HIPAA Notice of Privacy Practices
This notice describes how medical information about you may be used and disclosed and how you can get access to this information. Please review it carefully. This Notice of Privacy Practices is NOT an authorization.
Your Rights
When it comes to your health information, you have certain rights. This section explains your rights and some of our responsibilities to help you.
Get an electronic or paper copy of your medical record –You can ask to see or get an electronic or paper copy of your medical record and other health information we have about you. Ask us how to do this. We will provide a copy or a summary of your health information, usually within 30 days of your request. We may charge a reasonable, cost‐based fee
Ask us to correct your medical record ‐ You can ask us to correct health information about you that you think is incorrect or incomplete. Ask us how to do this. We may say “no” to your request, but we’ll tell you why in writing within 60 days.
Request confidential communications ‐ You can ask us to contact you in a specific way (for example, home or office phone) or to send mail to a different address. We will say “yes” to all reasonable requests.
Ask us to limit what we use or share ‐ You can ask us not to use or share certain health information for treatment, payment, or our operations. We are not required to agree to your request, and we may say “no” if it would affect your care. If you pay for a service or health care item out‐of‐pocket in full, you can ask us not to share that information for the purpose of payment or our operations with your health insurer. We will say “yes” unless a law requires us to share that information.
Get a list of those with whom we’ve shared information ‐ You can ask for a list (accounting) of the times we’ve shared your health information for six years prior to the date you ask, who we shared it with, and why. We will include all the disclosures except for those about treatment, payment, and health care operations, and certain other disclosures (such as any you asked us to make). We’ll provide one accounting a year for free but will charge a reasonable, cost‐based fee if you ask for another one within 12 months.
Get a copy of this privacy notice ‐ You can ask for a paper copy of this notice at any time, even if you have agreed to receive the notice electronically. We will provide you with a paper copy promptly.
Choose someone to act for you ‐ If you have given someone medical power of attorney or if someone is your legal guardian, that person can exercise your rights and make choices about your health information. We will make sure the person has this authority and can act for you before we take any action.
File a complaint if you feel your rights are violated ‐ You can complain if you feel we have violated your rights by contacting us using the information on page 1. You can file a complaint with the U.S. Department of Health and Human Services Office for Civil Rights by sending a letter to 200 Independence Avenue, S.W., Washington, D.C. 20201, calling 1‐ 877‐696‐6775, or visiting www.hhs.gov/ocr/privacy/hipaa/complaints/. We will not retaliate against you for filing a complaint.
Your Choices
For certain health information, you can tell us your choices about what we share. If you have a clear preference for how we share your information in the situations described below, talk to us. Tell us what you want us to do, and we will follow your instructions.
In these cases, you have both the right and choice to tell us to: Share information with your family, close friends, or others involved in your care; Share information in a disaster relief situation; Include your information in a hospital directory; Contact you for fundraising efforts.
**If you are not able to tell us your preference, for example if you are unconscious, we may go ahead and share your information if we believe it is in your best interest. We may also share your information when needed to lessen a serious and imminent threat to health or safety. **
In these cases, we never share your information unless you give us written permission: Marketing purposes; Sale of your information; Most sharing of psychotherapy notes.
Our Uses and Disclosures
How do we typically use or share your health information? We typically use or share your health information in the following ways:
Provide treatment for you ‐ We can use your health information and share it with other professionals who are treating you. Example: A doctor treating you for an injury asks another doctor about your overall health condition.
Run our organization ‐ We can use and share your health information to run our practice, improve your care, and contact you when it is necessary.
Example: We use health information about you to manage your treatment and services.
Bill for your services ‐ We can use and share your health information to bill and get payment from health plans or other entities. Example: We give information about you to your health insurance plan so it will pay for your services.
We are allowed or required to share your information in other ways – usually in ways that contribute to the public good, such as public health, and research. We must meet any conditions in the law before we can share your information for these purposes. For more information see: www.hhs.gov/ocr/privacy/hipaa/understanding/consumers/index.html.
Do research – We can use or share your information for health research.
