Privacy Policy

Personal Information

We collect personal information that you voluntarily provide to us, including but not limited to:

• Name, date of birth, and contact information (address, phone number, email)
• Emergency contact information and authorized representatives
• Insurance information (if applicable for referrals or reimbursement purposes)
• Payment and billing information
• Government-issued identification numbers

Health Information

To provide you with quality healthcare services, we collect protected health information (PHI), including:

• Medical history, diagnoses, and treatment records
• Medications, allergies, and immunization records
• Laboratory and diagnostic test results
• Clinical notes and care plans developed during your treatment
• Specialist referrals and coordination documentation
• Communications between you and our practice regarding your health

Website and Analytics Information

When you visit our website, we may automatically collect certain information, including:

• Device information (browser type, operating system, device type)
• IP address and approximate geographic location
• Pages visited, time spent on pages, and navigation patterns
• Referring website or source
• Cookies and similar tracking technologies (see our Cookie Policy for more details)

We use the information we collect for the following purposes:

Healthcare Services

• Providing diagnosis, treatment, and ongoing medical care
• Coordinating care with specialists and other healthcare providers
• Processing prescriptions and referrals
• Communicating with you about your health and appointments
• Maintaining accurate and complete medical records

Practice Operations

• Processing membership payments and billing
• Scheduling appointments and sending reminders
• Responding to your inquiries and providing customer service
• Verifying your identity and eligibility for services
• Complying with legal and regulatory requirements

Communication

• Sending appointment reminders and health-related notifications
• Providing practice updates and health education materials
• Responding to your questions and requests for information
• Sending newsletters and updates (with your consent, where required)

Website Improvement

• Analyzing website usage to improve user experience
• Ensuring website security and preventing fraud
• Understanding how visitors interact with our content

We take the security of your information seriously and implement comprehensive safeguards to protect your personal and health information in accordance with HIPAA requirements and industry best practices.

Administrative Safeguards

• Written policies and procedures governing the use and disclosure of PHI
• Regular training for all staff on privacy and security practices
• Designated privacy officer responsible for compliance oversight
• Business Associate Agreements with all third parties who handle PHI

Technical Safeguards

• Encryption of electronic health records and communications
• Secure, HIPAA-compliant electronic health record system
• Access controls and unique user identification for all systems
• Automatic session timeouts and secure login procedures
• Regular security assessments and vulnerability testing

Physical Safeguards

• Secure storage of paper records in locked facilities
• Controlled access to areas where PHI is stored or accessed
• Proper disposal of documents containing PHI
• Secure transport of medical equipment and records during home visits

We work with trusted third-party service providers to support our practice operations. These providers are carefully selected and are required to maintain appropriate security measures and comply with applicable privacy laws.

Healthcare Partners

• Electronic Health Record (EHR) system providers (with signed Business Associate Agreements)
• Laboratory and diagnostic testing facilities
• Specialist physicians and healthcare facilities for referrals
• Pharmacy services for prescription processing

Payment Processors

We use secure, PCI-compliant payment processors to handle membership fees and payments. We do not store complete credit card numbers on our systems. All payment transactions are encrypted and processed through secure channels.

Website Analytics

Our website may use analytics services (such as Google Analytics) to help us understand how visitors use our site. These services collect information about your use of our website in an anonymized or aggregated form. This information is used to improve our website and does not include any protected health information.

Communication Services

We may use third-party services for appointment reminders, email communications, and secure messaging. These services are selected for their security practices and, where applicable, HIPAA compliance.

Under HIPAA and applicable state laws, you have specific rights regarding your protected health information:

Right to Access

You have the right to inspect and obtain a copy of your medical records and other health information we maintain about you. We will provide your records in the format you request if readily producible, or in another mutually agreeable format.

Right to Amend

If you believe that information in your medical record is incorrect or incomplete, you may request that we amend it. We may deny requests in certain circumstances, but we will provide you with a written explanation and your right to submit a statement of disagreement.

Right to an Accounting of Disclosures

You have the right to receive a list of certain disclosures we have made of your health information, excluding disclosures for treatment, payment, healthcare operations, and certain other purposes.

Right to Request Restrictions

You may request restrictions on how we use or disclose your health information. While we are not required to agree to all requests, we will carefully consider them and comply with requests we agree to.

Right to Confidential Communications

You may request that we communicate with you about health matters in a specific way or at a specific location. For example, you may ask that we only contact you at work or by mail.

Right to a Paper Copy

You have the right to obtain a paper copy of this Privacy Policy and our Notice of Privacy Practices upon request, even if you have agreed to receive them electronically.

Right to File a Complaint

If you believe your privacy rights have been violated, you may file a complaint with our practice or with the U.S. Department of Health and Human Services Office for Civil Rights. We will not retaliate against you for filing a complaint.