Health Insurance Portability and Accountability Act (HIPAA) Policy
Purpose:
The purpose of this HIPAA policy is to inform customers of True Healthcare Services, LLC (True HealthCare)’s e-commerce website about the measures we take to protect the privacy and security of their protected health information (PHI) in accordance with the Health Insurance Portability and Accountability Act (HIPAA) and related regulations.
Scope:
This policy applies to all customers of our e-commerce website who provide us with PHI in order to purchase medical products.
Definitions:
Protected Health Information (PHI): Any information that identifies an individual and relates to their health or healthcare services, including demographic information, medical history, test results, and insurance information.
Policy:
- Collection and Use of PHI
Our e-commerce website will only collect and use PHI that is necessary for the purpose of processing orders and delivering medical products to customers. We will not disclose PHI to third parties unless required by law.
- Privacy Notices
Our e-commerce website will provide a privacy notice to all customers explaining their rights under HIPAA and how their PHI will be used and disclosed by our company.
- Access to PHI
Customers may request access to their PHI by contacting our customer support team. We will provide a copy of the requested PHI in a timely manner.
- Security of PHI
Our e-commerce website uses industry-standard security measures to protect PHI from unauthorized access, use, or disclosure. This includes encryption of sensitive information, regular security audits, and employee training.
- Reporting Breaches
If a breach of PHI occurs, we will notify affected customers and the appropriate authorities as required by HIPAA regulations.
- Third-Party Vendors
Our e-commerce website uses third-party vendors to process payments, ship products, and provide other services. We enter into written agreements with these vendors to ensure that they comply with HIPAA regulations and protect the privacy and security of PHI.
- Compliance
Our e-commerce website is committed to complying with all HIPAA regulations and will regularly review and update this policy to ensure continued compliance.
Enforcement:
We take violations of this policy seriously and will take appropriate disciplinary action against employees or third-party vendors who fail to comply with HIPAA regulations or this policy.
Conclusion:
By implementing this HIPAA policy, our e-commerce website ensures that customer PHI is protected and secure, in accordance with federal regulations. We value our customers' privacy and are committed to maintaining their trust.