Comply with the Law – we will share information about you if state or federal laws require it, including with the Department of Health and Human Services if it wants to see that we’re complying with federal privacy law.
Organ & tissue donation request – We can share health information about you with organ procurement organizations.
Address workers compensation, law enforcement and other government requests – We can use or share information about you: for Workers Compensation Claims; For Law Enforcement purposes or with a law enforcement official; with health oversight agencies for activities authorized by law; for special government functions such as military, national security and presidential protective services.
Respond to lawsuits and legal actions – We can share health information about you in response to a court or administrative order or in response to a subpoena.
Business Associates are a part of Health Care Operations. There are some services provided in our organization through business contracts. When these services are contracted, we may disclose your protected health information to our business associate, so that they can perform the job we have asked them to do. To protect your health information, however, we require the business associate to appropriately safeguard your protected health information.
I acknowledge and understand that this office may contact and survey me via e-mail regarding my satisfaction and outcomes. I understand that an independent vendor(s) may assist with this data collection. I understand that in addition to the confidential survey, this office or their designated vendor may also send an automated email to allow me to rate and review my provider online through sites like Google, Yelp, Facebook, etc. voluntarily and publicly.
I acknowledge that my responses, like other online responses, may be published on the respective review site(s) and will be publicly disclosed and accessible to anyone who accesses that site. I understand that reviews are optional, and I will not include any sensitive, personal, identifying, or medial information that I do not wish to be publicly disclosed in an online review, i.e., name, contact information, social security number, health history, diagnosis, medications, etc.
Our Responsibilities
We are required by law to maintain the privacy and security of, and provide individuals with, this notice of our legal duties and privacy practices with respect to your protected health information. We will let you know promptly if a breach occurs that may have compromised the privacy or security of your information.
We must follow the duties and privacy practices described in this notice and give you a copy of it. We will not use or share your information other than as described her unless you tell us we can in writing. If you tell us we can, you may change your mind at any time. Let us know in writing if you change your mind.
For more information see: www.hhs.gov/ocr/privacy/hipaa/understanding/consumer/noticepp.html.
Changes to the terms of this notice
We can change the terms of this, and the changes will apply to all information we have for you. The new notice will be available upon request, in our office and here on our website.
Spark Physical Therapy and Performance, LLC Headquarters location: 7810 Middle Poyner Drive, Ste 101, Raleigh, NC 27616
If you have any questions in reference to this form, please ask to speak with our HIPAA Compliance Officer in person or by phone: Ashley Yartin, Director of Operations/HIPAA Compliance Officer Office 919-764-4932 or email ayartin@sparkptnc.com
Effective and updated 10/28/2024.
Privacy Policy
Your privacy is important to us. The Spark Physical Therapy and Performance Privacy Policy (Privacy Policy) has been developed to demonstrate our firm commitment to your privacy and to explain how Spark Physical Therapy and Performance (“Company” or “We” or “Us”) collects, uses, shares, and safeguards Personal Data and Non-Personal Data on www.sparkptnc.com and on any other websites and mobile applications may launch in the future, as well as microsites, social media sites, and any other digital platform or service operated or used by the Company from time to time (Sites).
The Company recognizes its responsibility to treat with care and protect the information and data it collects, and to respect your data privacy. Your use of the Sites and participation in the Company’s programs and services signifies that you understand this Privacy Policy and that you acknowledge the collection, use, and storage of and your rights as described herein.
This Privacy Policy is subject to change.
Data Collection
The Company collects data online, by phone, or by paper that allows us to identify or contact you (Personal Data) to carry out its business purposes. We collect this information at various points of service, including, but not limited to, when you schedule over the phone, book an online appointment, complete a contact us form or survey, sign up for a newsletter, register to use our exercise app, or interact with our website.
The types of Personal Data We collect includes, but is not limited to, the following:
- General data (e.g., names, dates of birth, home and business addresses, email addresses, internet protocol addresses and mobile, landline, business, and/or personal telephone numbers that are provided by our customers.
- Site usage (e.g., browsing history, search terms, member login activity, and email clicks).
