MED3000 - Experts in Healthcare Management and Technology

MED3000

The MED3OOO Difference

Solutions << The MED3OOO Difference << HIPAA

HIPAA

On December 20, 2000, the United States Department of Health and Human Services ("HHS"), acting pursuant to the Health Insurance Portability and Accountability Act of 1996, as amended ("HIPAA"), issued the final Standards for Privacy of Individually Identifiable Health Information, as modified (the "Privacy Standards"), implementing the administrative simplification section of HIPAA. The Privacy Standards provide the first comprehensive federal protection for the privacy of health information, and impose a complex and detailed set of standards for the treatment of medical information.MED3OOO has a Compliance Officer located in the corporate headquarters. The General Counsel of the Company is the Company’s Chief Compliance Officer, and acts as the Chief Privacy Officer (as defined in the HIPAA Regulations) and the Chief Security Officer (as defined in the HIPAA Regulations), and will perform or cause to be performed all audits, if any, and other activities set forth and required herein.

MED3OOO has established HIPAA Privacy and Security Policies and Procedures. In providing billing and other services to Covered Entities each of MED3000 Group, Inc. and its subsidiaries (collectively, the “Company”) is not itself a Covered Entity but rather a Business Associate (as defined in the HIPAA Regulations). As a Business Associate, the Company has adopted these HIPAA Privacy and Security Policies and Procedures (“Policy”) to assure the Company’s clients who are Covered Entities that MED3000 will make reasonable efforts as a Business Associate to maintain the Client’s compliance with the HIPAA regulations.

MED3OOO has established administrative, technical, and physical safeguards to protect PHI received from Clients from intentional or unintentional use or disclosure that is in violation of this Policy and to limit incidental uses or disclosures of PHI made pursuant to an otherwise permitted or required use or disclosure. These safeguards will be monitored, evaluated, and modified as appropriate.

It is the responsibility of each MED3OOO employee to comply with the Code of Ethics and to comply with all rules and regulations applicable to his or her employment responsibilities, as set forth in the Plan and as otherwise communicated by MED3OOO, as well as to participate in the auditing and other activities designed to identify non-compliant behavior or activities. It is the obligation of every employee to be an active participant in our organization's effort to achieve and maintain compliance with the laws.

Contact Robert_Gallo@MED3000.com regarding any questions about MED3OOO's HIPAA Compliance.