HIPAA Compliance & Your Protected Health Information

At Podiatry & Laser Center, safeguarding your privacy and the security of your health information is our top priority. We fully comply with the Health Insurance Portability and Accountability Act (HIPAA) and related federal regulations to ensure that your Protected Health Information (PHI) is handled lawfully and with the utmost care.

What Is Protected Health Information (PHI)?

PHI includes any information we create or receive about your health status, provision of health care, or payment for health care that can be linked to you. Examples include:

    • Medical history, diagnoses, treatment plans, and test results

    • Your name, address, date of birth, and contact details

    • Billing and insurance information

How We Use & Disclose Your PHI

  1. Treatment

    • Coordinating care among our providers, labs, and imaging centers

    • Sharing relevant information with other health professionals involved in your care

  2. Payment

    • Preparing and sending invoices or superbills for self-pay services

    • Verifying eligibility for HSA/FSA or installment plans
       

  3. Healthcare Operations

    • Quality assurance activities and compliance audits

    • Staff training and practice management
       

  4. Legal Requirements

    • Responding to court orders, subpoenas, or law enforcement requests

Reporting certain infectious diseases as required by public health authorities

Your HIPAA Rights

Under HIPAA, you have the right to:

    1. Inspect & Copy your PHI in our records (we may charge a reasonable fee for copies)
    2. Amend your PHI if you believe it is incomplete or inaccurate
    3. Request Restrictions on certain uses or disclosures of your PHI
    4. Receive an Accounting of disclosures we’ve made for non-treatment purposes
    5. Obtain a Paper Copy of this Notice, even if you agreed to receive it electronically
    6. File a Complaint if you believe your privacy rights have been violated (see “Filing a Complaint” below)

How We Protect Your PHI

We maintain administrative, technical, and physical safeguards to protect your health information, including:

    • Encrypted electronic records and secure, password-protected systems
    • Role-based access controls to limit staff access to only the PHI necessary for their duties
    • Secure disposal of paper records via shredding and digital records via secure deletion
    • Employee training on HIPAA requirements and our privacy policies

Minimum Necessary Standard

Whenever we use, disclose, or request your PHI, we make reasonable efforts to limit it to the minimum necessary to accomplish the intended purpose.

Business Associates

Some services we use (e.g., appointment-booking software, data storage providers) are provided by “Business Associates.” We require these partners to sign strict HIPAA Business Associate Agreements to ensure they also protect your PHI.

File a HIPAA Complaint

If you believe your privacy rights have been violated, you may submit the contact form on the contact page.

We will investigate promptly and notify you of any resolution. You may also file a complaint with the U.S. Department of Health and Human Services, Office for Civil Rights (OCR), online at https://www.hhs.gov/hipaa/filing-a-complaint.

Changes to This Notice

We may update this HIPAA Privacy & Security Notice as laws or our practices change. Any revisions will be posted here with an updated “Last updated” date. Please review periodically to stay informed of your rights and our responsibilities.

By using our services or visiting our website, you acknowledge that you have read and agree to the terms of this HIPAA Notice.

Lorem ipsum dolor sit amet, consectetur adipiscing elit. Ut elit tellus, luctus nec ullamcorper mattis, pulvinar dapibus leo.