- Products and services viewed, including advertisements for such products and services.
- Professional data (e.g., school information, resumes and licensure information).
- Government-issued identification numbers (e.g., social security numbers, and tax identification numbers), for example from employees and independent contractors.
- Other identification information (e.g., photographs, video and audio during treatment only with proper consent).
- Financial information (e.g., credit and debit card numbers, credit reports, passwords) for payment or employment purposes.
- Sensitive Personal Data (e.g., racial or ethnic origin and health data) for diversity or accessibility purposes and employment purposes
How Spark PT & Performance Uses Your Data
The following explains how we use your Personal Data and Non-Personal Data.
Personal Data
The Company uses Personal Data to carry out its business purposes, which include but are not limited to, patient transactions, product and service transactions, workshop registrations, targeting products, services, and messages based on your interests, or to otherwise interact with us. More specifically, the Company uses Personal Data, sometimes in combination with Non-Personal Data, in a variety of ways, including, but not limited to:
- To present our Website and its contents to you.
- To provide you with information, products or services that you request from us.
- To provide you with information about our services
- To provide you with notices about your account/subscription, including expiration and renewal notices.
- To carry out our obligations and enforce our rights arising from any contracts entered into between you and us, including for billing and collection
- To notify you about changes to our Website or any products or services we offer or provide though it.
- Provide service communications such as bill reminders, order confirmations, program registrations, and customer service messages.
- Respond to your emails or online requests for products, services, or information.
- Identify you when you visit our Sites.
- Research and development purposes.
- Carry out polls and surveys.
- Personalize and improve the usability of Company Sites, products, and services.
- Personalize content, marketing, programs, and services to you.
- Meet internal audit requirements.
- Legal obligations.
- Ensure that content is presented most effectively for you and your computer.
Non-Personal Data
Our Company uses Non-Personal Data to improve the usability of the Sites and for other business reasons. We or third-party companies may also use the Non-Personal Data to target advertisements to you. Please note that when you select a link that takes you to sites not operated by our Company, you may be subject to the privacy policies of these third-party sites.
Cookies
Cookies are small files used to send information from our Sites to your web browser. The Sites use session cookies, which are destroyed when a user closes the Internet browser, and permanent cookies, which remain on the user’s hard drive until manually deleted by clearing the cache. Cookies are used for many purposes, including allowing users to access member-protected content without logging in before loading each page. Permanent cookies allow users to utilize the “remember me” feature to avoid having to log in again to the Sites after closing the previous internet browser session.
You can control cookie settings in your internet browser to automatically reject some forms of cookies. If you view the Sites without changing your cookie settings, you are indicating your consent to receive all cookies from Company Sites. If you do not allow cookies, some features and functionality of Company Sites may not operate as expected.
Third-Party Data Sharing
We will not share consumer information with third-parties for marketing purposes. Company may share your Personal Data, sometimes combined with Non-Personal Data, in a variety of ways including, but not limited to:
- Share data with third parties to fulfill service requests and to perform business functions (e.g., our Company contracts with third parties to provide services on our behalf such as data hosting services; billing, mailing, remote therapeutic monitoring, and exercise app services; customer support and consulting services; other essential business functions).
- Share data with third parties as required by law or to protect the Company in the good-faith belief that such action is necessary to: (1) Conform to legal requirements or comply with legal process served on the Company. (2) Protect and defend Company rights or property. (3) Protect the personal safety of Company personnel or members of the public in appropriate circumstances.
- Share data with third parties under other unanticipated situations, but only with your consent.
Your email address will be used only by the Company, its entities, components, and vendors performing member services or offering services on the Company’s behalf or as a member benefit. The Company shares your email address with third parties to enable us to take security measures to help protect against unauthorized access to or unauthorized alteration, disclosure, or destruction of data. We share email addresses with third parties as necessary for the Company to perform certain services on our behalf, such as patient billing, mailing statements, payment processing, event registration, and responding to your service requests.
