HIPAA NOTICE OF PRIVACY PRACTICES
As required by the Privacy Regulations Promulgated Pursuant to the
Health Insurance Portability and Accountability Act of 1996 (HIPAA)
THIS NOTICE DESCRIBES HOW MEDICAL INFORMATION ABOUT YOU MAY BE USED AND DISCLOSED AND HOW YOU CAN GET ACCESS TO THIS INFORMATION. PLEASE REVIEW IT CAREFULLY.
This Notice of Privacy Practices describes how we may use and disclose your protected health information (PHI) to carry out treatment, payment or health care operations (TPO) and for other purposes that are permitted or required by law. It also describes your rights to access and control your protected health information. “Protected health information” is information about you, including demographic information, that may identify you and that relates to your past, present or future physical or mental health or condition and related health care services.
Uses and Disclosures of Protected Health Information: Your protected health information may be used and disclosed by our organization, our office staff and others outside of our office that are involved in your care and treatment for the purpose of providing health care services to you, to pay your health care bills, to support the operation of the organization, and any other use required by law.
Treatment: We will use and disclose your protected health information to provide, coordinate, or manage your health care and any related services. This includes the coordination or management of your health care with a third party. For example, we would disclose your protected health information, as necessary, to a home health agency that provides care to you. For example, your protected health information may be provided to a physician to whom you have been referred to ensure that the physician has the necessary information to diagnose or treat you.
Payment: Your protected health information will be used, as needed, to obtain payment for your health care services. For example, obtaining approval for equipment or supplies coverage may require that your relevant protected health information be disclosed to the health plan to obtain approval for coverage.
Healthcare Operations: We may use or disclose, as‐needed, your protected health information in order to support the business activities of our organization. These activities include, but are not limited to, quality assessment activities, employee review activities, accreditation activities, and conducting or arranging for other business activities. For example, we may disclose your protected health information to accrediting agencies as part of an accreditation survey. We may also call you by name while you are at our facility. We may use or disclose your protected health information, as necessary, to contact you to check the status of your equipment.
We may use or disclose your protected health information in the following situations without your authorization: as Required By Law, Public Health issues as required by law, Communicable Diseases, Health Oversight, Abuse or Neglect, Food and Drug Administration requirements, Legal Proceedings, Law Enforcement, Criminal Activity, Inmates, Military Activity, National Security, and Workers’ Compensation. Required Uses and Disclosures: Under the law, we must make disclosures to you and when required by the Secretary of the Department of Health and Human Services to investigate or determine our compliance with the requirements of Section 164.500.
Other Permitted and Required Uses and Disclosures Will Be Made Only with Your Consent, Authorization or Opportunity to Object, unless required by law.
You may revoke this authorization, at any time, in writing, except to the extent that your physician or this organization has taken an action in reliance on the use or disclosure indicated in the authorization.
Your Rights: Following is a statement of your rights with respect to your protected health information.
You have the right to inspect and copy your protected health information. Under federal law, however, you may not inspect or copy the following records; psychotherapy notes; information compiled in reasonable anticipation of, or use in, a civil, criminal, or administrative action or proceeding, and protected health information that is subject to law that prohibits access to protected health information.
You have the right to request a restriction of your protected health information. This means you may ask us not to use or disclose any part of your protected health information for the purposes of treatment, payment or healthcare operations. You may also request that any part of your protected health information not be disclosed to family members or friends who may be involved in your care or for notification purposes as described in this Notice of Privacy Practices. Your request must state the specific restriction requested and to whom you want the restriction to apply.
Our organization is not required to agree to a restriction that you may request. If our organization believes it is in your best interest to permit use and disclosure of your protected health information, your protected health information will not be restricted. You then have the right to use another Healthcare Professional.
You have the right to request to receive confidential communications from us by alternative means or at an alternative location. You have the right to obtain a paper copy of this notice from us, upon request, even if you have agreed to accept this notice alternatively, e.g., electronically.
You may have the right to have our organization amend your protected health information. If we deny your request for amendment, you have the right to file a statement of disagreement with us and we may prepare a rebuttal to your statement and will provide you with a copy of any such rebuttal.
You have the right to receive an accounting of certain disclosures we have made, if any, of your protected health information.
We reserve the right to change the terms of this notice and will inform you by mail of any changes. You then have the right to object or withdraw as provided in this notice.
Complaints: You may complain to us or to the Secretary of Health and Human Services if you believe your privacy rights have been violated by us. You may file a complaint with us by notifying our privacy contact of your complaint. We will not retaliate against you for filing a complaint.
We are required by law to maintain the privacy of, and provide individuals with, this notice of our legal duties and privacy practices with respect to protected health information, if you have any questions concerning or objections to this form, please ask to speak with our President in person or by phone at 615-376-6010.
Associated companies with whom we may do business, such as an answering service or delivery service, are given only enough information to provide the necessary service to you. No medical information is provided.
