HIPAA Compliance
Understanding our commitment to protecting your protected health information
Legacy Concierge is committed to maintaining the privacy and security of your protected health information (PHI) in accordance with the Health Insurance Portability and Accountability Act (HIPAA) of 1996 and its implementing regulations.
As a provider of private nursing and concierge caregiving services, Legacy Concierge understands the sensitive nature of health-related information and takes every reasonable measure to ensure that your PHI is handled with the highest level of care and confidentiality.
What Is Protected Health Information?
Protected health information (PHI) includes any individually identifiable information related to your past, present, or future health condition, the provision of healthcare services, or payment for healthcare services. This may include:
- Medical history and diagnoses
- Treatment plans and care notes
- Medication records
- Insurance and billing information
- Any other information that could be used to identify you in connection with your healthcare
Our Commitment to HIPAA Compliance
Legacy Concierge maintains administrative, physical, and technical safeguards to protect PHI in accordance with HIPAA Privacy and Security Rules. Our commitment includes:
- Limiting the use and disclosure of PHI to the minimum necessary to coordinate and deliver care
- Training all staff and caregivers on HIPAA privacy and security requirements
- Implementing secure processes for storing, transmitting, and disposing of health-related information
- Entering into Business Associate Agreements (BAAs) with any third-party vendors who may access PHI on our behalf
- Conducting regular reviews of our privacy and security practices
Your Rights Under HIPAA
Under HIPAA, you have certain rights regarding your protected health information, including:
- Right to Access — You may request access to your PHI that Legacy Concierge maintains.
- Right to Amendment — You may request corrections to your PHI if you believe it is inaccurate or incomplete.
- Right to an Accounting of Disclosures — You may request a record of certain disclosures of your PHI made by Legacy Concierge.
- Right to Request Restrictions — You may request restrictions on certain uses or disclosures of your PHI.
- Right to Confidential Communications — You may request that we communicate with you about health-related matters through a specific method or at a specific location.
- Right to a Copy of This Notice — You may request a copy of this notice at any time.
Permitted Uses and Disclosures
Legacy Concierge may use or disclose your PHI without your written authorization for the following purposes:
- Treatment — To coordinate and provide nursing and caregiving services
- Payment — To process billing and payment for services rendered
- Healthcare Operations — To support quality improvement, training, and administrative functions
- As Required by Law — To comply with federal, state, or local laws and regulations
Any use or disclosure of your PHI not described above will require your prior written authorization. You may revoke any such authorization in writing at any time.
Breach Notification
In the event of a breach of unsecured PHI, Legacy Concierge will notify affected individuals in accordance with HIPAA Breach Notification Rule requirements. Notifications will be provided without unreasonable delay and no later than 60 days following discovery of the breach.
Website and Electronic Communications
General website contact forms and email communications may not be secure methods of transmitting PHI. Visitors and clients should avoid submitting sensitive health information through general website forms or unencrypted email.
Clinical care coordination and the exchange of PHI are managed through secure internal processes separate from our public website.
Contact Information
If you have questions about our HIPAA practices, wish to exercise any of your rights, or need to report a privacy concern, please contact us: