Virdio Health HIPAA Notice
THIS NOTICE DESCRIBES HOW MEDICAL INFORMATION ABOUT YOU MAY BE USED AND DISCLOSED AND HOW YOU CAN GET ACCESS TO THIS INFORMATION. PLEASE REVIEW IT CAREFULLY.
Virdio, Inc. ("Virdio Health") is committed to protecting the privacy and security of our customers' data. To that end, we operate in compliance with all applicable privacy and data protection laws including the Health Insurance Portability and Accountability Act of 1996, as amended by the Health Information Technology for Economic and Clinical Health Act of 2009 ("HITECH") and implementing regulations (“HIPAA”).
This Notice of Privacy Practices describes the practices that we will follow with respect to the privacy of the health information of users of this site and our mobile applications and related services (“Services”).
What Health Information We Collect
Virdio Health takes the confidentiality of your health information seriously. In providing our Services, some of the information we collect may constitute protected health information (“PHI”) under HIPAA. PHI is personal (individually identifiable) information about you that relates to (a) your past, present or future physical or mental health or condition, (b) the provision of health care to you, or (c) your past, present, or future payment for the provision of health care, which is created, received, transmitted or maintained by Hinge Health. This Notice of Privacy Practices describes how we protect the privacy of your protected health information as a user of our Services. As a provider of health services, Virdio Health has certain obligations under HIPAA for maintaining the privacy and security of your PHI collected while performing our Services.
What Information We Disclose
When you use our Services, Virdio Health may use and disclose your PHI for the purposes described below. These uses and disclosures do not require your prior authorization. You may revoke your authorization for us to use or share your health information at any time, except for uses or disclosures we have already made. Virdio Health may use and disclose your health information for the following purposes:
Treatment:
We can use and share your health information with healthcare professionals to treat you. For example, we can disclose your information to your Virdio Health Team in order to personalize your experience.
Payment:
We may use and share your health information to obtain payment for our services. For example, we may disclose your PHI to your health plan to determine whether you are enrolled with the payer or eligible for health benefits or to get payment for our services.
Health Care Operations:
We may use and share your health information for our operations related to health care. For example, we may use your health information to administer your account, including your assignment and enrollment.
Business Associates:
From time to time, we work with other companies and individuals who help us deliver our services, known as “business associates.” These entities are required to keep any PHI confidential and store it securely. For example, we use business associates to help store the data that we collect.
De-identifiable and Aggregated Data:
We may use and disclose your PHI in a de-identified and aggregated manner to analyze our users’ experiences and help improve our services.
Research:
We can use or share your information for health research as authorized by law.
As Required by Law:
We may use or disclose your PHI if state or federal laws require it.
Public Health and Safety
We may use and disclose your PHI to prevent or minimize a serious threat to your health and safety or that of another person, or as requested by an authorized public health authority for any other public safety reason. We may also disclose PHI to those assisting in disaster relief efforts so that others can be notified about your condition, status and location.
Law Enforcement Activities
We may also provide PHI to law enforcement officials, for example, in response to a warrant, investigative demand or similar legal process, or for officials to identify or locate a suspect, fugitive, material witness, or missing person. We may also disclose PHI to appropriate agencies if we reasonably believe an individual to be a victim of abuse, neglect or domestic violence, and for any other reason required by applicable law.
Legal Proceedings
We may disclose PHI to respond to a court or administrative order, or in response to a warrant, investigation demand or other legal process.
We may also use and disclose your PHI for other purposes as permitted by HIPAA.
Note Regarding State Law
Where state law is more restrictive of disclosure than federal law, we are required to follow the more restrictive state law.
Notice Regarding Technology
We may use electronic software, services, and equipment, including without limitation email, video conferencing technology, cloud storage and servers, internet communication, cellular network, voicemail, facsimile, electronic health record, and related technology to share PHI with you or third-parties subject to the rights and restrictions contained herein. In any event, certain unencrypted storage, forwarding, communications and transfers may not be confidential. We will take measures to safeguard the data transmitted, as well as ensure its integrity against intentional or unintentional breach or corruption. However, in very rare circumstances security protocols could fail, causing a breach of privacy or PHI. In the unlikely event that happens, we will take immediate steps to stop further breach of information and promptly notify you if your information is impacted.
Your Rights
As a user of Virdio Health’s services, you have rights with respect to your health information:
Our Responsibilities
Changes to the Terms of this Notice
From time to time, we may change this privacy statement, which is applicable to all PHI we maintain about you. For example, as we update and improve our services, new features may require modifications to the privacy statement. The new notice will be available on our website. Accordingly, please check back periodically.
Last updated on August 24, 2024.