Effective Date: 8/2022
THE INFORMATION WE COLLECT AND THE SOURCES OF SUCH INFORMATION
We obtain information about you through the means discussed below when you use the Services. Please note that we need certain types of information so that we can provide the Services to you. If you do not provide us with such information, or ask us to delete it, you may no longer be able to access or use part or all of our Services.
- Information You Provide to Us
We collect a variety of information that you provide directly to us. For example, we collect information from you through:
- Account and product registration and administration of your account
- Processing your orders and requests for treatment
- Questions, communications, or feedback you submit to us via forms or email
- Requests for customer support and technical assistance, including through online chat functionalities
- Uploads or posts to the Services
- Employment applications you submit
The specific types of information we collect will depend upon the Services you use, how you use them, and the information you choose to provide. The types of data we collect directly from you includes:
- Name, address, telephone number, date of birth, and email address
- Information about your medical conditions, treatment options, physician referrals, prescriptions, and lab results or other related health information, such as your physical and emotional characteristics
- Log-in credentials, if you create an account
- Billing information, such as shipping address, credit or debit card number, verification number, expiration date, and identity verification information, collected by our payment processors on our behalf
- Information about purchases or other transactions with us
- Information about your customer service and maintenance interactions with us
- Demographic information such as your gender and age
- User-generated content you post in public online forums on our Services
- Any other information you choose to directly provide to us in connection with your use of the Services.
- Information We Collect Through Automated Means
We collect certain information about your use of the Services and the devices you use to access the Services, as described in this Section. As discussed further below, we and our service providers may use a variety of technologies, including cookies and similar tools, to assist in collecting this information.
Our Websites – When you use our Websites, we collect and analyze information such as your IP address, browser types, browser language, operating system, the state or country from which you accessed the Services, software and hardware attributes (including device IDs) referring and exit pages and URLs, platform type, the number of clicks, files you download, domain names, landing pages, pages viewed and the order of those pages, the amount of time spent on particular pages, the terms you use in searches on our sites, the date and time you used the Services, error logs, and other similar information.
Our Apps – When you use our Apps, we automatically receive certain information about the mobile phone, tablet, or computer used to access the Apps, including a mobile device identifier, IP address, operating system, version, Internet service provider, browser type, domain name and other similar information, whether and when you update the Apps, date and time of use, and how you use the Apps, including time spent in different portions of the Apps.
Location Information – When you use the Services, we and our service providers may automatically collect general location information (e.g., IP address, city/state and or postal code associated with an IP address) from your computer or mobile device. This information allows us to enable access to content that varies based on a user’s general location (e.g., to provide you with accurate sales tax information and to deliver content customized to your location).
We will ask your permission before collecting your precise GPS location information. In such instances, we will use your precise geo-location information to provide customized services, content, promotional offers and other information that may be of interest to you. If you no longer wish for us and our service providers to collect and use GPS location information, you may disable the location features on your device. Please see your device manufacturer settings.
- A web server log is a file where website activity is stored.
- An SDK is a set of tools and/or code that we embed in our Apps and software to allow third parties to collect information about how users interact with the Services.
- A cookie is a small text file that is placed on your computer or mobile device when you visit a site, that enables us to: (i) recognize your computer/device; (ii) store your preferences and settings; (iii) understand the parts of the Services you have visited and used; (iv), enhance your user experience by delivering and measuring the effectiveness of content and advertising tailored to your interests; (v) perform searches and analytics; and (vi) assist with security and administrative functions.
- Tracking pixels (sometimes referred to as web beacons or clear GIFs) are tiny electronic tags with a unique identifier embedded in websites, online ads and/or email that are designed to: (1) collect usage information like ad impressions or clicks and email open rates; (2) measure popularity of the Services and associated advertising; and (3) access user cookies.
As we adopt additional technologies, we may also gather information through other methods.
Please note that you can change your settings to notify you when a cookie is being set or updated, or to block cookies altogether. Please consult the “Help” section of your browser for more information (e.g., Internet Explorer; Google Chrome; Mozilla Firefox; or Apple Safari). Please note that by blocking, disabling, or managing any or all cookies, you may not have access to certain features or offerings of the Services.
- Information We Collect From Social Media and Other Content Platforms
When you “like” or “follow” us on Facebook, Instagram, Twitter, or other social media sites, we may collect some information from you including your name, email address, and any comments or content you post relevant to us. We also collect your information if you sign up for one of our promotions or submit information to us through social media sites.
