The Health Insurance Portability Accountability Act (HIPAA) of 1996, Public Law 104-191, was designed to create protection of health information and create privacy regulations for individually identifiable health information. All medical and treatment facilities, including Malibu Hills Treatment are legally bound to abide by these laws and standards. Personally Identifiable Information (PII) and Protected Health Information (PHI) are both important components of information about a consumer that is valued and we take efforts to ensure your privacy. We abide by HIPAA standards and regional laws to ensure your privacy is protected. Personally Identifiable Information (PII) is any information that can be used to identify you, such as your full name and address. Protected Health Information (PHI) falls under the HIPAA guidelines and is protected to ensure that medical records are kept safe. PHI includes information in a medical context that could be used to identify a patient such as name, date of birth, or medical records. There is a good deal of overlap between PII and PHI. PHI is mandated and legally required to be protected. Malibu Hills Treatment follows HIPAA standards and regional laws with regard to all PHI. Malibu Hills Treatment is required by law and standards to keep your information protected.
Treatment, payment and health care operations:
Malibu Hills Treatment Corp. uses and discloses your protected health information for treatment, payment, and health care operations. Some examples of when our office may use or disclose your health care information for these purposes include:
- Sharing test results with other health care providers for confirmation of a diagnosis;
- Providing your diagnosis or other information about your health to your insurance provider or our billing service to obtain payment for the health care services we provide;
- Reviewing information as part of our performance improvement program.
Other uses and disclosures:
Malibu Hills Treatment Corp. may also use or disclose your protected health information, in compliance with guidelines outlined by law, for the following purposes:
- Providing you with information related to your health;
- Contacting you regarding appointments, information about treatment alternatives, or other health-related services;
- Incidental uses or disclosures (e.g., listing your name on a sign-in sheet, etc.);
- Compliance with all laws (including reports of suspected abuse, neglect or violence);
- Providing certain specified information to law enforcement or correctional institutions;
- Providing information to a coroner, medical examiner, funeral director or organ procurement organization;
- Public health activities when requested by a public health authority or the FDA. Responding to health oversight agencies;
- Responding to court or administrative tribunal orders, subpoenas, discovery requests, or another lawful process;
- Research activities;
- When necessary to avert a serious threat to health or safety;
- Military affairs, veterans affairs, national security, intelligence, Department of State, or presidential protective service activities;
- Providing information to public or private disaster relief agencies; or Information to a family member, another relative, or close personal friend when: notification of your location, general condition or death; to assist in your health care (e.g. pick-up prescriptions or other documents, note follow-up care instructions, etc.)
Authorization for other uses: Malibu Hills Treatment Corp. will make other uses and disclosure of your protected health information only after obtaining your written authorization. If you authorize a use not contained in this notice, you may revoke your authorization at any time, by notifying us in writing that you wish to revoke your authorization.
Your rights regarding the privacy of your health information: Subject to limitations outlined by law, you have certain rights related to the use and disclosure of your protected health information, including the right to:
- Request restrictions on certain uses and disclosures. However, Malibu Hills Treatment Corp. is not obligated to agree to requested restrictions;
- Receive confidential communications or protected health information;
- Inspect and copy your protected health information with some limited exceptions;
- Amend your health information;
- Receive an accounting of disclosures of your health information;
- Obtain a copy of this notice.
Malibu Hills Treatment Corp. duties regarding the privacy of your health information:
Subject to limitations outlined by law, Malibu Hills Treatment Corp. has certain duties related to your protected health information, including:
- Malibu Hills Treatment Corp. is required by law to maintain the privacy of protected health information and to provide individuals with notice of our legal duties and privacy practices with respect to protected health information.
- Malibu Hills Treatment Corp. is required to abide by the terms of the privacy notice that is currently in effect.
- Malibu Hills Treatment Corp. reserves the right to change a privacy practice described in this notice and to make such change effective for all protected health information. Revised notice will be posted in our office and available upon request.
If you believe your privacy rights have been violated, you may make a complaint by contacting the Privacy Officer at (805) 822-3631 or by email at email@example.com or the Secretary for the Department of Health and Human Services. No individual will be retaliated against for filing a complaint.
