Ensuring compliance with the Health Insurance Portability and Accountability Act (HIPAA) is essential for protecting patient information and maintaining trust. Based on the available information, here is a HIPAA Compliance Policy tailored for Dr. Ivy Med Aesthetics:
HIPAA Compliance Policy
Effective Date: February 12, 2025
I. Introduction
Dr. Ivy Med Aesthetics is committed to safeguarding the privacy and security of our patients' Protected Health Information (PHI) in compliance with the Health Insurance Portability and Accountability Act of 1996 (HIPAA). This policy outlines our practices for handling PHI and affirms our dedication to maintaining the confidentiality, integrity, and availability of patient information.
II. Definitions
Protected Health Information (PHI): Any information about health status, provision of healthcare, or payment for healthcare that can be linked to an individual.
Covered Entity: An entity that transmits any health information in electronic form in connection with a HIPAA transaction.
III. Use and Disclosure of PHI
We use and disclose PHI solely for treatment, payment, and healthcare operations as permitted under HIPAA:
Treatment: Sharing PHI with other healthcare providers involved in your care.
Payment: Using PHI to obtain payment for services provided.
Healthcare Operations: Using PHI for internal activities such as quality assessment and improvement.
Any other use or disclosure of PHI requires the patient's written authorization, which can be revoked at any time.
IV. Patient Rights
Patients have the following rights regarding their PHI:
Right to Access: Patients can request to view or obtain copies of their PHI.
Right to Amend: Patients can request corrections to their PHI if they believe it is incorrect or incomplete.
Right to an Accounting of Disclosures: Patients can request a list of disclosures of their PHI made by our practice.
Right to Request Restrictions: Patients can request limitations on how their PHI is used or disclosed.
Right to Confidential Communications: Patients can request that communications about their PHI be conducted through alternative means or locations.
V. Safeguards
We implement the following safeguards to protect PHI:
Administrative Safeguards: Policies and procedures are in place to manage the selection, development, implementation, and maintenance of security measures.
Physical Safeguards: Measures to protect electronic systems and related buildings and equipment from natural and environmental hazards and unauthorized intrusion.
Technical Safeguards: Technology and related policies and procedures that protect and control access to PHI.
VI. Training
All employees, contractors, and volunteers receive training on our HIPAA policies and procedures to ensure compliance and protect patient information.
VII. Breach Notification
In the event of a breach of unsecured PHI, we will notify affected individuals, the Department of Health and Human Services (HHS), and, in certain circumstances, the media, in accordance with HIPAA requirements.
VIII. Complaints
Patients may file a complaint if they believe their privacy rights have been violated by contacting us at:
Dr. Ivy Med Aesthetics 5542 S Flamingo Rd Cooper City, FL 33330 Phone: (954) 807-2748 Email: coopercity@bodybriteusa.com
Patients also have the right to file a complaint with the Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services.
IX. Changes to This Policy
We reserve the right to amend this policy at any time to reflect changes in our practices or the law. Any changes will be communicated through our website.
By adhering to this policy, Dr. Ivy Med Aesthetics ensures compliance with HIPAA regulations and demonstrates our commitment to protecting patient privacy.