Privacy Policy

1. Introduction

At Coldbrock Health Care ("we," "our," or "us"), we are committed to protecting your privacy and ensuring the security of your personal health information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our services or visit our website.

We comply with all applicable privacy laws, including:

• Health Insurance Portability and Accountability Act (HIPAA)
• General Data Protection Regulation (GDPR)
• California Consumer Privacy Act (CCPA)
• State and local privacy regulations

2. Information We Collect

2.1 Personal Health Information (PHI)

We collect and maintain personal health information as necessary to provide healthcare services, including:

• Medical history and current health conditions
• Treatment plans and care notes
• Medication information
• Emergency contact information
• Insurance and billing information

2.2 Personal Information

• Name, address, phone number, and email address
• Date of birth and demographic information
• Emergency contacts and family information
• Payment and billing information

2.3 Website Usage Information

• IP address and browser information
• Pages visited and time spent on our website
• Cookies and similar tracking technologies
• Device information and operating system

3. How We Use Your Information

3.1 Healthcare Services

• Providing direct patient care and treatment
• Coordinating care with other healthcare providers
• Managing appointments and scheduling
• Processing insurance claims and billing
• Quality assurance and improvement activities

3.2 Communication

• Appointment reminders and follow-up care
• Health education and wellness information
• Emergency notifications when necessary
• Responding to your inquiries and requests

3.3 Legal and Regulatory Compliance

• Meeting legal and regulatory requirements
• Reporting to public health authorities when required
• Responding to legal proceedings and investigations

4. Information Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following circumstances:

4.1 With Your Consent

We will share your information with third parties only when you have given us explicit consent to do so.

4.2 Healthcare Operations

• Other healthcare providers involved in your care
• Insurance companies for claims processing
• Healthcare clearinghouses and billing services
• Quality assurance and accreditation organizations

4.3 Legal Requirements

• When required by law or court order
• To prevent serious harm to health or safety
• For public health activities and reporting
• To law enforcement in specific circumstances

5. Data Security

We implement comprehensive security measures to protect your information:

5.1 Technical Safeguards

• Encryption of data in transit and at rest
• Secure servers and databases
• Regular security updates and patches
• Multi-factor authentication for staff access

5.2 Administrative Safeguards

• Staff training on privacy and security
• Access controls and user permissions
• Regular security audits and assessments
• Incident response procedures

5.3 Physical Safeguards

• Secure facilities and locked storage
• Controlled access to computer systems
• Secure disposal of physical records

6. Your Rights

You have the following rights regarding your personal information:

6.1 Access Rights

• Request access to your personal health information
• Obtain copies of your medical records
• Request information about how your data is used

6.2 Correction Rights

• Request corrections to inaccurate information
• Add amendments to your medical records

6.3 Restriction Rights

• Request restrictions on how your information is used
• Opt-out of certain communications
• Request confidential communications

6.4 Deletion Rights

• Request deletion of personal information (subject to legal requirements)
• Withdraw consent for data processing

7. Cookies and Tracking

Our website uses cookies and similar technologies to:

• Remember your preferences and settings
• Improve website functionality and user experience
• Analyze website traffic and usage patterns
• Provide personalized content and services

You can control cookie settings through your browser preferences. However, disabling cookies may affect website functionality.

8. Data Retention

We retain your information for as long as necessary to:

• Provide ongoing healthcare services
• Meet legal and regulatory requirements
• Resolve disputes and enforce agreements
• Maintain business records as required by law

Medical records are typically retained for a minimum of 7 years after the last date of service, or longer as required by applicable laws.

9. International Data Transfers

If you are located outside the United States, please note that your information may be transferred to and processed in the United States. We ensure appropriate safeguards are in place for international data transfers in compliance with applicable privacy laws.

10. Children's Privacy

We do not knowingly collect personal information from children under 13 years of age without parental consent. If you believe we have collected information from a child under 13, please contact us immediately.

11. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. We will notify you of any material changes by:

• Posting the updated policy on our website
• Sending email notifications to registered users
• Providing notice during your next visit or appointment

12. Contact Information

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us:

13. Regulatory Information

For additional information about your privacy rights, you may contact: