Effective Date: August 11, 2024 Last Updated: August 11, 2024
1. Introduction
This HIPAA Privacy Notice ("Notice") describes how [BirthBridge, Inc.] ("BirthBridge," "we," "us," "our") may collect, use, and disclose your Protected Health Information ("PHI") in accordance with the Health Insurance Portability and Accountability Act of 1996 ("HIPAA") and applicable state law. This Notice applies to both Birth Professionals and Customers who use our platform, available at mybirthbridge.com ("Landing Page") and app.mybirthbridge.com ("Platform").
2. Your Health Information Rights
As a user of the BirthBridge platform, you have the following rights regarding your PHI:
Right to Access: You have the right to access and obtain a copy of your PHI maintained by BirthBridge, subject to certain exceptions.
Right to Amend: You have the right to request an amendment to your PHI if you believe it is inaccurate or incomplete.
Right to an Accounting of Disclosures: You have the right to receive an accounting of certain disclosures of your PHI made by BirthBridge.
Right to Request Restrictions: You have the right to request restrictions on how we use or disclose your PHI for treatment, payment, or healthcare operations. While we will consider your request, we are not required to agree to the restrictions unless required by law.
Right to Confidential Communications: You have the right to request that we communicate with you about your PHI in a specific way or at a specific location.
Right to a Paper Copy of This Notice: You have the right to receive a paper copy of this Notice upon request.
3. How We May Use and Disclose Your PHI
BirthBridge may use and disclose your PHI for the following purposes:
Treatment: We may use and disclose your PHI to provide, coordinate, or manage your healthcare and any related services. This includes sharing information with Birth Professionals who provide services through the platform.
Payment: We may use and disclose your PHI to obtain payment for the healthcare services provided to you.
Healthcare Operations: We may use and disclose your PHI for healthcare operations, such as quality assessment, training, and auditing functions.
As Required by Law: We will disclose your PHI when required to do so by federal, state, or local law.
Public Health and Safety: We may disclose your PHI to prevent or control disease, report adverse reactions to medications, or report abuse, neglect, or domestic violence.
Business Associates: We may disclose your PHI to third-party service providers ("Business Associates") who perform services on our behalf, such as billing and administrative services, provided they agree to safeguard your PHI.
4. Your Responsibilities as a Birth Professional
As a Birth Professional using the BirthBridge platform, you are responsible for ensuring that any PHI you collect, use, or disclose complies with HIPAA and any applicable state laws. This includes:
Protecting PHI: You must take reasonable steps to protect the privacy and security of PHI, including using secure methods to store and transmit PHI.
Obtaining Authorization: You must obtain appropriate authorizations from Customers before using or disclosing their PHI for purposes not permitted by HIPAA.
Compliance with Business Associate Agreements: If applicable, you must enter into Business Associate Agreements with third-party service providers who handle PHI on your behalf.
5. Your Responsibilities as a Customer
As a Customer using the BirthBridge platform, you should be aware of the following:
Sharing PHI: You are responsible for sharing your PHI with Birth Professionals through the platform. Ensure that you only share the necessary information for your care.
Reviewing the Birth Professional’s Privacy Practices: Each Birth Professional may have their own privacy practices. We encourage you to review these practices and ask questions if you have concerns about how your PHI will be used or disclosed.
6. Safeguarding Your Information
BirthBridge takes reasonable steps to protect your PHI from unauthorized access, use, or disclosure. These steps include:
Encryption: We use encryption technologies to protect PHI during transmission.
Access Controls: We implement access controls to limit who can access your PHI.
Training: We provide training to our staff and Birth Professionals on HIPAA compliance and the importance of safeguarding PHI.
7. Breach Notification
In the event of a breach of your PHI, BirthBridge will notify you as required by HIPAA. We will provide you with details about the breach, including what happened, what information was involved, and what steps you should take to protect yourself.
8. Changes to This Notice
We may update this Notice from time to time. You will be notified of any significant changes, and your continued use of the BirthBridge platform constitutes acceptance of the revised Notice.
9. Contact Information
If you have any questions about this Notice or your rights under HIPAA, please contact us at:
Email: hello@mybirthbridge.com
Acknowledgment of Receipt
By using the BirthBridge platform, you acknowledge that you have received and understand this HIPAA Privacy Notice.