- Information We Receive From Other Sources
We work closely with third parties (including, for example, third party intermediaries, such as the physicians, medical professionals, and pharmacies with whom we partner to provide you with the Services and their health care services, sub-contractors in technical, advertising networks, analytics providers, and search information providers). Such third parties will sometimes provide us with additional information about you.
PURPOSES FOR HOW WE USE YOUR INFORMATION
In connection with providing you with the Services, we may use your information for our business purposes to:
- Carry out, improve, and manage the Services and, as applicable, facilitate the provision of health care services to you by physicians or other health care providers and ensure that the physicians or health care providers have the services and support necessary for health care operations.
- Engage in internal research to understand the effectiveness of our Services, improve our Services, and better understand our user base. If we publish or provide the results of this research to others, such research will be presented in a de-identified and aggregate form such that individual users cannot be identified.
- Communicate with you about the Services, your use of the Services, or your inquiries related to the Services and send you communications on behalf of physicians or other health care providers utilizing the Services to meet your needs.
- Communicate with you by email, postal mail, or phone about surveys, promotions, special events or our products and Services and those of our subsidiaries, affiliates, and parent companies and any of their related businesses and those of our third-party partners.
- Provide you with technical support and customer service.
- Verify your identity and administer your account, including processing your payments and fulfilling your orders.
- Ensure that content from our Services is presented in the most effective manner for you and for your computer or device, allow you to participate in interactive features of our Services (when you choose to do so), and as part of our efforts to keep our Services safe and secure.
- Measure or understand the effectiveness of advertising and content we serve to you and others, and to deliver and customize relevant advertising and content to you.
- Help us better understand your interests and needs, such as by engaging in analysis and research regarding use of the Services.
- Comply in good faith with any procedures, laws, and regulations which apply to us where it is necessary for our legitimate interests or the legitimate interests of others.
- Establish, exercise, or defend our legal rights where it is necessary for our legitimate interests or the legitimate interests of others.
Aggregate/De-Identified Data – We may aggregate and/or de-identify any information collected through the Services so that such information can no longer be linked to you or your device (“Aggregate/De-Identified Information”). We may use Aggregate/De-Identified Information for any purpose, including for research and marketing purposes, and may also share such data with any third parties, including advertisers, promotional partners, and sponsors.
ONLINE ANALYTICS AND ADVERTISING
- Online Analytics
We may use third-party web analytics services (such as those of Google Analytics (including Google Signals, Google User-ID, and other Google Analytics features) on our Services to collect and analyze usage information through cookies and similar tools; engage in auditing, research, or reporting; assist with fraud prevention; try to locate the same unique users across multiple browsers or devices to better tailor services and features; and provide certain features to you. If you have a Google account with personalized advertising enabled, through Google Signals, Google will also be able to gather for us analytics and engagement information from across the various devices you use to access the Services. To prevent Google from using your information for analytics (including cross-device tracking for personalization purposes), you may install the Google Analytics Opt-out Browser Add-on by clicking here. And to opt out of Google Signals, please open your “Settings” app, locate and tap “Google,” select “Ads,” and turn ON “Opt out of Ads Personalization.” You may also be able to disable cross-device tracking through your Android or Apple device-based settings.
If you receive email from us, we may use certain analytics tools, such as clear GIFs to capture data such as when you open our message or click on any links or banners our email contains. This data allows us to gauge the effectiveness of our communications and marketing campaigns.
- Online Advertising
We sometimes provide our customer information (such as email addresses) to service providers, who may “match” this information in de-identified form to cookies (or mobile ad identifiers) and other proprietary IDs, in order to provide you with more relevant ads when you visit other websites and mobile applications.
Please note that if you exercise the opt out choices above, you will still see advertising when you use the Services, but it will not be tailored to you based on your online behavior over time.
- Mobile Advertising
When using mobile applications from us or others, you may also receive tailored in-application advertisements. We may use third-party service providers to deliver advertisements on mobile applications or for mobile application analytics. Each operating system, iOS for Apple phones, Android for Android devices, and Windows for Microsoft devices provides its own instructions on how to prevent the delivery of tailored in-application advertisements. We do not control how the applicable platform operator allows you to control receiving personalized in-application advertisements; thus, you should contact the platform provider for further details on opting out of tailored in-application advertisements. You may review the support materials and/or the device settings for the respective operating systems to opt-out of tailored in-app advertisements.
