Effective Date: 01/01/2024
Practice Name: The Healing Hour, LLC
1. Introduction
This Privacy Policy describes how The Healing Hour, LLC (“Practice”) collects, uses, and protects your information in compliance with the Health Insurance Portability and Accountability Act of 1996 (HIPAA).
2. Protected Health Information (PHI)
We collect and maintain Protected Health Information (“PHI”), which includes any information that identifies you and relates to your physical or mental health, healthcare services, or payment for services.
3. Uses and Disclosures of PHI
The Practice may use and disclose PHI without your written authorization for the following purposes:
Treatment
To provide, coordinate, or manage your healthcare and related services.
Payment
To bill and collect payment from you, your insurance provider, or other third parties.
Healthcare Operations
To support business activities such as quality assessment, staff training, licensing, and compliance.
4. Uses and Disclosures Required or Permitted by Law
We may disclose PHI without your authorization when required by law, including:
- Public health and safety reporting
- Health oversight activities
- Abuse, neglect, or domestic violence reporting
- Judicial and administrative proceedings
- Law enforcement requests
- Serious threats to health or safety
5. Uses Requiring Authorization
We will obtain your written authorization for:
- Marketing communications
- Sale of PHI
- Use or disclosure of psychotherapy notes (where applicable)
You may revoke authorization at any time in writing.
6. Your Rights Under HIPAA
You have the right to:
- Access and obtain copies of your PHI
- Request amendments to your records
- Request restrictions on certain uses or disclosures
- Request confidential communications
- Receive an accounting of disclosures
- File a complaint without retaliation
Requests must be submitted in writing to the Practice.
7. Safeguards and Security
We implement administrative, physical, and technical safeguards to protect your PHI, including secure electronic health record systems, encryption, and access controls.
8. SMS & Mobile Communication Policy
Text messaging originator opt-in data and consent will not be shared with any third parties, excluding aggregators and providers of the Text Message services. Message frequency may vary. Message & data rates may apply. Reply STOP to opt out; HELP for help.
9. Breach Notification
In the event of a breach of unsecured PHI, the Practice will notify you as required by HIPAA and applicable laws.
10. Third-Party Service Providers
We may use Business Associates (e.g., billing services, electronic health record platforms) who are contractually obligated to safeguard your PHI in accordance with HIPAA.
11. Changes to This Policy
We reserve the right to update this Privacy Policy. Changes will apply to all PHI maintained by the Practice and will be posted on our website.
12. Contact Information
For questions or to exercise your rights under this Policy, contact:
Tel.: (201) 644-6523
