This notice describes how medical information about you may be used and disclosed and how you can get access to this information. please review it carefully.
PROTECTED HEALTH INFORMATION
Information about your health is private. And it should remain private. That is why this healthcare institution is required by federal and state law to protect and maintain the privacy of your health information. We call it “Protected Health Information” (PHI).
The basis for federal privacy protection is the Health Insurance Portability and Accountability Act (HIPAA) and its
regulations, known as the “Privacy Rule” and “Security Rule” and other federal and
state privacy laws.
WHO WILL FOLLOW THIS NOTICE
This Notice describes the information privacy practices followed by our hospital employees, volunteers, and related personnel.
The practices described in this Notice may also be followed by health care providers, who are members of our Medical Staff, if
they have opted to abide by its contents. Many of our doctors follow the practices contained within this Notice.
Each participant who joins in this joint Notice of Privacy Practices serves as their own agent for all aspects of HIPAA Compliance, other than the delivery of this Joint Notice. For physician specific issues or
questions, please feel free to contact your physician directly.
Hospital employees, volunteers, and related personnel, including those members of the Medical Staff who have opted to abide by its contents, must follow this Notice with respect to:
USING OR DISCLOSING YOUR PHI: FOR TREATMENT
During the course of your treatment, we use and disclose your PHI. For example, if we test your blood in our laboratory, a technician will share the report with your doctor. Or, we will use your PHI to follow the doctor’s orders for an x-ray, surgical procedure or other types of treatment related procedures.
After providing treatment, we will ask your insurer to pay us. Some of your PHI may be entered into our computers in order to send a claim to your insurer. This may include a description of your health problem, the treatment we provided and your membership number in your employer’s health plan.
Or, your insurer may want to review your medical record to determine whether your care was necessary. Also, we may disclose
to a collection agency some of your PHI for collecting a bill that you have not paid.
FOR HEALTHCARE OPERATIONS
Your medical record and PHI could be used in periodic assessments by physicians about the hospital’s quality of care. Or we might use the PHI from real patients in education sessions with medical students training in our hospital. Other uses of your PHI may include business planning for our hospital orthe resolution of a complaint.
Your relationship to us as a patient might require using or disclosing your PHI in order to
YOUR AUTHORIZATION MAY BE REQUIRED
In many cases, we may use or disclose your PHI, as summarized above, for treatment, payment or healthcare operations or as
required or permitted by law. In other cases, we must ask for your written authorization with specific instructions and limits on our use or disclosure of your PHI. This includes, for example, uses or disclosures of psychotherapy notes, uses or disclosures for marketing purposes, or for any disclosure which is a sale of your PHI. You may revoke your authorization if you change your mind later.
CERTAIN USES AND DISCLOSURES OF YOUR PHI REQUIRED OR PERMITTED BY LAW
As a hospital or healthcare facility, we must abide by many laws and regulations that either require us or permit us to use or disclose your PHI.
REQUIRED OR PERMITTED USES AND DISCLOSURES
WE MAY ALSO USE OR DISCLOSE YOUR PHI
YOUR PRIVACY RIGHTS AND HOW TO EXERCISE THEM
Under the federally required privacy program, patients have specific rights.
YOUR RIGHT TO REQUEST LIMITED USE OR DISCLOSURE
You have the right to request that we do not use or disclose your PHI in a particular way. We must abide by your request to restrict disclosures to your health plan (insurer) if:
In other situations, we are not required to abide by your request. If we do agree to your request, we must abide by the agreement.
YOUR RIGHT TO CONFIDENTIAL COMMUNICATION
You have the right to receive confidential communications of PHI from the hospital at a location that you provide. Your request must be in writing, provide us with the other address and explain if the request will interfere with your method of payment.
YOUR RIGHT TO REVOKE YOUR AUTHORIZATION
You may revoke, in writing, the authorization you granted us for use or disclosure of your PHI. However, if we have relied on your consent or authorization, we may use or disclose your PHI up to the time you revoke your consent.
YOUR RIGHT TO INSPECT AND COPY
You have the right to inspect and copy your PHI (or to an electronic copy if the PHI is in an electronic medical record), if requested in writing. We may refuse to give you access to your PHI if we think it may cause you harm, but we must explain why and provide you with someone to contact for a review of our refusal.
YOUR RIGHT TO AMEND YOUR PHI
If you disagree with your PHI within our records, you have the right to request, in writing, that we amend your PHI when it is a record that we created or have maintained for us. We may refuse to make the amendment and you have a right to disagree in writing. If we still disagree, we may prepare a counter-statement. Your statement and our counter-statement must be made part of our record about you.
YOUR RIGHT TO KNOW WHO ELSE SEES YOUR PHI
You have the right to request an accounting of certain disclosures we have made of your PHI over the past six years, but not before April 14, 2003. We are not required to account for all disclosures, including those made to you, authorized by you or those involving treatment, payment and health care operations as described above. There is no charge for an annual accounting, but there may be charges for additional accountings. We will inform you if there is a charge and you have the right to withdraw your request, or pay to proceed.
YOUR RIGHT TO BE NOTIFIED OF A BREACH
You have the right to be notified following a breach of unsecured PHI.
YOUR RIGHT TO OBTAIN A PAPER COPY OF THIS NOTICE
You have the right to obtain a paper copy of this notice upon request, even if you have agreed to receive the Notice electronically.
WHAT IF I HAVE A COMPLAINT?
If you believe that your privacy has been violated, you may file a complaint with us or with the Secretary of Health and Human Services in Washington, D.C. We will not retaliate or penalize you for filing a complaint with us or the Secretary.
CONTACT FOR ADDITIONAL INFORMATION
If you have questions about this Notice or need additional information, you can contact our Risk Management Department (or the UHS Compliance Hotline at 1-800-852-3449).
SOME OF OUR PRIVACY OBLIGATIONS AND HOW WE FULFILL THEM
Federal health information privacy rules require us to give you notice of our legal duties and privacy practices with respect to PHI and to notify you following a breach of unsecured PHI. This document is our notice. We will abide by the privacy practices set forth in this notice. We are required to abide by the terms of the notice currently in effect. However, we reserve the right to change this notice and our privacy practices when permitted or as required by law. If we change our notice of privacy practices, we will provide you with a copy to take with you upon request and we will post the new notice.
COMPLIANCE WITH CERTAIN STATE LAWS
When we use or disclose your PHI as described in this notice, or when you exercise certain of your rights set forth in this notice, we may apply state laws about the confidentiality of health information in place of federal privacy regulations. We do this when these state laws provide you with greater rights or protection for your PHI. For example, some state laws dealing with mental health records may require your express consent before your PHI could be disclosed in response to a subpoena. Another state law prohibits us from disclosing a copy of your record to you until you have been discharged from our hospital. When state laws are not in conflict or if these laws do not offer you better rights or more protection, we will continue to protect your privacy by applying the federal regulations.
Effective Date: This notice takes effect on September 23, 2013 Version # 1