Download The App

HIPAA Policy

Introduction:

This Comprehensive HIPAA Policy outlines our commitment to protecting the privacy and security of protected health information (PHI) in accordance with the Health Insurance Portability and Accountability Act (HIPAA). We integrate best practices and guidelines from leading entities in the healthcare industry to ensure comprehensive compliance. By signing up for the Cura app, all users confirm that they have received HIPAA training, understand the HIPAA policy, and agree to follow HIPAA guidelines to protect protected health information (PHI). Users also commit to updating their knowledge and training per the most current HIPAA policy and information available on www.hhs.gov or any other resources that provide the most comprehensive, inclusive, and updated HIPAA guidelines.

  1. Compliance with HIPAA Regulations:
    Our organization is fully committed to compliance with all HIPAA regulations, including the Privacy Rule, Security Rule, and Breach Notification Rule. We adhere to the standards and guidelines established by HIPAA to safeguard PHI.

  1. Patient Privacy Rights:
    We recognize and respect the rights of patients to privacy and control over their health information. Patients have the right to access their PHI, request amendments, and receive an accounting of disclosures as outlined by HIPAA regulations.

  1. Protected Hosting Services:
    Our organization utilizes secure hosting services to ensure the confidentiality, integrity, and availability of PHI. We partner with trusted hosting providers that implement stringent security measures to protect data from unauthorized access, disclosure, or tampering.

  1. Pharmaceutical Data Handling:
    In handling pharmaceutical-related data, we adhere to industry best practices for data protection and privacy.

  1. Incident Response and Reporting:
    Our organization has established protocols for responding to and reporting security incidents, breaches, and unauthorized disclosures of PHI. We conduct prompt investigations, mitigate risks, and notify affected parties in accordance with HIPAA requirements.

  1. Service Provider Compliance:
    All service providers engaged with our organization are contractually obligated to understand and adhere to our HIPAA policy, which incorporates guidelines from www.hhs.gov and the Cura app HIPAA policy. They are required to follow all privacy and security obligations outlined in the policy to ensure the protection of users’ and guests’ PHI. Our organization ensures that service providers receive appropriate training and awareness regarding HIPAA compliance. Compliance measures are regularly monitored and enforced to maintain the integrity and confidentiality of PHI.

  2. Continuous Improvement and Oversight:
    We conduct regular audits, assessments, and evaluations of our HIPAA compliance program to identify areas for improvement and ensure ongoing effectiveness. Oversight mechanisms are in place to monitor compliance with HIPAA regulations and internal policies.

 

Conclusion:

This Comprehensive HIPAA Policy reflects our organization’s commitment to protecting the privacy, securing and protecting PHI, and complying with industry regulations and standards. By integrating best practices from leading entities in the healthcare industry, we prioritize the confidentiality, integrity, and availability of health information while delivering quality services. Service users/guests, service providers/drivers/chaperones, and Cura app employees other than direct service providers agree that by signing in to the Cura app, they confirm they have received HIPAA training, understand and follow HIPAA policy and regulations, and commit to protecting PHI (The Cura app users’ health information). They agree to update their information and HIPAA training per the most current HIPAA policy and information available on www.hhs.gov or any other resources available with the most inclusive, reliable, effective, and comprehensive information regarding HIPAA policy guidelines and PHI protection.

Furthermore, it’s important to note that the Cura app users are not obligated to provide any health-related information in order to use the Cura App.

Last Updated: February 12, 2024

Effective Date: 01/25/2024

  1. Introduction:
    • The Cura app (“App”) is committed to protecting the privacy and security of individuals’ protected health information (PHI) in accordance with the Health Insurance Portability and Accountability Act (HIPAA) and its implementing regulations.
    • This HIPAA Policy outlines the measures implemented by the App to ensure the confidentiality, integrity, and availability of PHI, and to comply with the applicable requirements of HIPAA.
  2. Definitions:
    • Protected Health Information (PHI): PHI includes individually identifiable health information transmitted or maintained in any form or medium, including electronic, oral, or paper records.
    • Covered Entity: The term “Covered Entity” refers to health plans, healthcare clearinghouses, and healthcare providers who transmit any health information in electronic form.
    • Business Associate: The term “Business Associate” refers to entities or individuals contracted by the App to provide services that involve the use or disclosure of PHI.
  3. Applicability:
    • The App acts as a Business Associate as defined by HIPAA, as it may receive, transmit, or store PHI on behalf of Covered Entities or other Business Associates.
    • Service Providers (Drivers and Chaperones) and Users (Guests) Responsibility:
      • All service providers (drivers and chaperones) and users (guests) using The Cura App are required to follow the HIPAA policy outlined herein.
      • It is the responsibility of service providers and users to familiarize themselves with the requirements of the HIPAA policy and ensure compliance.
      • Additional information about HIPAA can be found on the official HHS website:

Health and Human Services (HHS) – HIPAA.

  • Education and Knowledge:
    • The Cura App emphasizes that it is the responsibility of service providers (drivers and chaperones) and users (guests) to seek knowledge and educate themselves about HIPAA regulations before using the app.
    • Resources and information about HIPAA compliance can be accessed through the provided link to the HHS website and other reputable sources.
  • Disclaimer:
    • Service providers (drivers and chaperones) and users (guests) are required to strictly adhere to all regulations outlined in this HIPAA policy.
    • The Cura App is not responsible for any breach of PHI resulting from the lack of compliance by service providers or users.
    • Users acknowledge and accept that failure to comply with HIPAA regulations is solely the responsibility of the individual service provider or user, and the Cura App shall not be held liable for any consequences arising from such non-compliance.
  1. Safeguards for PHI:
    • Physical Safeguards:
      • Physical access to facilities housing PHI is restricted and monitored. Workstations and electronic devices with access to PHI are secured.
    • Technical Safeguards:
      • Access to electronic PHI is limited to authorized personnel through secure login credentials.
      • Encryption and decryption mechanisms are implemented to protect electronic PHI.
    • Administrative Safeguards:
      • Policies and procedures are established for authorizing access to PHI.
      • Regular risk assessments are conducted to identify and mitigate potential security risks.
      • Security awareness and training programs are implemented for staff handling PHI.
  1. Uses and Disclosures of PHI:
    • PHI is used and disclosed only as permitted by the applicable HIPAA regulations and the terms of Business Associate Agreements with Covered Entities.
    • PHI may be used or disclosed for treatment, payment, healthcare operations, and other purposes allowed by HIPAA, with the necessary authorization or as required by law.
    • Voluntary Nature of Information:
      • Users acknowledge that the provision of PHI, health, and medical information is voluntary.
      • By signing in and using the Cura App, users agree that they willingly provide such information.
    • User Agreement:
      • Users agree not to hold the Cura App responsible for any breach of information arising from the voluntary provision of PHI, health, and medical information.
  1. Business Associate Agreements:
    • The App enters into written agreements with Covered Entities and other Business Associates, outlining the responsibilities regarding the use and protection of PHI.
  2. Reporting and Response to Breaches:
    • In the event of a breach of unsecured PHI, the App will comply with the HIPAA

Breach Notification Rule, including notifying affected individuals, Covered Entities, and the Secretary of Health and Human Services as required.

  1. Individual Rights:
    • Individuals have the right to request access to their PHI, request amendments to their PHI, and receive an accounting of disclosures of their PHI.
  2. Security Incident Response:
    • The App has implemented procedures for identifying, responding to, mitigating, and documenting security incidents involving PHI.
  3. Training and Awareness:
    • All personnel handling PHI receive training on HIPAA regulations, policies, and procedures.
  4. Document Retention:
    • Records containing PHI are retained in accordance with HIPAA regulations and the organization’s document retention policy.
  5. Review and Revision:
    • This HIPAA Policy is subject to periodic review and may be revised as necessary to ensure continued compliance with HIPAA regulations and changes in business practices.
  6. Contact Information:
    • For questions, concerns, or requests related to HIPAA compliance, individuals can contact the Cura App at [email protected].
  7. Acknowledgment:
    • By using the Cura App, Covered Entities and users acknowledge that they have read, understood, and agreed to the terms of this HIPAA Policy.

Quick Links

Social Links

Get In Touch

Download Now

  • Copyright © 2023.All Rights Reserved