A client may access medical records and request information be deleted or altered. HIPAA allows a client to access or amend PHI by contacting the entity in writing and requesting medical records to be amended. The entity must respond within 60 days. There may be an additional 30 days taken but there must be a written explanation for the delay and a date by which the requested action will be completed. A request may be denied on the following grounds; if the agency did not create the record, the individual cannot access the records under another HIPAA provision or ruling, the record is accurate and/or complete as it stands or the information being requested to be changed is not part of the record being sent. For more information or questions please see 45 CFR §164.526 or contact firstname.lastname@example.org
- Information Malibu Hills Collects
- Personal Information and Non-Identifying Information
When you access or use our Website or Services, we may ask you for personally identifiable information. This refers to information about you that can be used to contact or identify you (“Personal Information”). Personal Information may include, but is not limited to, your name, username (if it identifies you), phone number, email address, home and business postal addresses, and any other information that you provide to Malibu Hills that could be used to personally identify you.
We also collect other information that you may provide when using our Website or Services that does not identify you (“Non-Identifying Information”). Non-Identifying Information includes, but is not limited to, your zip code (on its own), gender, age, and individual preferences. Certain Non-Identifying Information would be considered a part of your Personal Information if it were combined with other identifiers (for example, combining your zip code with your street address) in a way that enables you to be identified. But the same pieces of information are considered Non-Identifying Information when they are taken alone or combined only with other non-identifying information (for example, your viewing preferences).
We use your Personal Information (in some cases, in conjunction with your Non-Identifying Information) mainly to provide portions of the Website and Services and respond to correspondence from you. For example, we may use your Personal Information to contact you with newsletters and other information that you request. If you decide at any time that you no longer wish to receive such communications from us, please follow the unsubscribe instructions provided in any of the communications.
We may also combine your Personal Information with Non-Identifying Information and aggregate it with information collected from other End Users to attempt to provide you with a better experience, to improve the quality and value of the Website and Services, and to analyze and understand how the Website and Services are used.
- Usage Data
When you visit the Website, our servers automatically record information that your browser sends whenever you visit a website. The information sent automatically by your browser is referred to as “Usage Data.” This Usage Data may include information such as the manufacturer and model of your mobile device or other hardware; your Internet Service Provider (ISP); your device’s Internet Protocol (“IP”) address (or other device identifier), browser type, and operating system; referring/exit pages; clickstream data; pages of the Website that you visit, the time spent on those pages or interacting with certain portions of the Website or Services, information you search for on the Website and Services, Website access times and dates; and other statistics. Usage Data may also include certain geographic data that identifies your general location when accessing the Website and Services.
We use this information to monitor and analyze use of the Website and Services and for technical administration of the same, to increase the functionality and user-friendliness of the Website and Services, and to better tailor it to our End Users’ needs. For example, some of this information is collected so that when you visit the Website time after time, it will recognize you and serve information appropriate to your interests. Geographic Usage Data may be used to prioritize information about a Malibu Hills location near you.
Usage Data may be non-identifying or it may be associated with you. Whenever we associate Usage Data with Personal Information, we will treat it as Personal Information.
- Collection of Information
- Collection of Personal Information and Non-Identifying Information
Please note that if you use any blog (including Malibu Hills’s Chit Chat blog), bulletin board, chat room, comment posting feature, or other public communication service, forum, or feature offered through the Website or Services, or post any information available for viewing by other End Users, any of the information that you share will be visible to other End Users. The information that you make available can be read, used, and collected by other End Users to send you unsolicited messages outside of the Website and Services. Malibu Hills is not responsible for the manner in which the Personal Information that you decide to share will be used by other End Users.
- Collection of Usage Data
Usage Data are collected automatically by the Website and Services servers and software. For example, because the Website automatically collects Usage Data for all End Users that visit the Website, your session on our Website will be tracked by Malibu Hills.
Additionally, in some of our email messages, Malibu Hills may use a “click-through URL” linked to content on the Website and Services. When an End User clicks onto one of these URLs, the End User will pass through our server before arriving at the destination Web page. Malibu Hills tracks this click-through data to help us determine End User interest in certain subject matter and measure the effectiveness of these End User communications. You can avoid being tracked in this way by not clicking text or graphic links in emails from Malibu Hills.
Finally, we may use clear gifs or pixel tags, which are tiny graphic images, in order: (i) to advise us of what parts of the Website and Services End Users have visited, (ii) to measure the effectiveness of any searches End Users perform, and (iii) to enable us to send emails in a format that End Users can read and tell us whether such emails have been opened in order to ensure us that we are sending messages that are of interest to End Users.
Some Web browsers may be configured to send Do Not Track signals to websites, or users may use similar mechanisms, to indicate a user’s preference that certain web technologies not be used to track the user’s online activity. Our Website does not accept or process such Do Not Track signals or similar mechanisms.
III. Use and Sharing of Information by Malibu Hills
The End User information that Malibu Hills collects may be added to our databases and used for business purposes, including for Malibu Hills’s marketing and promotional purposes, for a statistical analysis of End Users’ behavior, for product development, for content improvement, or to customize the content and layout of the Website and Services. If you’ve provided information to Malibu Hills in order to receive e-mail content and at any time do not want to receive email from us, visit the “Opt Out” or “Unsubscribe” link at the bottom of any Malibu Hills email to remove yourself from continued receipt of such email messages.
Malibu Hills’s policy is not to share the End User information it collects with third parties other than as specified below, or where an End User expressly consents to our sharing of certain information with a third party. We may share End User information with third parties under the following circumstances:
We may employ third party companies and individuals for any of the following: to facilitate the Website and Services; to provide the Website and Services or portions of the Website and Services on our behalf; to perform related services, including without limitation, maintenance services, database management, fulfillment, web analytics, and improvement of the features or functionality; or to assist us in analyzing how the Website and Services are being used. Such parties may have access to and use End User information in order to provide such services to or on behalf of Malibu Hills.
- Campaigns and Promotions
- Business Transfers
As we continue to develop our business, we may buy, sell, or share assets in connection with, for example, a merger, acquisition, reorganization, sale of assets, or bankruptcy. In such transactions, information about End Users is often a transferred business asset. In the event of such a business transaction, information about our End Users may be one of the transferred assets.
- Compliance with Law and Protection of Malibu Hills and Others
We may release End User information when we believe, in our sole discretion, that release is appropriate: to comply with the law, including but not limited to, in response to a subpoena served on Malibu Hills; to enforce or apply the Agreement, including the Terms and Conditions and other agreements, rules, and policies; to protect the rights, property, or safety of Malibu Hills, our End Users, or others; or to prevent activity that we believe, in our sole discretion, may be or may become illegal, unethical, or legally actionable (including exchanging End User information with other companies and organizations for fraud protection).
- Aggregate Site Use Information
We may release aggregate End User information (without revealing any Personal Information about you) to advertisers and other third parties in order to promote or describe use of the Website and Services.
- International Transfer
- Deleting Your Information
You may request that Malibu Hills completely delete all Personal Information you have provided to Malibu Hills through the Website or Services by contacting email@example.com We will use commercially reasonable efforts to honor such a request. We may, however, retain an archived copy of your records consistent with our records retention policies or as required by law.
We are very concerned with safeguarding your information. We employ administrative, physical, and electronic measures designed to protect your information from unauthorized access. For example, we use commercially reasonable security measures such as encryption, firewalls, and secure socket layers (SSL) to protect End User information.
Please note that no security system is impenetrable. Accordingly, we do not guarantee the security of our databases, nor that information you supply won’t be intercepted while being transmitted to us over the Internet or other network. Any information you transmit to Malibu Hills, you do at your own risk. We will make any legally required disclosures of any breach of the security, confidentiality, or integrity of your unencrypted electronically stored “personal data” (as defined in applicable state statutes on security breach notification) to you via email (when available) or a conspicuous posting through the Website and Services in the most expedient time possible and without unreasonable delay, as consistent with (i) the legitimate needs of law enforcement or (ii) any measures necessary to determine the scope of the breach and restore the reasonable integrity of the data system.
VII. Children’s Privacy
We are committed to protecting the privacy of children. By using the Website and Services, you represent and warrant that you are thirteen (13) years of age or older and that you agree to and agree to abide by all of the terms and conditions of the Agreement. If Malibu Hills believes that you are under the age of thirteen (13) or that you are not old enough to consent to and be legally bound by the Agreement, Malibu Hills may, at any time, in its sole discretion, and with or without notice: (i) terminate your access to or use of the Website and Services (or any portion, aspect, or feature of them), or (ii) delete any content or information that you have posted through the Website and Services.
VIII. Contacting Us