consent collection screens as designed and as they will appear at launch. Live screenshots, click-through demonstrations, or pre-production access can be provided on request — contact support@luxey.co.

The four opt-in flows

Patients provide their mobile number and consent through one or more of the following flows, depending on the clinic's intake configuration. Every flow uses the same required, unchecked-by-default consent checkbox with identical disclosure language.

Flow 1

Online booking

Public Luxey-hosted booking page accessed via the clinic's website or direct booking link

Book your appointment

[Clinic Name] · Online booking

First name

Sarah

Last name

Mitchell

sarah.m@example.com

Mobile phone number

(303) 555-0142

Confirm booking

Phone field labeled clearly — patient knowingly provides their mobile number for SMS contact.

Required, unchecked-by-default checkbox — patient must take affirmative action to consent. Booking cannot complete without it.

All required disclosures present — message types, "message and data rates may apply," frequency, STOP/HELP, and links to Privacy Policy and Terms of Service.

Consent logged with timestamp, IP address, and method — auditable record stored in the Luxey platform.

Flow 2

In-person check-in

Staff-handed tablet at the clinic front desk during arrival

Welcome — please confirm your contact info

[Clinic Name] · Front desk check-in

Mobile phone number

(303) 555-0142

sarah.m@example.com

Complete check-in

Tablet handed directly to patient — patient enters and confirms their own information; staff does not check the consent box on the patient's behalf.

Identical consent language across all flows ensures patients see the same disclosures regardless of how they engage with the clinic.

Flow 3

Intake form completion

Sent to the patient via secure link prior to their appointment

Pre-appointment intake

Step 1 of 4 — Contact & communication preferences

Confirm your mobile number

(303) 555-0142

Continue to medical history

Consent collected before clinical data entry — patient cannot proceed past Step 1 of intake without checking the box.

Flow 4

Patient account registration

Luxey patient portal account creation — supports 2FA enrollment for account security

Create your patient account

Access your records, treatment history, and appointments

sarah.m@example.com

Mobile phone number

(303) 555-0142

Password

••••••••••••

Create account

Combined consent for transactional + 2FA — consent language explicitly covers OTP messages alongside other transactional communications.

STOP applies to non-security messages only — 2FA codes remain available because they are a security function tied to account access. Patients who wish to remove their number entirely can contact support@luxey.co.

Required disclosures — verification checklist

Every consent checkbox in every flow contains the following disclosures, as required by CTIA and carrier guidelines:

✓ Program name and sender identified — patient sees the clinic name and platform name ("via Luxey") clearly.

✓ Message types described — appointment confirmations, reminders, intake instructions, account communications, OTPs (where applicable).

✓ Message and data rates disclosure — "Message and data rates may apply."

✓ Frequency disclosure — "Message frequency varies (typically 2-4 per appointment)."

✓ Opt-out instructions — "Reply STOP to opt out."

✓ Help instructions — "HELP for help."

✓ Privacy Policy link — direct link adjacent to checkbox to https://luxey.co/privacy-policy.html (Section 4 covers SMS specifically).

✓ Terms of Service link — direct link to https://luxey.co/terms-of-service.html (Section 6 covers SMS specifically).

✓ Unchecked by default — patient must take affirmative action.

✓ Consent not a condition of purchase — patient can opt out and still receive clinical service.

✓ No third-party sharing — mobile numbers are never sold, rented, or shared with third parties for their own marketing purposes.

Opt-out and help handling

Patients can opt out of SMS messages at any time by replying STOP to any message they receive. Upon receiving STOP, Luxey:

Sends a single confirmation message: "You have successfully been unsubscribed. You will not receive any more messages from this number. Reply START to resubscribe."
Immediately ceases all further sends to that number under the relevant campaign.
Logs the opt-out event with timestamp.

Patients can also reply HELP at any time to receive a support response with the program name, sender clinic, and contact information for further assistance (support@luxey.co).

Twilio's Advanced Opt-Out feature is enabled across all Luxey messaging services, which honors STOP, STOPALL, UNSUBSCRIBE, CANCEL, END, QUIT, REVOKE, and OPTOUT keywords automatically.

Documentation references

Privacy Policy, Section 4 — SMS and Email Communications: https://luxey.co/privacy-policy.html
Terms of Service, Section 6 — SMS and Communication Terms: https://luxey.co/terms-of-service.html
Reviewer contact for live demonstration or additional materials: support@luxey.co