- Notice Concerning Do Not Track
Do Not Track (“DNT”) is a privacy preference that users can set in certain web browsers. We are committed to providing you with meaningful choices about the information collected on our website for third party purposes, and that is why we provide the variety of opt-out mechanisms listed above. However, we do not currently recognize or respond to browser-initiated DNT signals.
HOW WE SHARE AND DISCLOSE YOUR INFORMATION
We may share your information for our business purposes in the following ways:
Affiliates and Subsidiaries – We may share information we collect within any Advanced Integrative Medical 360 member or group (i.e., our subsidiaries and affiliates) to deliver products and services to you, ensure a consistent level of service across our products and services, and enhance our products, services, and your customer experience.
Health Care Providers and Services – We share your information with health care providers: (i) to schedule and fulfill appointments and provide health care services as part of the Services, (ii) to whom you send messages through our Services, and (iii) for other treatment, payment or health care operations purposes, including pharmacy services, upon your request.
Service Providers – We provide access to or share your information with select third parties who use the information to perform services on our behalf. They provide a variety of services to us, including billing, sales, marketing, advertising, analytics, research, customer service, shipping and fulfillment, data storage, IT and security, fraud prevention, payment processing, and auditing and legal services. These entities may also include health care organizations, pharmacies, and other third parties we use to support our business or in connection with the administration and support of the Services.
Business Transfers – As we continue to develop our business, we may buy, merge, or partner with other companies. In such transactions, (including in contemplation of such transactions) user information may be among the transferred assets. If a portion or all of our assets are sold or transferred to a third-party, customer information (including your email address) would likely be one of the transferred business assets. If such transfer is subject to additional mandatory restrictions under applicable laws, we will comply with such restrictions.
Public Forums – Certain features of our Services make it possible for you to share comments publicly with other users. Any information that you submit through such features is not confidential, and we may use it for any purpose (including in testimonials or other marketing materials). For example, if you submit a product review on one of our sites, we may display your review (along with the name provided, if any) on other Advanced Integrative Medical 360 websites and on third-party websites. Any information you post openly in these ways will be available to the public at large and potentially accessible through third-party search engines. Accordingly, please take care when using these features.
Consent – We may also disclose your information in other ways you direct us to and when we have your consent.
Aggregate/De-Identified Information – We reserve the right to create Aggregate/De-Identified Data from the information we collect through the Services and our sharing of such Aggregate/De-Identified Data is in our discretion.
YOUR MARKETING CHOICES
At Advanced Integrative Medical 360, we are committed to treating and using protected health information about you responsibly. This Notice of Health Information Practices describes the personal information we collect, and how and when we use or disclose that information. It also describes your rights as they relate to your protected health information.
Uses and Disclosures of Your Protected Health Information
We will attempt in good faith to obtain your signed Acknowledgement that you have received this Notice to use and disclose your PHI and ePHI for the following purposes.
- Treatment, Payment and Healthcare Operations
This section describes how we may use and disclose your protected health information for treatment, payment and healthcare operations purposes. The descriptions include examples. Not every possible use or disclosure for treatment, payment and healthcare operations purposes will be listed.
We may use and disclose your protected health information to help us with your treatment, to document and plan services, progress and planning. We may also release your protected health information to help other healthcare providers treat you. Treatment includes the provision, coordination or management of healthcare services to you by one or more healthcare providers. Some examples of treatment uses and disclosures include:
- During an office visit, practice physicians and other staff involved in your care may review your medical record and share and discuss your medical information with each other
- We may share and discuss your medical information with an outside physician to whom we have referred you for care.
- We may share and discuss your medical information with an outside physician with whom we are consulting regarding you.
- We may share and discuss your medical information with an outside laboratory, radiology center or other healthcare facility where we have referred you for testing, as well as health coaching and transcription services.
- We may share and discuss your medical information with an outside home health agency, durable medical equipment agency or other healthcare provider to whom we have referred you for healthcare services and products.
- We may share and discuss your medical information with a hospital or other healthcare facility.
- We may contact you to provide appointment reminders.
We may use and disclose your protected health information for our payment purposes, as well as the payment purposes of other healthcare providers and health plans. Payment uses and disclosures include activities conducted to obtain payment for the care provided to you or so that you can obtain reimbursement for that care. Some examples of payment uses and disclosures include:
- Sharing information with your health insurer to determine whether you are eligible for coverage or whether proposed treatment is a covered service.
