Hippa

This policy applies to all employees, contractors, and agents of Unwind Wellness who may have access to PHI. It covers all forms of PHI, whether in electronic, paper, or verbal format, and includes any health information that identifies an individual or can reasonably be used to identify an individual.

Unwind Wellness designates a Privacy Officer responsible for overseeing the implementation and maintenance of HIPAA compliance within the organization. The Privacy Officer can be reached at [contact email or phone number.

Unwind Wellness will use and disclose PHI only as permitted or required by law. We will obtain written authorization from patients before using or disclosing their PHI for purposes not covered by HIPAA, except for treatment, payment, or healthcare operations. PHI may be disclosed to healthcare providers involved in the patient’s treatment, insurance companies for payment purposes, and for limited healthcare operations necessary for our practice.

Unwind Wellness will apply the “minimum necessary” standard when using or disclosing PHI. We will limit the access of PHI to only those employees or agents who need the information to carry out their duties. When sharing PHI with other entities, we will make reasonable efforts to limit the information shared to the minimum necessary for the intended purpose.

Unwind Wellness will implement reasonable safeguards to protect the confidentiality, integrity, and availability of PHI. This includes physical, technical, and administrative safeguards to prevent unauthorized access, use, or disclosure of PHI. All electronic PHI will be encrypted, and access to PHI will be restricted through user authentication and password protection.

Unwind Wellness respects and upholds the rights of patients regarding their PHI. Patients have the right to access, inspect, and request corrections to their PHI, as well as to receive an accounting of disclosures. Patients may also request restrictions on the use and disclosure of their PHI, and we will accommodate these requests within the limits of the law.

In the event of a breach of unsecured PHI, Unwind Wellness will promptly notify affected individuals, as well as the U.S. Department of Health and Human Services, in accordance with HIPAA breach notification requirements.

All employees, contractors, and agents of Unwind Wellness will receive regular training on HIPAA requirements and the organization’s policies and procedures for protecting PHI. This training will raise awareness about the importance of privacy and security and reinforce our commitment to safeguarding patient information.

Unwind Wellness will conduct periodic audits and assessments to monitor compliance with this HIPAA Policy and all applicable regulations. Non-compliance with this policy may result in disciplinary action, up to and including termination.

If you have any questions or concerns regarding our HIPAA Policy or how we handle PHI, please contact our Privacy Officer at [email protected].