HIPAA Compliance Statement:
Morro Bay Recovery is committed to protecting the privacy and security of protected health information (PHI) in compliance with the Health Insurance Portability and Accountability Act (HIPAA) and its applicable regulations.
Purpose This HIPAA Compliance Statement outlines our commitment to safeguarding PHI and the measures we have implemented to ensure compliance with HIPAA regulations.
Privacy and Security Measures (See HIPAA Security Manual) Morro Bay Recovery has implemented comprehensive administrative, physical, and technical safeguards to protect the confidentiality, integrity, and availability of PHI. These measures include:
Administrative Safeguards:
- Designation of a HIPAA Privacy Officer and a HIPAA Security Officer
- Development and implementation of HIPAA policies and procedures
- Workforce training on HIPAA regulations and privacy practices
- Conducting regular risk assessments and addressing identified vulnerabilities
- Implementing procedures for breach notification and incident response
Physical Safeguards:
- Securing facilities to prevent unauthorized access to PHI
- Restricting access to areas where PHI is stored or processed
- Implementing policies for secure disposal of PHI
Technical Safeguards:
-
- Utilizing secure systems and network infrastructure
- Implementing access controls and multi-factor authentication
- Regularly updating and patching software
- Encrypting electronic PHI during transmission and storage
- Uses and Disclosures of PHI Morro Bay Recovery will only use and disclose PHI as permitted by HIPAA regulations, including for treatment, payment, and healthcare operations. We will obtain individual authorization for any uses or disclosures beyond these permitted purposes, except where required or allowed by law.
- Business Associate Agreements Morro Bay Recovery has established written agreements with its business associates to ensure that they also comply with HIPAA regulations and adequately protect PHI.
- Individual Rights
Morro Bay Recovery acknowledges individuals' rights regarding their PHI, including the right to access, amend, and request an accounting of disclosures of their PHI. We have implemented procedures to address these rights and will respond to requests in accordance with HIPAA regulations. - Breach Notification In the event of a breach of unsecured PHI, Morro Bay Recovery will follow HIPAA breach notification requirements, promptly notifying affected individuals, the Department of Health and Human Services (HHS), and, if necessary, the media.
- Compliance Monitoring and Enforcement Morro Bay Recovery is dedicated to ongoing compliance monitoring and has established procedures for internal auditing and sanctions for non-compliance. We will respond to violations and breaches in accordance with HIPAA regulations.
- Contact Information For any questions, concerns, or to exercise your rights related to HIPAA and the privacy of your PHI, please contact Morro Bay Recovery Management..
Contact Information
If you have any questions or comments please contact us:
Morro Bay Recovery
2460 Main Street,
Morro Bay, California, 93442
+1 (805) 772-2212