HIPPA COMPLIANCE FOR PATIENT SECURITY

WHAT IS HIPPA?

The Health Insurance Portability and Accountability Act (HIPPA) provides for patient privacy with standards for the electronic exchange, privacy and security of health information. This law applies to health plans, health care clearinghouses, and to any health care provider who transmits health information in electronic form in connection with transactions for which the Secretary of HHS has adopted standards under HIPAA (the "covered entities").

Protected Health Information. The Privacy Rule protects all "individually identifiable health information" held or transmitted by a covered entity or its business associate, in any form or media, whether electronic, paper, or oral. The Privacy Rule calls this information "protected health information (PHI).

"Individually identifiable health information" is information, including demographic data, that relates to:

  • the individual's past, present or future physical or mental health or condition,

  • the provision of health care to the individual, or

  • the past, present, or future payment for the provision of health care to the individual,

and that identifies the individual or for which there is a reasonable basis to believe it can be used to identify the individual. Individually identifiable health information includes many common identifiers (e.g., name, address, birth date, Social Security Number).

THAI SPORT & HIPPA

Thai Sport Bodyworks is currently under no legal obligation to adhere to HIPPA privacy regulations as we do not conform to any of the required entities who must provide this level of privacy. Regardless, we treat every client record as highly confidential and do not share any client treatment information to any entity without the written authorization of the patient or is required to be provided by a legal subpoena. Your records are securely held in the same system used by traditional medical providers.

If you need any of your records sent to a third party, you will need to provide us with a signed authorization from the third party and executed (signed) by you. We will then contact your directly to confirm your authorization.