HIPAA (Health Insurance Portability and Accountability Act)
The Health Insurance Portability and Accountability Act is a federal law implemented in 1996 to specifically protect one’s sensitive health information. Under this national standard, this kind of sensitive health information cannot be shared without a patient’s knowledge or consent.
Callzilla is HIPAA compliant, which means we adhere to the HIPAA Privacy Rule and Security Rule. The Privacy Rule safeguards protected health information (PHI) with a list of standards that address the use and disclosure of individuals’ health information. This covers healthcare providers, health plans, healthcare clearinghouses, and business associates.
According to the CDC, the Privacy Rule does not apply in these cases:
1. When required by law
2. Public health activities
3. Victims of abuse or neglect or domestic violence
4. Health oversight activities
5. Judicial and administrative proceedings
6. Law enforcement
7. Functions (such as identification) concerning deceased persons
8. Cadaveric organ, eye, or tissue donation
9. Research, under certain conditions
10. To prevent or lessen a serious threat to health or safety
11. Essential government functions
12. Workers compensation
The HIPAA Security Rule protects a subset of that PHI, specifically any PHI received in electronic form. To be compliant, Callzilla complies with the following standards outlined by the security rule:
• Ensure the confidentiality, integrity, and availability of all electronic protected health information
• Detect and safeguard against anticipated threats to the security of the information
• Protect against anticipated impermissible uses or disclosures
• Certify compliance by our workforce
In summary, we respect and value our customer’s privacy. It’s important to us to reenforce these standards on a yearly basis, so we work hard to implement these practices company-wide to earn our certification renewals each year. If you have any questions on these standards and practices, feel free to contact us!