HIPAA Compliance Policy

Purpose

This policy outlines our commitment to protecting patient health information and maintaining compliance with the 1996 Health Insurance Portability and Accountability Act (HIPAA).

Scope

This policy applies to all interactions, data collection, and information handling within SilverLeaf Group.

Protected Health Information (PHI) Management

PHI Collection

We collect minimal PHI, limited to:

• Patient or referral partner’s brief description of dental care needs
• Contact information necessary for specialist referral

PHI Transmission

All PHI is:

• Collected through a secure, encrypted HIPAA-compliant contact form
• Transmitted using industry-standard encryption protocols
• Shared only with relevant dental specialists

Privacy Safeguards

Access Control

• Limited access to PHI
• Role-based permissions for information handling
• Regular access audits and reviews

Data Security

• Encrypted data storage
• Secure transmission protocols
• Regular security assessments

Business Associate Agreements

As our network includes specialists from different entities, we:

• Ensure each specialist understands HIPAA requirements
• Maintain individual Business Associate Agreements
• Verify each specialist’s HIPAA compliance

Patient Rights

Patients have the right to:

• Request access to their submitted information
• Request corrections to their information
• Request limitations on information sharing
• Receive an accounting of PHI disclosures

Breach Notification Protocol

In the unlikely event of a potential data breach, we will:

1. Immediately investigate the incident
2. Notify affected individuals within 60 days
3. Report to the Department of Health and Human Services if required
4. Implement corrective measures to prevent future incidents

Training and Compliance

Our team undergoes regular:

• HIPAA compliance training
• Privacy and security protocol updates
• Risk assessment and management workshops

Ongoing Compliance Monitoring

We continuously:

• Review and update privacy practices
• Conduct internal compliance audits
• Stay informed about HIPAA regulation changes

Contact for HIPAA Concerns

For HIPAA-related inquiries: info [at] thesilverleafgroup.org

Acknowledgment

By using our referral service, users acknowledge understanding of our HIPAA compliance procedures.