- Submission of a claim to your health insurer.
- Providing supplemental information to you health insurer so that your health insurer can obtain reimbursement from another health plan under a coordination of benefits clause in your subscriber agreement
- Sharing your demographic information (for example, your address) with other healthcare providers who seek this information to obtain payment for healthcare services to you.
- Mailing bills in envelopes with our practice name and return address.
- Provision of a bill to a family member or other person designated as responsible for payment of services rendered to you.
- Providing medical records and other documentation to your health insurer to support the medical necessity of a health service.
- Allowing your health insurer access to your medical record for a medical necessity or quality audit review.
- Providing consumer reporting agencies with credit information (your name and address, date of birth, Social Security number, payment history, account number and our name and address)
- Providing information to a collection agency or our attorney for purposes of securing payment information of a delinquent account.
- Disclosing information in a legal action for purposes of securing payment of a delinquent account.
- Healthcare Operations
We may use and disclose your protected health information for our healthcare operations purposes as well as certain healthcare operation purposes of other healthcare providers and health plans. Some examples of healthcare operation purposes include:
- Quality assessment and improvement activities
- Population based activities relating to improving health or performance of healthcare professionals
- Conducting training programs for medical and other students.
- Accreditation, certification, licensing and credentialing activities.
- Healthcare fraud and abuse detection and compliance programs.
- Conducting other medical review, legal services and auditing functions.
- Business planning and development activities, such as conducting cost management and planning related analyses.
- Sharing information regarding patients with entities that are interested in purchasing our practice and turning over patient records to entities that have purchased our practice.
- Other business management and general administrative activities, such as compliance with federal privacy rule and resolution of grievances.
- Uses and Disclosures for Other Purposes
We may use and disclose your protected health information for other purposes. This section generally describes those purposes by category. Each category includes one or more examples. Not every use or disclosure in a category will be listed. Some examples fall into more than one category – not just the category under which they are listed.
- Individuals Involved in Care or Payment of Care
We may disclose your protected health information to someone involved in your care or payment for your care, such as a spouse, a family member or a close friend.
- Notification Purposes
We may use and disclose your protected health information to notify or to assist in the notification of, a family member, a personal representative or another person responsible for your care regarding your location, general condition or death.
- Required by Law
We may use and disclose protected health information when required by a federal, state or local law.
- Other Public Health Activities
We may use and disclose protected health information for public health activities including:
- Public health reporting, for example, communicable disease reports.
- Child abuse and neglect reports.
- FDA-related reports and disclosures, for example, adverse event reports.
- Public health warnings to third parties at risk of a communicable disease or condition.
- OSHA requirements for workplace surveillance and injury reports.
- Victims of Abuse, Neglect or Domestic Violence
We may use and disclose protected health information for purposes of reporting of abuse, neglect or domestic violence in addition to child abuse, for example, reports of elder abuse to the Department of Aging or abuse of a nursing home patient to the Department of Public Welfare.
- Health Oversight Activities
We may use and disclose protected health information for purposes of health oversight activities authorized by law. These activities could include audits, inspections, investigations, licensure actions and legal proceedings. For example, we may comply with a Drug Enforcement Agency inspection of patient records.
- Judicial and Administrative Activities
We may use and disclose protected health information disclosures in judicial and administrative proceedings in response to a court order or subpoena, discovery request or other lawful process. For example, we may comply with a court order to testify in a case at which your medical condition is at issue.
- Law Enforcement Purposes
We may use and disclose protected health information for certain law enforcement purposes including to:
- Comply with a legal process, for example, a search warrant.
- Comply with a legal requirement, for example, mandatory reporting of a gun-shot wound.
- Respond to a request for information for identification/location purposes
- Respond to a request for information about a victim crime
- Report a death suspected to have resulted from criminal activity.
- Provide information regarding a crime on the premises
- Report a crime in an emergency
- Coroners and Medical Examiners
We may use and disclose protected health information for purposes of providing information to a coroner or medical examiner for the purposes of identifying a deceased patient, determining a cause of death, or facilitating their performance of other duties of the law.
- Funeral Directors
We may use and disclose protected health information for purposes of providing information to funeral directors as necessary to carry out their duties.
- Organ and Tissue Donation
For purposes of facilitating organ, eye and tissue donation and transplantation, we may use and disclose protected health information to entities engaged in the procurement, banking or transplantation of cadaveric organs, eyes or tissue.