We reserve the right to use or disclose data where we reasonably believe it is needed to (i) respond to information requests by law enforcement or other governmental authorities; (ii) comply with any law, regulation, subpoena or other legal process, or court order; (iii) investigate and help prevent security threats, fraud activity, or inappropriate, unauthorized, or illegal activity involving our services or networks; or (iv) enforce or protect the Company’s rights and property. In such circumstances, data may be disclosed without notice to the individual.
Analytics
We may use third-party Service providers to monitor and analyze the use of our Service.
Google Analytics
Google Analytics is a web analytics service offered by Google that tracks and reports website traffic. Google uses the data collected to track and monitor the use of our Service. This data is shared with other Google services. Google may use the collected data to contextualize and personalize the ads of its own advertising network.
You can opt-out of having made your activity on the Service available to Google Analytics by installing the Google Analytics opt-out browser add-on. The add-on prevents the Google Analytics JavaScript (ga.js, analytics.js and dc.js) from sharing information with Google Analytics about visits activity.
For more information on the privacy practices of Google, please visit the Google Privacy & Terms web page: https://policies.google.com/privacy
Children
Our Website is not intended for children under 13 years of age. No one under age 13 may provide any personal information to or on the Website. We do not knowingly collect personal information from children under 13.
If you are under 13, do not use or provide any information on this Website or on or through any of its features/register on the Website, make any purchases through the Website, use any of the interactive or public comment features of this Website or provide any information about yourself to us, including your name, address, telephone number, e-mail address or any screen name or user name you may use.
If we learn we have collected or received personal information from a child under 13 without verification of parental consent, we will delete that information. If you believe we might have any information from or about a child under 13, please contact us via our contact us form.
Security
Your privacy is of the utmost importance to us, but due to legal and security matters that are beyond our control, we cannot guarantee that the data that you may provide to us, including personally identifiable information, is not disclosed to a third party. Our Company incorporates reasonable safeguards to protect the security, integrity, completeness, accuracy, and privacy of the data we collect. In our efforts to make the Sites secure, we use the latest industry standards to safeguard the confidentiality of your personally identifiable information, such as firewalls and Secure Socket Layers, where appropriate. We take precautions to protect information from loss, misuse, and alteration.
Only Company employees who need access to your data in order to do their job are allowed access. Pursuant to PCI compliance requirements, our Company employs procedures to safeguard any credit card data we collect from you when making an order. Please note, however, that no method of electronic transmission or storage is 100% secure. Therefore, we cannot guarantee its absolute security.
Your Rights Regarding Your Data
To protect your privacy and security, we will take reasonable steps to verify your identity. You can manage your profile and email preferences, including “opting out” of emails, by contacting us using the contact us link on our website.
Other Important Information
Location of Data
Spark Physical Therapy is headquartered in the United States, in Raleigh, North Carolina, and our services are hosted in and managed in the United States. If you are a user located outside the U.S., you understand and acknowledge to having your data (which may include information collected through the use of cookies and other technologies, as described above) transferred, processed, and stored in the U.S. or in any other country in which we engage service providers or to which you direct us to transfer your data.
Your data is processed in the U.S., where privacy laws may be less stringent than the laws in your country. By submitting your data to our Company, you agree to the transfer, storage, and processing of your data in the U.S.
Data Retention
In general, our Company retains data for the period necessary to fulfill its business purposes, unless a longer period is required, needed for archival and research purposes, or permitted by law.
Third-Party Sites
The Sites may include links to other websites that are not owned or controlled by our Company, and We are not responsible for the contents of any linked site, the conduct of any linked site, or any changes or updates to such sites.
Our Company may provide links to you only as a convenience, and the inclusion of any link does not imply an endorsement by our Company of the website. You should read the privacy policy of the third-party provider to see how your data will be treated on its site.
How to Contact Spark PT & Performance
If you have any questions, comments, requests, or concerns related to this Privacy Policy, please contact Company via our contact form https://sparkptnc.com/contact/ or at:
Spark Physical Therapy and Performance
Attention: Webmaster
7810 Middle Poyner Drive, Ste 101
Raleigh, NC 27616
Phone: 919-764-4932; Fax: 919-882-8509
Effective and updated 10/28/2024.