HIPPA and PHI

I am committed to protecting the privacy and security of my client’s personal health information (PHI) in accordance with the Health Insurance Portability and Accountability Act (HIPAA) and applicable state and federal laws.

• I collect PHI from clients who receive mental health services from my practice. This includes information such as your name, date of birth, contact information, medical history, treatment plan, and payment information. This information is stored in a HIPPA compliant electronic health record (EHR) which is password protected, and for which only employees of Reflecting Pool Counseling, LLC have access to.

• I use PHI for the purpose of providing mental health services to my clients, including conducting assessments, developing treatment plans, and providing therapy. I may also disclose PHI as required by law, such as mandated reporting of abuse or neglect of a child or elder, or as authorized by the client via a release of information (ROI).

• I implement a variety of physical, administrative, and technical safeguards to protect the confidentiality and security of PHI. These safeguards include no use of paper records, secure storage of and password protected electronic records, and yearly training on HIPAA privacy and security policies.

• Clients have the right to receive a copy of their PHI and medical record. Clients also have the right to request restrictions on the use and disclosure of their PHI, and to file a complaint if they believe their privacy rights have been violated.

By following this HIPAA policy, my practice aims to protect the privacy and security of your PHI, while providing high-quality mental health services in a safe and confidential manner.