THIS NOTICE DESCRIBES HOW MEDICAL INFORMATION ABOUT YOU MAY BE USED AND DISCLOSED AND HOW YOU CAN GET ACCESS TO THIS INFORMATION. PLEASE REVIEW IT CAREFULLY.
Heart Watch 2 is committed to protecting the privacy of your identifiable health information. This information is known as “protected health information” or “PHI.” PHI includes laboratory test orders and test results as well as invoices for the healthcare services we provide.
Heart Watch 2 is required by law to maintain the privacy of your PHI. We are also required to provide you with this Notice of our legal duties and privacy practices upon request. It describes our legal duties, privacy practices and your patient rights as determined by the Health Insurance Portability and Accountability Act (HIPAA) of 1996. We are required to follow the terms of this Notice currently in effect. We are required to notify affected individuals in the event is a breach involving unsecured protected health information. PHI is stored electronically and is subject to electronic disclosure.
How May We Use or Disclose Your Health Information
We use your PHI for treatment, payment, or healthcare operations purposes and for other purposes permitted or required by law. Not every use or disclosure is listed in this Notice, but all of our uses or disclosures of your health information will fall into one of the categories listed below.
We need your written authorization to use or disclose your health information for any purpose not covered by one of the categories below. Subject to compliance with limited exceptions, we will not use or disclose psychotherapy notes, use of disclose your PHI for marketing purposes to sell your PHI, unless you have signed an authorization. You may revoke any authorization you sign at any time. If you revoke your authorization, we will no longer use or disclose your health information for the reasons stated in your authorization except to the extent we have already taken action based on your authorization.
The law permits us to use and disclose your health information for the following purposes:
Heart Watch 2 collects PHI from you as we provide our wellness or immunization services. Treatment is one of the most common reasons we may use or disclose your PHI.
For example, we may provide you with your screening results or use your information to contact you to obtain another specimen, if necessary.
Heart Watch 2 will use and disclose your PHI for purposes of billing and payment. For example, we may disclose your PHI to health plans or other payers to determine whether you are enrolled with the payer or eligible for health benefits or to obtain payment for our services. If you are insured under another person’s health insurance policy (for example, parent, spouse, domestic partner or a former spouse), we may also send invoices to the subscriber whose policy covers your health services.
Heart Watch 2 may use and disclose your PHI for activities necessary to support our healthcare operations, such as performing quality checks on our testing, internal audits, arranging for legal services or developing reference ranges for our tests.
We may provide your PHI to other companies or individuals that need the information to provide services to us. These are entities, known as “business associates,” are required to maintain the privacy and security of PHI. For example, we may provide information to companies that assist us with the billing of our services. We may also use an outside collection agency to obtain payment when necessary.
As Required by law
We may use an disclose your PHI as require by law.
Law Enforcement Activities and Legal Proceedings
We may use and disclose your PHI if necessary, to prevent or lessen a serious threat to your health and safety or that of another person. We may also provide PHI to law enforcement officials, for example, in response to a warrant, investigative demand or similar legal process, or for officials to identify or locate a suspect, fugitive, material witness, or missing person. We may also disclose PHI to appropriate agencies if we reasonably believe an individual to be a victim of abuse, neglect or domestic violence.
We may disclose your PHI as required to comply with a court or administrative order. We may disclose your PHI in response to a subpoena, discovery request or other legal processes in the course of a judicial or administrative proceeding, but only if efforts have been made to tell you about the request or to obtain an order of protection for the requested information.
We may disclose PHI for research purposes when an Institutional Review Board or privacy board has reviewed the research proposal and established protocols to ensure the privacy of your PHI and determined that the researcher does not need to obtain your authorization prior to using your PHI for research purposes. We may also disclose information about decedents to researchers under certain circumstances.
Other Uses and Disclosures
As permitted by the HIPAA, we may disclose your PHI to:
- Public Health Authorities
- The Food and Drug Administration
- Health Oversight Agencies
- Military Command Authorities
- National Security and Intelligence Organizations
- Correctional Institutions
- Organ and Tissue Donation Organizations
- Coroners, Medical Examiners, and Funeral Directors
- Workers Compensation Agents
We may also disclose relevant PHI to a family member, friend, or anyone else you designate in order for that person to be involved in your care or payment related to your care. We may also disclose PHI to those assisting in disaster relief efforts so that others can be notified about your condition, status, and location.
Note Regarding State Law
For all of the above purposes, when state law is more restrictive than federal law, we are required to follow the more restrictive state law.
Your Patient Rights
Receive Test Information
You have the right to access your PHI that we have created. You may receive your test results by completing and submitting a request form. You may call us at 1-415-822-2222 to obtain the request form. If you request for test information is denied, you may request that the denial be reviewed.
Amend Health Information
You may request amendments to your PHI by making a written request. However, we may deny the request in some cases (such as if we determine the PHI is accurate). If we deny your request to change your PHI we will provide you with a written explanation of the reason for denial and additional information regarding further actions that you may take.
Accounting of Disclosures
You have the right to receive a list of certain disclosures of your PHI made by Heart Watch 2 in the past six years from the date of your written request. Under the law, this does not include disclosures made for purposes if treatment, payment, or healthcare operations or certain other purposes.
You may request that we agree to restrictions on certain uses and disclosures of you PHI. We are not required to agree to your requests, except for requests to limit disclosures to your health plan for purposes of payment or healthcare operations when you have paid us for the item or service covered by the request out-of-pocket and in full and when the uses or disclosures are not required by law.
Request Confidential Communications
You have the right to request that we send your health information by alternative means or to an alternative address, and we will accommodate reasonable requests.
Copy of this Notice
You have the right to obtain a paper copy of this Notice upon request.
How to Exercise your Rights
You may write or send an email to us with your specific request, including requesting a form to complete to obtain a copy of your test results. Heart Watch 2 will consider your request and provide you a response.
If you believe your privacy rights have been violated, you have the right to file a complaint with us. You also have the right to file a complaint with the Secretary of the U.S. Department of Health and Human Services, Office for Civil Rights, Heart Watch 2 will not retaliate against any individual for filing a complaint.
To file a complaint with us, or should you have any questions about this Notice, send an email to us at firstname.lastname@example.org, or write to us at the following address:
Heart Watch 2
582 Market St. Suite 1004
San Francisco, Ca. 94104
We reserve the right to amend the terms of this Notice to reflect changes in our privacy practices and to make the new terms and practices applicable to all PHI that we maintain about you, including PHI created or received prior to the effective date of the Notice revision. Our Notice is displayed on our website and a copy is available upon request.