Last Updated: November 2025

At Assurance Healthcare MN, we are committed to protecting the privacy and security of our clients’ health information in accordance with the Health Insurance Portability and Accountability Act (HIPAA) and all applicable federal and state privacy laws.

  1. Purpose of This Policy

    This HIPAA Compliance Policy explains how we safeguard Protected Health Information (PHI) that we collect, store, transmit, or use in connection with the home care services we provide.

  2. Protected Health Information (PHI)

    PHI includes any information that can identify you and relates to your:

    • Physical or mental health condition,
    • Provision of health care services, or
    • Payment for health care services.

    Examples of PHI include your name, address, contact number, medical history, diagnosis, treatment details, and insurance information.

  3. Our Responsibilities Under HIPAA

    Assurance Healthcare MN is required by law to:

    • Maintain the confidentiality, integrity, and availability of all PHI in any form (electronic, paper, or oral).
    • Provide you with this notice of our privacy practices and your rights under HIPAA.
    • Use and disclose PHI only as permitted or required by law.
    • Implement administrative, physical, and technical safeguards to protect PHI from unauthorized access, use, or disclosure.

  4. Permitted Uses and Disclosures of PHI

    We may use and disclose your PHI without your written authorization for the following purposes:

    • Treatment: To coordinate and provide your care and related services.
    • Payment: To bill and collect payment for services rendered.
    • Health Care Operations: For internal management, quality improvement, staff training, and compliance audits.
    • Legal Requirements: When required by law, such as reporting public health concerns or responding to court orders.

    For any other purpose, we will obtain your written authorization before using or disclosing your PHI.

  5. Safeguards and Security Measures

    We employ a range of security measures to protect PHI, including:

    • Secure electronic health record (EHR) systems with access controls and encryption.
    • Password-protected devices and systems accessible only to authorized personnel.
    • Staff training on HIPAA compliance and confidentiality standards.
    • Secure disposal of paper and electronic records when no longer needed.

  6. SMS and Electronic Communications

    While we take precautions to safeguard all electronic communications, please note that SMS/text messaging is not a fully secure method of transmitting PHI.

    • Appointment reminders and basic scheduling details may be sent via SMS only with your consent.
    • We do not include sensitive medical information in text messages.
    • You may choose to withdraw your consent for text communication at any time.

  7. Your Rights Under HIPAA

    You have the right to:

    • Access and obtain a copy of your health records.
    • Request corrections to inaccurate or incomplete information.
    • Request restrictions on certain uses or disclosures of your PHI.
    • Receive an accounting of disclosures of your PHI.
    • Request confidential communications through alternative means or locations.
    • File a complaint if you believe your privacy rights have been violated.

    To exercise any of these rights, please contact us using the information below.

  8. Breach Notification

    In the event of a breach involving your PHI, Assurance Healthcare MN will promptly investigate and notify you in accordance with HIPAA breach notification requirements.

  9. Policy Updates

    We may update this HIPAA Compliance Policy periodically to reflect changes in legal or operational requirements. Updates will be posted on our website with the revised effective date.

  10. Contact Information

    If you have any questions or concerns about this policy or your privacy rights under HIPAA.