HIPAA COMPLIANCE POLICY:
Under this policy, we will take the following actions to ensure HIPAA compliance:
- Limit access to PHI: Only authorized personnel with a legitimate need for access will be able to access our clients’ PHI.
- Implement security measures: We will implement appropriate administrative, physical, and technical security measures to protect our clients’ PHI from unauthorized access, use, disclosure, and destruction.
- Train our personnel: All of our personnel who handle PHI will receive HIPAA privacy and security training to ensure that they are knowledgeable about their responsibilities and HIPAA requirements.
- Report breaches: In the event of a breach of our clients’ PHI, we will promptly report the breach to the affected individuals and the Department of Health and Human Services as required by HIPAA.
- Enter into business associate agreements: When we contract with third-party service providers who will have access to our clients’ PHI, we will enter into business associate agreements to ensure that the service providers are also HIPAA compliant.
By following these practices, we aim to provide our clients with the highest level of protection for their PHI and ensure that we are HIPAA compliant. If you have any questions or concerns, please do not hesitate to reach out to us.