As a healthcare provider, we are required by law to maintain the confidentiality of your Protected Health Information (PHI). PHI includes any personal information related to your health, medical history, treatments, or insurance that can be used to identify you. We are dedicated to protecting this information and adhering to all applicable privacy and security standards under HIPAA.

2. How We Protect Your Information

We implement rigorous security protocols to ensure that your PHI is handled in a confidential and secure manner. Our efforts to maintain HIPAA compliance include:

• Secure Communications: We use encrypted communication methods for transmitting sensitive health information.
• Access Controls: Only authorized staff members with a need to know have access to your health information.
• Data Security: We maintain secure storage for both physical and electronic health records, with firewalls, encryption, and other safeguards.
• Employee Training: Our staff receives regular HIPAA compliance training to ensure they understand how to protect your PHI.
• Audits and Monitoring: We regularly review our systems and procedures to ensure continued compliance with HIPAA standards.

3. Your Rights Under HIPAA

HIPAA grants you specific rights regarding your health information, including:

• Right to Access: You have the right to review or obtain a copy of your medical records.
• Right to Amend: If you believe that your health information is incorrect or incomplete, you may request an amendment.
• Right to Restrict Disclosures: You may request restrictions on the use or disclosure of your PHI for certain purposes, including disclosures to family members or friends.
• Right to Confidential Communication: You may request that we communicate with you through a specific method or at a specific location (e.g., phone, email, or postal mail).
• Right to Accounting of Disclosures: You have the right to request a list of instances where your PHI has been disclosed for purposes other than treatment, payment, or healthcare operations.
• Right to File a Complaint: If you believe that your privacy rights have been violated, you have the right to file a complaint with our office or directly with the U.S. Department of Health and Human Services.

4. Use and Disclosure of PHI

We may use and disclose your PHI for the following purposes:

• Treatment: To provide medical services, including diagnosis and treatment, and to coordinate your care with other healthcare providers.
• Payment: To process claims, billing, and payment for healthcare services provided to you.
• Healthcare Operations: To manage and improve our practice, conduct audits, and ensure quality assurance.

Your PHI may also be disclosed without your authorization in certain limited circumstances, such as:

• For public health reporting.
• In response to a court order or legal requirement.
• To prevent or mitigate a serious threat to health or safety.

5. Use of Third-Party Services

If third-party service providers (such as laboratories, billing services, or other healthcare providers) are involved in your care, we will ensure that they comply with HIPAA regulations by entering into Business Associate Agreements (BAAs) that obligate them to safeguard your PHI.

6. Privacy Officer

We have designated a Privacy Officer who is responsible for ensuring HIPAA compliance within our practice. The Privacy Officer is available to answer any questions you may have regarding your rights and our privacy practices.

7. Changes to This HIPAA Compliance Statement

We may update or modify this HIPAA Compliance Statement as required by law or practice improvements. Any changes will be posted on our website, and the “Last Updated” date will be revised accordingly.

8. Contact Information

If you have any questions, concerns, or complaints regarding our HIPAA compliance or privacy practices, please contact our Privacy Officer:

Dr. Sridevi Siruvella, MD
Phone: (770) 266-0567
Email: drsiruvella@gmail.com
Address: 512 Great Oaks Drive, Monroe, GA 30655

We are committed to safeguarding your health information and complying with all HIPAA privacy and security regulations to provide you with the highest standard of care.