We welcome your comments: Please feel free to call us if you have any questions about how we protect your privacy. Our goal is always to provide you with the highest quality services.
Information We Collect
We collect personal and non-personal information when you provide it to us in the course of using our Website. The personal information that we may collect includes your name, mailing address, phone number, email address, credit card number, and financial information. The non-personal information that we may collect includes your browser type, the URL of the previous website you visited, your ISP, operating system, and your Internet protocol (IP) Address. The non-personal information is not used by us to personally identify you and is not readily usable for that purpose.
When you subscribe to our service or otherwise make a purchase through our Website, we will collect your name, mailing address, telephone number, credit card number, email address, and other information that we request during the registration process.
In addition, if you communicate with us regarding the Website or any of our services or products, we collect any information that you provide to us during the course of our communication.
We may use analytic and reporting technologies to record non-personal information such as Internet domain and host names, Internet protocol (IP) addresses, browser software, operating system types, click patterns, and the dates and times that the Website and our services are accessed by you. We may in contract with a third party to help us manage, monitor and optimize our Website and measure the effectiveness of our advertising, communications and use of the Website. We may use web beacons and cookies (described below) for this purpose.
Our Use of Information for Internal Purpose
We use your personal information primarily for our own internal purposes, such as providing, maintaining, evaluating, and improving our Website and the products and services we offer and sell, to collect credit card payments for subscription fees and other purchases you make, and to provide customer support.
We use the non-personal information we collect to track the use of the Website and to assist us in providing, maintaining, evaluating, and improving our Website and the services and products we offer and sell.
Our Disclosure of Personal Information to Third Parties
We will disclose your personal information to protect or enforce our legal rights and policies, to protect or enforce the legal rights of a third party, or as we in good faith believe we are required to do so by law (such as to comply with a subpoena or court order, for example).
We may contract with various third parties who help us provide, maintain and improve the Website and the services we provide and the services and products we offer and sell, and such third parties may have access to your personal information in order to perform their services. For example, we use a third party to process payments made to us, and may subcontract out production, fulfillment, analytics, reporting or other operations. We may contract with third party contractors to help us manage, monitor and optimize our Website and the services and products we offer and sell. We may also use third party contractors to help us measure the effectiveness of our advertising, and communications. We will enter into confidentiality and non-disclosure agreements with all third parties that have access to your personal information which will prohibit them from using or disclosing your personal information except for the purpose of providing services to use. We intend to take commercially reasonable steps to enforce such non-disclosure and confidentiality agreements if and when we become aware of any violations.
We require that all persons that access our non-public areas register and provide the following information:
Our Disclosure of Non-Personal Information to Third Parties
We may disclose non-personal Information, in aggregate form, to potential strategic partners, advertisers, investors, customers, and others. You may not opt-out of the sharing of this information.
A web beacon is an often-transparent graphic image, usually no larger than a 1×1 pixel that is placed on a web page or in an e-mail that is used to monitor the behavior of the user visiting the Website or receiving the e-mail.
Cookies and web beacons used by us will not be linked to your personal information.
How We Protect Your Personal Information.
We consider protecting the security of your personal information as very important. When you enter sensitive information such as a credit card number and/or social security number on our registration or order forms, we encrypt that information using secure socket layer technology (sometimes referred to as “SSL”).
We follow generally accepted industry standards to protect personal information submitted to us, both during transmission and once we receive it. No method of transmission over the Internet, or method of electronic storage, is 100% secure. Therefore, while we strive to use commercially acceptable means to protect your personal information, we do not guarantee absolute security. We are not responsible for the unauthorized acts of others and we assume no liability for any disclosure of information due to errors in transmission, unauthorized third-party access (such as through hacking) or other acts of third parties, or acts or omissions beyond our reasonable control.
Reviewing and Changing Your Personal Information.
You may obtain a copy of and request that we correct errors in your personal information by emailing us at email@example.com. If you do desire to obtain a copy of your personal information, you will be required to provide proof of your identity. If your personal information changes or if you no longer want to subscribe to or use the Website, you may correct, update or deactivate your personal information and your account through the account management screen.
Our Website and the services and products we offer, and sell are intended for adults. Therefore, it is unlikely that children under the age of 17 will use the Website or purchase the services or products we offer. Accordingly, we will not knowingly collect or use any personal information from children that we know to be under the age of 17. In addition, we will delete any information in our database that we know originates from a child under the age of 17.
If you are between the ages of 13 and 17, you, your parent, or your legal guardian may request that we deactivate any of your personal information in our database and/or opt-out from receiving communications from us. If you wish to do so, please contact us at
Opting-Out From Receiving Communications From wegrowhair.com.
If you no longer wish to receive any promotional or other communications from us, you may opt-out by following the instructions included in each email communication or by emailing us at firstname.lastname@example.org