Policy Page - PainTrax

Privacy Policy

Effective Date: July 1st 2024

Introduction

Dr. Ketan D. Vora is committed to protecting the privacy of our patients. This Privacy Policy explains how we collect, use, disclose, and store your protected health information (PHI) when you use our website https://www.paintrax.com/KDVPC/Login.aspx. We adhere to the Health Insurance Portability and Accountability Act (HIPAA) regulations to safeguard your sensitive medical data.

Information We Collect

We collect two primary types of information:

1. Website Usage Information: This includes general, non-medical data collected automatically, such as:
○ IP address (anonymized or truncated to comply with HIPAA)
○ Browser type and operating system
○ Referring URL
○ Pages visited on our website (excluding patient portal pages)
○ Date and time of visit
○ Information collected through cookies (limited to functionality, not medical data)

2. Patient Information: This includes any health information at our office, such as:
○ Name
○ Contact information (phone number, email)
○ Appointment requests
○ Medical history details

Use of Information

We use the information we collect for the following purposes:
● Website Usage Information: To improve the functionality and user experience of our website (excluding patient portal functionality).
● Patient Information: To process appointment requests, respond to inquiries and provide healthcare services in accordance with HIPAA regulations. We will only use
your PHI for treatment, payment purposes, and healthcare operations as outlined in HIPAA.

Disclosure of Information

We will never disclose your PHI to any third party without your written authorization, except as permitted by HIPAA regulations. These exceptions may include:
● Sharing information with other healthcare providers involved in your care coordination.
● Responding to legal requirements or public health emergencies.
● Obtaining payment for services rendered.
Also , No mobile information will be shared with third parties/affiliates for marketing/promotional purposes. All other categories exclude text messaging originator opt-in data and consent; this information will not be shared with any third parties.

Data Storage

We store your PHI on secure electronic servers that comply with HIPAA regulations. We employ robust physical, administrative, and technical safeguards to protect your information from unauthorized access, use, disclosure, alteration, or destruction. These safeguards include:

● Encryption of PHI at rest and in transit.
● Access controls and user authentication
● Regular security audits and risk assessments
● HIPAA-compliant training for staff

Your Choices

You have the right to access, update, and delete your PHI in accordance with HIPAA regulations. To exercise these rights, please contact our office at 877-774-6337,

Changes to this Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on our website.

Contact Us

If you have any questions about this Privacy Policy or your PHI, please contact our office at 877-774-6337 or submit a written request to 65-06 ROOSEVELT AVE, WOODSIDE, NY 11377. You can also file a complaint regarding HIPAA violations with the Department of Health and Human Services (DHHS) Office for Civil Rights (OCR) at https://www.hhs.gov/programs/hipaa/index.html.