HIPAA Compliance

Introduction

At HomeCareConnect AI Assistant (“we,” “us,” “our”), we are committed to protecting the privacy and security of protected health information (“PHI”) in accordance with the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) and its implementing regulations, including the Privacy, Security, Breach Notification, and Enforcement Rules. This HIPAA Compliance Statement explains how we safeguard PHI, the rights of individuals regarding their health information, and the measures we take to comply with federal requirements.

This Policy applies to all users of our services, including clients, patients, healthcare providers, and business associates.

What Information We Collect

We may collect or receive personal and health-related information to provide support through our AI Assistant service. This may include:

Identifying information (e.g., name, contact information)

Health-related information necessary for service delivery

Communications between users and the AI Assistant

We reasonably restrict the collection and use of any information to what is necessary to support the requested services.

Use and Disclosure of PHI

We will use and disclose PHI only as permitted or required by HIPAA, which may include:

Treatment: To assist in providing care or support services.

Payment: Billing or payment-related activities, where applicable.

Healthcare Operations: Quality assessment, training, and technology optimization.

Required by Law: To comply with legal processes or public health requirements.

With Authorization: Any other use only with explicit written authorization from the individual.

Any PHI shared with third parties (such as service providers) will be governed by a compliant Business Associate Agreement (BAA) and is permitted only for purposes consistent with HIPAA.

Safeguards to Protect PHI

To protect PHI and maintain confidentiality, integrity, and availability, we use administrative, physical, and technical safeguards, including:

Encryption of data in transit and at rest

Access controls to restrict unauthorized access

Regular monitoring and security reviews

Employee training on HIPAA privacy and security practices

Audit controls to track access and modifications to PHI

We evaluate and update these safeguards as necessary to ensure compliance with evolving security standards.

Your Rights Under HIPAA

Individuals whose PHI we maintain have certain rights, including:

Right to Access: Request a copy of PHI in our records.

Right to Amend: Ask for corrections to inaccurate or incomplete PHI.

Right to Accounting of Disclosures: Request a list of disclosures we’ve made.

Right to Confidential Communications: Ask to receive communications by alternative means when practicable.

Right to Restrict Certain Uses: Request restrictions on certain disclosures of PHI.

To exercise any of these rights, please contact us as outlined below.

Breach Notification

If we discover a breach of unsecured PHI, we will follow HIPAA breach notification requirements, including:

Assess the nature and scope of the breach

Notify affected individuals without unreasonable delay

Notify the Secretary of the U.S. Department of Health and Human Services as required

Provide any additional notifications required by law

Business Associate Agreements (BAAs)

Where applicable, we require Business Associate Agreements with partners, vendors, or service providers that perform functions involving PHI. These agreements ensure:

The partner will appropriately safeguard PHI

PHI will not be used or disclosed improperly

Reporting of any security incidents or breaches involving PHI

Contact Us

If you have questions about this HIPAA Compliance page, wish to exercise your rights, or need to report a privacy/security concern, please contact:

Email: [email protected]
HomeCare Connect AI Assistant