The Sugar Shack Logo
📍 Plan Stop
Back to Storefront
HIPAA & OMMA Compliant

Privacy Policy

Last Updated: May 27, 2026

At The Sugar Shack Lawton, we prioritize the protection of your medical records and personal data. This privacy policy describes how we collect, safeguard, and process patient information in compliance with the Oklahoma Medical Marijuana Authority (OMMA) and HIPAA guidelines.

1. Information We Collect

To verify patient credentials and maintain regulatory compliance, we collect:

  • OMMA Patient License status and expiration details.
  • State-issued photo identification (Driver's license or Passport).
  • Contact details (phone number, email address) for loyalty app registrations.
  • In-store checkout transactional data required for Metrc compliance reports.

2. Data Protection & Security

All digital patient record files are stored on secure cloud networks encrypted under industry-standard protocols. We do not sell, rent, or distribute your patient records or personal telephone details to any third-party marketing companies. Personal data is only utilized for:

  • OMMA state licensing compliance audits.
  • Compiling transaction logs requested by state agencies.
  • Routing SMS loyalty notifications that you have explicitly opted into.

3. Patient Control & Opt-Out

You maintain complete control over your loyalty profile. You can opt-out of notifications at any point:

  • SMS Marketing: Reply with "STOP" to cancel message broadcasts.
  • Loyalty App Profile: Email contact details or request deleting your active profile history in-store.

Compliance Inquiries

For privacy concerns or to audit your collected storefront profile, contact us at:
Email: compliance@sugarshackok.com
Phone: (580) 699-7422