.png)
Legal
HIPAA Notice of Privacy Practices
THIS NOTICE DESCRIBES HOW MEDICAL INFORMATION ABOUT YOU MAY BE USED AND DISCLOSED AND HOW YOU CAN GET ACCESS TO THIS INFORMATION. PLEASE REVIEW IT CAREFULLY.
Our Commitment to Your Privacy
OnPointPerformance PLLC is required by law to maintain the privacy of your protected health information (PHI), to provide you with notice of our legal duties and privacy practices with respect to PHI, and to notify you in the event of a breach of unsecured PHI.
We are required to abide by the terms of this Notice currently in effect. We reserve the right to change this Notice and make the new Notice effective for all PHI we maintain. Revised notices will be posted on our website.
What Is Protected Health Information?
Protected Health Information (PHI) is health information, including demographic data, that relates to your past, present, or future physical or mental health condition; the provision of healthcare to you; or payment for the provision of healthcare to you — and that can be used to identify you. This includes information transmitted or maintained in any form or medium.
How We May Use and Disclose Your PHI
The following categories describe the ways we may use and disclose your PHI. Not every use or disclosure in a category will be listed.
Treatment
We may use and disclose your PHI to provide, coordinate, or manage your healthcare and any related services. For example, we may share your information with laboratories, pharmacies, or other providers involved in your care.
Payment
We may use and disclose your PHI to obtain payment for services we provide to you. For example, we may share information with our payment processors to bill for your membership or services.
Healthcare Operations
We may use and disclose your PHI for our healthcare operations, including quality assessment, provider performance evaluation, training, accreditation, and business management activities necessary to run OnPointPerformance PLLC.
As Required by Law
We will disclose your PHI when required to do so by federal, state, or local law — including reporting requirements to public health authorities, oversight agencies, and law enforcement under specific circumstances.
Business Associates
We may share your PHI with our business associates — third-party companies that perform services on our behalf (such as Practice Better for patient portal services). All business associates are required to sign a Business Associate Agreement (BAA) and to protect your PHI in compliance with HIPAA.
Uses Requiring Your Authorization
Other uses and disclosures of your PHI not described in this Notice will be made only with your written authorization, including:
- Marketing purposes
- Sale of your PHI
- Most disclosures of psychotherapy notes
- Any other use or disclosure not permitted under HIPAA without authorization
You may revoke a written authorization at any time by notifying us in writing, except to the extent we have already acted on it.
Your Rights Regarding Your PHI
You have the following rights with respect to your protected health information:
Right to Access
You have the right to inspect and obtain a copy of your PHI maintained by OnPointPerformance PLLC, with limited exceptions.
Right to Amend
If you believe your PHI is incorrect or incomplete, you may request that we amend it. We may deny the request under certain circumstances.
Right to an Accounting of Disclosures
You have the right to request a list of certain disclosures of your PHI made by us in the past six years.
Right to Request Restrictions
You have the right to request restrictions on how we use or disclose your PHI for treatment, payment, or operations. We are not required to agree to all requests.
Right to Confidential Communications
You have the right to request that we communicate with you in a certain way or at a certain location (e.g., only by email).
Right to a Paper Copy
You have the right to obtain a paper copy of this Notice upon request, even if you have agreed to receive it electronically.
To exercise any of these rights, please submit your request in writing to: info@onpointperformancepllc.com
Breach Notification
In the event of a breach of your unsecured PHI, OnPointPerformance PLLC will notify you as required by the HIPAA Breach Notification Rule and applicable state law. Notification will be provided without unreasonable delay and no later than 60 calendar days following discovery of a breach.
Our Safeguards
OnPointPerformance PLLC maintains administrative, physical, and technical safeguards to protect your PHI from unauthorized access, use, or disclosure. Our patient portal is powered by Practice Better, a HIPAA-compliant platform. All data is encrypted in transit and at rest.
Complaints
If you believe your privacy rights have been violated, you may file a complaint with:
OnPointPerformance PLLC Privacy Officer
Email: info@onpointperformancepllc.com
U.S. Department of Health and Human Services
Office for Civil Rights (OCR)
www.hhs.gov/hipaa/filing-a-complaint
Toll-free: 1-800-368-1019
We will not retaliate against you for filing a complaint.
Contact Us
For questions about this Notice or to exercise your rights, contact our Privacy Officer:
OnPointPerformance PLLC
OnPointPerformance PLLC Privacy Officer
Texas Concierge Telehealth
Email: info@onpointperformancepllc.com