Elevate wellness Center (“we,” “us,” or “our”) is committed to maintaining the privacy and security of your Protected Health Information (“PHI”), as defined under the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and its implementing regulations. The following outlines our efforts to comply with HIPAA requirements, protect patient confidentiality, and ensure the security of PHI.
1. Our Commitment to Privacy and Security
Protected Health Information (PHI): We handle PHI according to HIPAA’s Privacy, Security, and Breach Notification Rules. This includes any individually identifiable health information that we create, receive, maintain, or transmit, whether in paper or electronic form.
Use and Disclosure: We only use or disclose PHI as permitted by HIPAA or with your written authorization, except where otherwise required by law.
2. Privacy Practices
Notice of Privacy Practices: We make our Notice of Privacy Practices available, which details how we may use and disclose PHI, your patient rights, and our legal obligations to protect your information.
Minimum Necessary Standard: We make reasonable efforts to use, disclose, and request only the minimum necessary PHI to accomplish the intended purpose of any authorized use or disclosure.
Patient Rights: You have rights under HIPAA regarding your PHI, including the right to:
Inspect and obtain copies of your PHI (with limited exceptions).
Request amendments to your PHI.
Receive an accounting of certain disclosures we make of your PHI.
Request restrictions on the use or disclosure of your PHI (though we may not always be able to accommodate these requests).
Request alternative forms of communication or additional privacy safeguards.
3. Security Measures
Administrative Safeguards: We implement policies, procedures, and training programs to ensure that our staff understands their responsibilities in safeguarding PHI. We perform risk assessments to identify potential threats and vulnerabilities, and we take steps to mitigate these risks.
Physical Safeguards: Our facilities utilize secured access controls, locked file cabinets, and restricted office areas to prevent unauthorized viewing or retrieval of PHI.
Technical Safeguards: We use unique user IDs and passwords, role-based access controls, and encryption mechanisms (where appropriate) to protect electronic PHI. We also employ secure networks, firewalls, antivirus software, and other measures to prevent unauthorized access to digital records.
Access Control and Audits: Authorized employees and service providers have access to PHI only as needed for their roles. Routine audits of access logs are conducted to ensure compliance and detect any unauthorized activities.
4. Business Associates
Business Associate Agreements: Any third-party service providers (Business Associates) who create, receive, maintain, or transmit PHI on our behalf must sign a Business Associate Agreement (BAA) requiring them to follow HIPAA guidelines and protect PHI at the same level we do.
5. Breach Notification
Breach Identification and Response: We maintain procedures to identify, investigate, and mitigate any suspected or actual breaches of PHI.
Notification Requirements: If a breach occurs that compromises the privacy or security of your PHI, we will notify you and any applicable government agencies in accordance with HIPAA’s Breach Notification Rule.
6. Patient Requests and Inquiries
Exercising Your Rights: If you wish to exercise your rights under HIPAA, such as requesting copies of your PHI or limiting disclosures, please contact us.
Filing a Complaint: If you believe your privacy rights have been violated, you may file a complaint with us or directly with the U.S. Department of Health and Human Services, Office for Civil Rights. We will not retaliate against you for filing a complaint.
7. Changes to Our HIPAA Compliance Practices
Policy Updates: We reserve the right to amend or update our HIPAA policies and procedures as needed to comply with changes in law or internal practices. Any material changes will be reflected in an updated Notice of Privacy Practices.
8. Contact Information
For questions about this HIPAA Compliance Statement, our privacy practices, or to exercise your HIPAA rights, please contact:
Elevate wellness Center
Call Now : (877) 684-0292
admissions@empowerhealth.group
Acknowledgment:
By engaging with Elevate wellness Center for services, you acknowledge and agree to our commitment to protecting your PHI in accordance with HIPAA. If you have any concerns about how we manage or safeguard your health information, please do not hesitate to reach out to us.