- Threat to Public Safety
We may use and disclose protected health information for purposes involving a threat to public safety, including protection of a third party from harm and identification and apprehension of a criminal. For example, in certain circumstances, we are required by law to disclose information to protect someone from imminent serious harm.
- Specialized Government Functions
We may use and disclose protected health information for purposes involving specialized government functions including:
- Military and veteran’s activities.
- National Security and intelligence.
- Protective services for the President and others.
- Medical suitability determinations for the Department of State.
- Correctional institutions and other law enforcement custodial situations.
- Worker’s Compensation and Similar Programs
We may use and disclose protected health information as authorized by and to the extent necessary to comply with laws relating to worker’s compensation or similar programs established by law that provide benefits for work-related injuries or illness without regard to fault. For example, this would include submitting a claim for payment to your employer’s worker’s compensation carrier if we treat you for a work injury.
- Business Associates
Certain functions of a practice are performed by a business associate such as a billing company, an accounting firm or a law firm. We may disclose protected health information to our business associates and allow them to create and receive protected health information on our behalf. For example, we may share with our billing company information regarding your care and payment for your care so that the company can file health insurance claims and bill you or another responsible party.
- Creation of De-Identification Information
We may use protected health information about you in the process of de-identifying the information. For example, we may use your protected health information in the process of removing those aspects which could identify you so that the information can be disclosed to a researcher without your authorization.
- Incidental Disclosures
We may disclose protected health information as a by-product of an otherwise permitted use or disclosure. For example, other patients may overhear your name being paged in the waiting room.
- Other Disclosures
Body by AIM360 may contact patients with appointment reminders, requests for the patient to contact Body by AIM360 for appointments, emails, text messages and notices and letters concerning medical findings. Body by AIM360 may also contact the patient about treatment alternatives or other health related benefits and services that may be of interest to the individual. For unpaid payments and balances, Body by AIM360 may work with collection agencies to recover monies.
- Uses and Disclosure with Authorization
For all other purposes that do not fall under a category listed under sections A and B, we will obtain your written authorization to use or disclose your protected health information. Your authorization can be revoked at any time except to the extent that we have relied on the authorization.
Separate Statements for Certain Uses or Disclosures – Advanced Integrative Medical 360 may contact patients with appointment reminders, requests for the patient to contact Advanced Integrative Medical 360 for appointments, emails, text messages and notices and letters concerning medical findings. Advanced Integrative Medical 360 may also contact the patient about treatment alternatives or other health related benefits and services that may be of interest to the individual. For unpaid payments and balances, Advanced Integrative Medical 360 may work with collection agencies to recover monies.
Individual Patient Privacy Rights
You have certain rights with respect to your medical record information, as follows:
- You may request that we restrict the uses and disclosures of your medical records information for treatment, payment and operations, or restrictions involving your care or payment related to that care. We are not required to agree to the restriction; however, if we agree, we will comply with it, except with respect to emergencies, disclosure of the information to you, or if we are otherwise required by law to make a full disclosure without restriction.
- You may also request a restriction on disclosure of protected health information to a health plan for purpose of payment or health care operations if you paid for the services out of your own pocket, in full. This does not apply to services that are covered by insurance. You are required to pay cash, in full, for the services before the restriction applies.
- With respect to ePHI, we agree to give you your ePHI in the form and format requested by you, if it is readily producible in that form or format. If it is not readily producible in the form or format requested, we will give you a readable hard copy form. Any directive given to us by you to transmit ePHI must be done in writing by you, signed and clearly identify the designated person and location to send the ePHI. We will provide you access to your PHI or ePHI within thirty (30) days from the date of request.
- You have the right to request receipt of confidential communications of your medical information by an alternative means or at an alternative location. If you require such an accommodation, you will be charged a fee for the accommodation and will be required to specify the alternative address or method of contact and how payment will be handled.
- You have the right to inspect, copy and request amendment to your medical records. Access to your medical records will not include psychotherapy notes contained in them, or information compiled in anticipation of or for use in a civil, criminal or administrative action or proceeding or for which your access is otherwise restricted by law. We will charge a reasonable fee for providing a copy of your medical records, or a summary of those records, at your request, which includes the cost of copying, postage, or preparation of an explanation or summary of the information.
