HIPAA COMPLIANCE STATEMENT

Second Opinion Physician, a healthcare provider based in Atlanta, Georgia, prioritizes the privacy and security of your medical information, also known as Protected Health Information (PHI). In accordance with the Health Insurance Portability and Accountability Act of 1996 (HIPAA), we maintain the confidentiality of your PHI and comply fully with all necessary regulations.

Data Protection Protocols Our data protection protocols are comprehensive, ensuring that PHI is appropriately protected. Measures include secure storage of physical documents, encryption of electronic PHI, implementation of firewalls, secure access controls, and routine security risk assessments.

Employee Training Regular training is provided to all our staff members on HIPAA rules, our privacy practices, and their role in protecting PHI. This ensures the team understands the importance of patient privacy and the proper handling of PHI.

Business Associate Agreements We share PHI with third-party service providers only under Business Associate Agreements (BAAs), ensuring that they protect the PHI they receive or handle on our behalf.

Uses of PHI Your PHI may be used and disclosed for treatment, payment, and healthcare operations purposes. This includes sharing with healthcare professionals involved in your care, utilizing for billing and collection, evaluating the quality of our laboratory testing, managing our operations, reminding you about appointments, informing you about relevant health-related benefits and services, disclosing for legal purposes, and using for research purposes provided certain requirements are met. Disclosures to individuals involved in your care or payment for your care are also permitted, as are certain disclosures mandated by law.

Patient Rights Regarding PHI Patients have specific rights regarding their PHI, including the right to receive a copy of our Notice of Privacy Practices, request limits on uses and disclosures, request confidential communications, access and receive copies of PHI, receive an accounting of disclosures, and correct or update their PHI.

Exercising Your Rights Patients can exercise their rights by sending a written request to the HIPAA Privacy Officer, Second Opinion Physician, Atlanta, Georgia. Updates to insurance and/or billing information can be made via our website or by contacting our Patient Billing Department.

Contact and Complaints For questions, comments, or complaints about our privacy practices or use or disclosure of PHI, contact us at info@secondopinionphysician.com, or call (678) 400-7768 and ask for the HIPAA Privacy Officer.

Changes to Notice of Privacy Practices We reserve the right to make changes to our Notice of Privacy Practices and privacy policies, which will apply to any PHI we maintain. Any changes will be promptly updated and posted on our website.

In the event of a breach of unsecured PHI, we will notify you promptly, no later than 60 days after the discovery of the breach.

We affirm our commitment to HIPAA compliance, and to ensuring the confidentiality, integrity, and availability of all PHI we receive, maintain, process, and transmit. We continuously monitor our compliance and promptly address any potential threats to the security or integrity of PHI.

We value the trust you place in us and are dedicated to protecting your PHI. For any inquiries related to privacy and security, please contact us at info@secondopinionphysician.com or call (678) 400-7768.