This Notice describes how your medical information may be used and disclosed and how you can get access to this information. Please review it carefully.

1. Our Responsibilities

We are required by law to:

• Maintain the privacy and security of your protected health information (PHI).
• Provide you with this Notice of our legal duties and privacy practices.
• Notify you if a breach occurs that may have compromised the privacy or security of your information.
• Follow the terms of this Notice.

2. Your Rights

You have the right to:

• Get a copy of your medical record: You can ask to see or get a copy of your PHI. We will provide it in paper or electronic form, usually within 30 days.
• Ask us to correct your record: If you think your medical record is incorrect, you may request an amendment.
• Request confidential communications: You can ask us to contact you at a specific phone number, email, or address.
• Request restrictions: You may request restrictions on how we use or disclose your PHI (though we may not be required to agree).
• Get a list of disclosures: You can ask for a list of certain disclosures we have made of your PHI in the past six years.
• Get a copy of this Notice: You may request a paper copy of this Notice at any time, even if you agreed to receive it electronically.
• File a complaint: If you believe your privacy rights have been violated, you may file a complaint with us or with the U.S. Department of Health and Human Services (see Contact section). We will not retaliate against you for filing a complaint.

3. How We May Use and Share Your Information

We typically use or share your PHI in the following ways:

• For Treatment: To provide, coordinate, or manage your healthcare (e.g., sharing information with other doctors involved in your care).
• For Payment: To bill and collect payment from you, your insurance, or another responsible party.
• For Healthcare Operations: To improve quality of care, conduct training, manage staff performance, and ensure compliance.

Other permitted uses and disclosures include:

• Public health and safety reporting (e.g., disease reporting, product recalls, abuse or neglect reports).
• Research (if approved by an oversight board and with privacy protections).
• Compliance with law (when required by federal or state law).
• Responding to legal requests (court orders, subpoenas, law enforcement).
• Preventing a serious threat to your health and safety or the safety of others.

We will never share your PHI for:

• Marketing purposes, unless you give written authorization.
• Sale of your information.

4. Our Uses That Require Your Authorization

Certain uses and disclosures of PHI require your written authorization, including:

• Most sharing of psychotherapy notes.
• Marketing communications.
• Sale of PHI.
• If you provide authorization, you may revoke it at any time in writing.

5. Data Security

We use safeguards required by HIPAA to protect your PHI, including encryption, secure access controls, and workforce training.

6. Contact Information

If you have questions about this Notice, want to exercise your rights, or wish to file a complaint, please contact: privacy@telemdinc.com

You may also file a complaint with the U.S. Department of Health & Human Services Office for Civil Rights at: https://www.hhs.gov/hipaa/filing-a-complaint