Privacy Policy for Protecting Personal Health Information (PHI)
Effective Date: January 1, 2025
At Medico Disability Services we understand the importance of protecting your privacy and the confidentiality of your personal health information (PHI). This Privacy Policy outlines how we collect, use, and protect PHI, and the measures we take to safeguard your data. By using our services, you acknowledge that you understand and agree to the terms outlined in this policy.
- Collection of Personal Health Information
We may collect PHI such as:
- Medical history
- Treatment information
- Prescription data
- Health conditions
- Contact information
- Insurance details (if applicable)
- Work and personal history
This information is used to provide you with healthcare-documentation review services and support.
- Use of Personal Health Information
Your PHI may be used for:
- Providing healthcare document review services
- Communication regarding your document review process
- Improving the quality of our services
- Legal or regulatory compliance
We will only use your PHI for the purposes described above and will not disclose your PHI to third parties without your consent, unless required by law.
- Safeguards for Protecting PHI
We have implemented a variety of administrative, physical, and technical safeguards to ensure that your PHI is kept secure. These include:
- HIPAA compliant cloud services for data management
- Access control mechanisms to limit access to PHI to authorized personnel only
- Regular security audits to identify vulnerabilities
- Employee training on data privacy and security best practices
We also comply with applicable laws and regulations, including the Health Insurance Portability and Accountability Act (HIPAA), to maintain the confidentiality and security of your PHI.
- Data Storage and Retention
Your PHI will be stored securely for as long as necessary to fulfill the purposes for which it was collected or as required by law. Once no longer needed, PHI will be securely destroyed or anonymized in accordance with our data retention policy.
- Limitations on Data Security
While we have implemented robust safeguards to protect your PHI, no security system is 100% foolproof. We cannot guarantee that unauthorized access, data breaches, or data leaks will never occur. In the unlikely event that a data breach does occur, we will notify you promptly and take appropriate actions to mitigate any potential harm.
- Your Rights
You have the right to:
- Access your PHI and request copies
- Assistance to request corrections to any inaccurate or incomplete PHI
- Request restrictions on how your PHI is used or disclosed
- File a complaint with us or with the U.S. Department of Health and Human Services (HHS) if you believe your privacy rights have been violated