Understanding HIPAA and Your Protected Health Information

​​

What is HIPAA?

HIPAA stands for the Health Insurance Portability and Accountability Act. It is a federal law that protects the privacy and security of your health information and gives you specific rights over how that information is used and shared.

HIPAA applies to healthcare providers, health plans, and others involved in delivering or paying for healthcare. As a physical therapy practice, Alternatives in Physical Therapy follows these rules to protect your information.

​

What is Protected Health Information (PHI)?

Protected Health Information (PHI) is information that identifies you and relates to your health or healthcare. PHI can exist in many forms, including electronic records, paper files, and spoken communication.

 

PHI may include:

• Your name, address, date of birth, or other identifying details

• Information about your physical or mental health, past or present

• Details about the care you receive

• Information related to payment for your care

 

How your information is protected

HIPAA requires healthcare providers to:

• Inform patients about their privacy rights

• Explain how health information may be used or shared

• Put policies and safeguards in place to protect records

• Train staff on privacy practices

• Limit access to health information to people who need it to do their jobs

 

We take these responsibilities seriously and work to ensure your information is handled appropriately.

 

Your rights under HIPAA

You have the right to:

• Review and obtain a copy of your medical records, including electronic copies

• Request corrections if you believe information in your record is incorrect or incomplete

• Ask for limits on how certain information is shared, including with your health plan for services you paid for out of pocket

• Receive information about how your health data has been shared

 

If you would like to exercise any of these rights, you can contact our office for assistance.

 

How information may be shared for your care

HIPAA allows healthcare providers to share necessary information to support your treatment and care. This includes sharing information with:

• Doctors, specialists, hospitals, or other healthcare providers involved in your care

• Insurance companies for billing and payment

• Other healthcare professionals as needed for care coordination

 

In many cases, this information can be shared without a separate written authorization when it is necessary for treatment, payment, or healthcare operations.

 

Sharing information with family or others

Unless you object, HIPAA allows us to:

• Share relevant information with family members, friends, or others you identify as being involved in your care

• Share general information about your condition or location with someone responsible for your care

 

You can let us know at any time if you prefer that information not be shared with certain individuals.

 

Special situations

HIPAA allows certain disclosures when required by law or when necessary for safety. For example, healthcare providers are permitted to report suspected child abuse or neglect to appropriate authorities.

​

Incidental disclosures

While HIPAA requires strong privacy protections, it recognizes that limited, unintentional disclosures can sometimes occur despite reasonable safeguards. These incidental disclosures are allowed as long as appropriate protections are in place.

 

Questions or concerns

If you have questions about your privacy rights or how your health information is handled, please contact our office. We are happy to explain our privacy practices and provide additional information.