HIPAA NOTICE OF PRIVACY PRACTICES

1. Our Responsibilities
MedLink Strategies LLC (“we,” “our,” or “us”) may receive, coordinate, or handle certain health information as part of our healthcare consulting, patient-coordination services, transportation planning, PI support services, senior-building wellness programs, and communication with healthcare providers or facilities.

We are committed to protecting your Protected Health Information (“PHI”) in accordance with the Health Insurance Portability and Accountability Act (HIPAA).

We are required by law to:

Maintain the privacy of your PHI

Provide this Notice of our legal duties and privacy practices

Follow the terms of this Notice currently in effect

Notify you if a breach occurs involving your unsecured PHI

2. How We May Use and Disclose Your PHI
We may use and disclose your PHI for several purposes. Below are examples permitted under HIPAA.

A. Treatment
We may use or share your PHI to coordinate your care with:

Doctors

Specialists

Rehab centers

Hospitals

Long-term care facilities

Transportation partners

Other healthcare providers involved in your care

Example:
We may share limited PHI with a rehabilitation center to arrange appropriate care for a patient referred by MedLink Strategies.

B. Payment
We may use or disclose your PHI to:

Assist with billing

Communicate with insurance companies

Verify coverage

Coordinate benefits

Example:
We may share PHI with an insurer to verify medical necessity for transportation to a wound care clinic.

C. Healthcare Operations
We may use PHI for:

Quality assessment

Case management

Coordination of administrative services

Training and auditing

Licensing or accreditation

Example:
We may review patient case information to improve coordination across senior-building wellness programs.

3. Other Permitted Uses and Disclosures
Required or Allowed by Law
We may disclose PHI without your authorization:

To comply with federal, state, or local laws

To public health authorities

To report abuse, neglect, or domestic violence (as required)

For health oversight activities (audits, investigations)

For legal proceedings (court orders, subpoenas)

To law enforcement in specific circumstances

For disaster relief purposes

To avert serious threats to health or safety

Business Associates
We may share PHI with trusted business partners who assist us in our operations such as:

IT service providers

Billing companies

Transportation vendors

Care coordination partners

Data hosting platforms

All business associates are required by law to protect your PHI.

De-Identified and Aggregate Data
We may use de-identified PHI (information that cannot identify you) for analytics, program design, and operational improvement.

4. Uses and Disclosures Requiring Your Written Authorization
We will not disclose your PHI without your written authorization for:

Marketing not related to your care

Sale of PHI

Psychotherapy notes (if applicable)

Any use not described in this Notice

You may revoke an authorization at any time in writing.

5. Your Rights Regarding Your PHI
A. Right to Access
You may request a copy of your PHI that we maintain.

B. Right to Amend
If you believe your information is incorrect or incomplete, you may request a correction.

C. Right to Request Restrictions
You may ask us to limit:

What PHI we use

Who we disclose it to

We are not required to agree, but we will consider your request.

D. Right to Request Confidential Communications
You may request we contact you:

At a specific phone number

By mail

At a different address

By email in a secure format

E. Right to an Accounting of Disclosures
You may request a list of disclosures made without your authorization (not including disclosures for treatment, payment, or operations).

F. Right to a Paper Copy
You may request a paper copy of this Notice at any time.

6. Our Commitment to Data Security
We use administrative, physical, and technical safeguards to protect PHI, including:

Encrypted communications

Secure servers

Access controls

Staff training

HIPAA-compliant data systems

However, no system can guarantee absolute protection.

7. Breach Notification
If a breach occurs involving your unsecured PHI, we will notify you in accordance with HIPAA requirements.

8. Changes to This Notice
We may revise this Notice at any time.
Updates will be posted on our website with a new “Last Updated” date.
Revised policies apply to all PHI we maintain.

9. Complaints
If you believe your privacy rights have been violated, you may file a complaint with:

MedLink Strategies LLC – HIPAA Compliance Officer
Email: Info@medlinkstrategies.com

Or with the U.S. Department of Health and Human Services (HHS).
We will not retaliate for filing a complaint.

10. Contact Information
For questions about this Notice, your rights, or how to request access to your PHI, contact:

MedLink Strategies LLC
Email: info@medlinkstrategies.com