- We may deny any request for amendment of your PHI or ePHI if the information was not created by us (unless the originator of the information is no longer available to act on your request); is not part of the designated record set maintained by us; is not part of the information to which you have a right of access; or is already accurate and complete, as determined by us. If we deny your request for an amendment, we will give you a written denial including the reasons for the denial and the right to submit a written statement disagreeing with the denial.
- All requests for inspection, copying and/or amending information in your medical records must be made in writing and be addressed to “Privacy Officer” at our address. We will respond to your request in a timely fashion.
- You have a limited right to receive an accounting of all disclosures we make to other persons or entities of your medical records information except for disclosures required for treatment, payment and health care operations, disclosures that require an Authorization, disclosures incidental to another permissible use or disclosure, and otherwise as allowed by law. We will not charge you for the first accounting in any 12-month period; however, we will charge you a reasonable fee for each subsequent request for an accounting within the same 12-month period.
- You have the right to obtain a paper copy of this notice if the notice was initially provided to you electronically, and to take one home with you if you wish.
- All requests related to your rights herein must be made in writing and addressed to “Privacy Officer” at the address noted below.
- You have the right to receive notification from us if any breach of your unsecured protected health information occurs.
Advanced Integrative Medical 360 Rights
- Advanced Integrative Medical 360 has 30 days with which to comply with a patient’s request to review or copy their health information. Advanced Integrative Medical 360 is allowed an additional 30 days if the record is off site. Advanced Integrative Medical 360 may charge a fee for copying the health record.
- The physicians have the right to review the record and remove any information that they deem to be harmful to either the patient or to another individual;
- The patient will be supervised by Advanced Integrative Medical 360 staff during any review of the record. Supervision is allowed and required to prevent the removal or altering of the medical record.
Advanced Integrative Medical 360’s Duties
- Advanced Integrative Medical 360 is required by law to maintain the privacy of confidential information and provide individuals with notice of its legal duties and privacy practices with respect to such information;
- Advanced Integrative Medical 360 is required to abide by the terms of this Notice; and
- Advanced Integrative Medical 360 reserves the right to change the terms of its Notice and to make the new Notice provisions effective for all confidential information that it maintains. Revisions to this Notice will be posted in the patient waiting area.
THIRD PARTY SERVICES AND NOTICE ABOUT HEALTH INFORMATION
HOW WE PROTECT YOUR INFORMATION
Advanced Integrative Medical 360 takes a variety of technical and organizational security measures to protect your information against accidental or unlawful destruction or accidental loss, alteration, unauthorized disclosure or access. However, no method of transmission over the Internet, and no means of electronic or physical storage, is absolutely secure. As such, you acknowledge and accept that we cannot guarantee the security of your information transmitted to, through, or on our Services or via the Internet and that any such transmission is at your own risk.
Where we have given you (or where you have chosen) a password that enables you to access the Services, you are responsible for keeping this password confidential. We ask you not to share your password with anyone. The information you share in public areas may be viewed by any user of the Services.
RETENTION OF YOUR INFORMATION
We keep your information for no longer than necessary for the purposes for which it is processed. The length of time for which we retain information depends on the purposes for which we collected and use it and/or as required to comply with applicable laws.
If you believe that we have violated your privacy rights, you may submit a complaint to our privacy officer who may be contacted at:
Body by AIM360
Attention: Privacy Officer
5700 Corporate Dr
Pittsburgh, PA 15237
[email protected] email
You may also submit a complaint to the Office of Civil Rights at:
Office of Civil Rights
US Department of Health and Human Services
150 S. Independence Mall West, Suite 372
Public Ledger Building
Philadelphia, PA 19106-9111
Main Line: (800) 368-1019
Fax: (215) 861-4431
TDD: (800) 537-7697
Legal Effect of this Notice
This Notice of Privacy Practices shall not be construed as a contract or legally binding agreement. Any non-compliance with any provision of this Notice shall not be construed as a breach of contract, breach of confidentiality, invasion of privacy, misappropriation of name or likeness, violation of any consumer protection law, negligence or violation of any state law. By signing the Acknowledgment of Receipt of this Notice, you agree that the sole legal recourse for our non-compliance with this Notice is to file a written complaint to the Secretary of the U.S. Department of Health and Human Services, and that no complaint or cause of action may be filed in any federal or state court for breach of contract, breach of confidentiality, invasion of privacy, misappropriation of name or likeness, violation of any consumer protection law, negligence or violation of any state law, or under any tort theory.
This Notice is effective immediately and applies to all protected health information in your medical records maintained by us.