H.O.P.E. Consulting, LLC, in affiliation with Maverick Education & Behavioral Solutions, LLC is committed to providing you with the highest level of quality care, and adhering to ethical and legal standards in maintaining the confidentiality of your health information. We strive to protect the privacy of all our clients’ information, according to the guidelines delineated by the Health Insurance Portability and Accountability Act (HIPAA, 1996).
2 Ways We Protect Your Privacy
- We frequently communicate using email. Thus, we use a HIPAA compliant email server which encrypts all correspondence, to ensure protected health information (PHI) remains confidential.
- We use laptops which include up-to-date security and Microsoft products, a vault which encrypts documents, multiple layers of password protection, and allows for remote deletion.
- All electronic PHI (ePHI) information is housed in a secure HIPAA compliant cloud-based storage system.
- All paper files are stored in locked filing cabinets and rooms.
- We have signed Business Associate Agreements with outside companies.
- We limit access to our clients’ health information to only those employees who need it to complete their job responsibilities, and restrict discussions of client information to private areas and with authorized persons.
3 Collection and Use of Personal Information
We do not collect personal information about visitors to this website, with the exception of the following:
- Standard Web logs that collect information about all visits on this website in order to assist us in making improvements.
- Internet cookies may be placed on computer hard drives for tracking purposes. This saves data about individuals, such as their name, user name, and pages they visited. It is possible to have your computer warn you each time a cookie is being sent, or to turn off all cookies.
- We collect information from completed forms (paper or electronic) and we use this information to respond to requests, improve our services, or demonstrate the quality of our services to auditors and government agencies.
4 Use and Disclosure of Personal Information
We typically share your health information in the following ways, which does not require your permission.
- To check your eligibility and enrollment authorization.
- To carry out insurance billing and facilitate insurance payments for claims for service from health plans or other entities.
- To provide treatment and to provide coordination of care with other professionals, inside and outside of this agency, who are involved in your care.
- To run our practice, improve your care, and contact you when necessary.
- To Business Associates with whom we contract to provide certain services or business operations on our behalf.
- For health care operations including staff training and quality assurance purposes in order to evaluate treatment effectiveness, evaluate staff performance, and improve the quality of our services.
- To share with government agencies when there are questions regarding abuse, neglect, or domestic violence.
- We may disclose personal health information to any person performing audit, legal, operational or other services for us, or when required by law.
We will not use or share your information other than as described here unless you consent in writing. If you provide written consent and then change your mind, you may rescind your consent in writing. However, we are not be able to retrieve information that has already been shared with your permission.
5 Your Rights
- You have the right to ask to see or receive an electronic or paper copy (if available) of the medical record we have on file about your ABA treatment. We will provide this information, usually within 30 days of your written request. We may charge a reasonable, cost-based fee. Please note that we do not consider web log information to be personal information.
- You have the right to ask us to correct PHI that you believe is incorrect or complete. We may deny the request, but we will tell you why, usually within 30 days of receiving the written request.
- You have the right to ask us to communicate with you about health matters in an alternative, reasonable way, such as only via phone instead of email, or at a different address. We will accept reasonable written requests when necessary to protect your health information.
- You have the right to request restrictions or limitations on the PHI we use or disclose about you for treatment, payment, or health care operations. We are not required to agree to your request, but we will tell you why, usually within 30 days of receiving the written request.
- You have the right to request a list of disclosures of your health information or signed consents for disclosures. If requested in writing, we will provide you this information, except for requests about payment, health care operations, and information disclosed for treatment.
- You have the right to receive notification if an unauthorized person accesses or receives your unsecured protected health information in a manner not permitted by HIPAA.
6 Copies and Revisions
It may become necessary to change the terms of this notice in future, and we reserve the right to do so as necessary to protect our clients’ privacy. A revised notice will apply to information we already have collected as well as any information we may receive in future. The month and year located at the end of the footer of this document indicates the most recent date of change or update.
7 Questions or Complaints
If you have questions regarding this notice, are concerned that your privacy was not protected, wish to exercise your rights outlined in this notice, or file a complaint, please contact our HIPAA Privacy Officer in one of the following ways:
By mail: 7949 California Avenue, Ste 15, Fair Oaks, CA 95628
By email: firstname.lastname@example.org
By phone: (916) 863-7949
By fax: (916) 863-1450
You will not be penalized or retaliated against, and your health care benefits will not be affected should you file a complaint with this agency or with the U.S. Department of Health and Human Services.