Privacy Policy for Glenvue Health and Rehab

Effective Date: August 28, 2025

Purpose

Glenvue Health and Rehab is committed to protecting the privacy and security of our patients’ Protected Health Information (PHI) in accordance with the Health Insurance Portability and Accountability Act (HIPAA) and other applicable federal and state laws.

Scope

This policy applies to all employees, contractors, volunteers, and business associates who have access to PHI at Glenvue Health and Rehab.

1. Protected Health Information (PHI)

PHI includes any information that can identify a patient and relates to their health condition, treatment, or payment for healthcare services. This includes names, addresses, medical records, billing information, and more.

2. Use and Disclosure of PHI

We may use and disclose PHI without patient authorization for:

• Treatment: Coordinating or managing healthcare services.
• Payment: Billing and collecting payment from insurance or other payers.
• Healthcare Operations: Quality assessment, staff training, and administrative activities.

Other uses, such as marketing or sharing information with third parties, require written authorization from the patient.

3. Patient Rights

Patients have the right to:

• Access and obtain a copy of their medical records.
• Request amendments to their records.
• Receive an accounting of disclosures.
• Request restrictions on certain uses or disclosures.
• Request confidential communications.
• File a complaint if they believe their privacy rights have been violated.

4. Safeguards

We implement the following safeguards to protect PHI:

• Administrative: Staff training, privacy officer oversight, and internal audits.
• Physical: Secure storage areas, restricted access to facilities.
• Technical: Password-protected systems, encryption, and access logs.

5. Breach Notification

In the event of a breach of unsecured PHI, Glenvue Health and Rehab will notify affected individuals, the U.S. Department of Health and Human Services (HHS), and, if applicable, the media, within 60 days.

6. Business Associates

All third-party vendors who handle PHI on our behalf must sign a Business Associate Agreement (BAA) ensuring they comply with HIPAA standards.

7. Notice of Privacy Practices

We provide a Notice of Privacy Practices to all patients, explaining how their PHI may be used and disclosed, and their rights under HIPAA. This notice is available in print and on our website.

8. Contact Information

For questions or concerns about this policy or your privacy rights, contact:

 Administrator
Glenvue Health and Rehab
721 N Veterans Blvd

Glennville, GA 30427
Phone: (912) 654-2138